Logo for Bright Vision Technologies

AppSec Engineer

Role overview

Qualifications

  • Bachelor’s degree in Computer Science, Cybersecurity, or a related field
  • Five or more years of application security or security engineering experience
  • Strong understanding of OWASP Top 10, common vulnerability classes, and modern exploit patterns
  • Hands-on experience performing code review across at least two major languages

Responsibilities

  • Conduct threat modeling and security architecture reviews for new and existing applications and services
  • Perform manual code reviews, secure design consultations, and pair with engineering teams on hardening critical components
  • Drive vulnerability management workflows including triage, prioritization, owner assignment, and SLA tracking
  • Develop and deliver application security training, lunch-and-learns, and onboarding content for engineering staff

Key facts

Other skills

  • Communication
  • Collaboration

About the company

Bright Vision Technologies logo

Bright Vision Technologies

Artificial Intelligence & Machine Learning Services

Bright Vision Technologies is a woman owned minority organization founded on July 2020 in New Jersey, USA. Our aim is to provide quality staffing and IT consulting services to our partners. Our deep expertise in strategic staffing and application management turns IT into a strategic asset. We believe that as long as we step into the customers shoes, learn what they want, and deliver it with sincere attention and quality, everything else is going to just fall in place. Our technology expedition is treading fast and continues to grow.

Company details

Company typeScaleup
IndustryArtificial Intelligence & Machine Learning Services
Company size11 - 50

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

 AppSec Engineer – Remote

Bright Vision Technologies is a technology consulting and software development company delivering cloud, AI, data, and enterprise solutions across the United States.
This is a fantastic opportunity to join an established and well-respected organization offering tremendous career growth potential.

Job Title: AppSec Engineer​​​​​​​
Location: 100% Remote (U.S.)
Position Type: Full-time, Direct W2
Salary Range: $100,000–$150,000 Annually
Experience Required: 6+ years

Sponsorship: U.S. Citizens, Green Card Holders, EAD Holders, and H-1B transfer candidates are encouraged to apply. We are unable to sponsor new H-1B visa petitions for this position.

Job Summary
We are looking for an AppSec Engineer to embed security throughout the software development lifecycle, partnering with engineering teams to design secure systems, identify vulnerabilities, and reduce risk across our application portfolio. The role blends hands-on offensive and defensive skills with strong communication and collaboration, helping development teams build secure software efficiently rather than slowing them down. The ideal candidate brings deep technical security expertise, strong software engineering fundamentals, and a track record of shipping security improvements that meaningfully reduce risk in production.

Key Responsibilities
  • Conduct threat modeling and security architecture reviews for new and existing applications and services.
  • Perform manual code reviews, secure design consultations, and pair with engineering teams on hardening critical components.
  • Operate and tune SAST, DAST, IAST, SCA, and secret-scanning tools across CI/CD pipelines.
  • Drive vulnerability management workflows including triage, prioritization, owner assignment, and SLA tracking.
  • Build paved-road libraries and frameworks that make secure patterns the default for engineering teams.
  • Lead red-team and purple-team exercises against internal applications and drive remediation of identified weaknesses.
  • Implement and operate runtime protections including WAF, RASP, bot protection, and abuse-detection mechanisms.
  • Design and enforce secure authentication, authorization, session management, and cryptographic patterns.
  • Partner with infrastructure and platform teams to harden container, Kubernetes, and cloud environments.
  • Develop and deliver application security training, lunch-and-learns, and onboarding content for engineering staff.
  • Respond to security incidents involving application vulnerabilities or active exploitation.
  • Track and apply emerging threats and CVEs that may affect the application portfolio.
  • Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures — so that the system remains supportable, auditable, and easy to onboard new engineers onto over time.
  • Stay current with application security research and emerging defensive tooling.
Required Qualifications
  • Bachelor’s degree in Computer Science, Cybersecurity, or a related field.
  • Five or more years of application security or security engineering experience.
  • Strong understanding of OWASP Top 10, common vulnerability classes, and modern exploit patterns.
  • Hands-on experience performing code review across at least two major languages.
  • Deep familiarity with SAST, DAST, SCA, and CI/CD-integrated security tooling.
  • Strong understanding of authentication, authorization, and cryptographic primitives.
  • Experience with cloud security and modern infrastructure controls.
  • Strong communication skills with technical and non-technical audiences.
  • Proficiency in at least one programming language for tooling and automation.
  • Experience working closely with engineering teams in an Agile environment.
Preferred Qualifications
  • Industry certifications such as OSCP, OSCE, GWAPT, or CISSP.
  • Experience with offensive security tooling and red-team operations.
  • Bug bounty experience, public CVEs, or open-source security contributions.
  • Familiarity with AI/LLM application security considerations.
  • Exposure to regulated industries with strict compliance requirements.
How to Apply
Would you like to know more about this opportunity? For immediate consideration, please send your resume to [email protected]
Bright Vision Technologies is an Equal Opportunity Employer.

Equal Employment Opportunity (EEO) Statement

Bright Vision Technologies (BV Teck) is committed to equal employment opportunity (EEO) for all employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, veteran status, or any other protected status as defined by applicable federal, state, or local laws. This commitment extends to all aspects of employment, including recruitment, hiring, training, compensation, promotion, transfer, leaves of absence, termination, layoffs, and recall.

BV Teck expressly prohibits any form of workplace harassment or discrimination. Any improper interference with employees' ability to perform their job duties may result in disciplinary action up to and including termination of employment.

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

Field Engineer (Solutions) Related jobs

Other jobs at Bright Vision Technologies

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.