Skip to content
UpsideUpsideWashington, DC

Staff Application Security Engineer

Staff-level AppSec engineer building secure coding practices and vulnerability management for a commerce platform. Requires 6+ years in application security with deep AWS and Python experience.

210k – 230k/yr
Remote6+ YOESecurity Engineering

About the role

Responsibilities

  • Innovate with AI and deliver security solutions to mitigate application vulnerabilities
  • Run security code tests (SAST, SCA) and partner with engineers to remediate unsafe code
  • Create threat models and engage technology teams to review and document risks
  • Guide leadership on security architecture, design and best AppSec practices
  • Train and upskill engineers on safe coding and vulnerability management
  • Assist penetration testing initiatives and/or help manage bug bounties
  • Support administration of AWS Control Tower and IAM provisioning
  • Interact with the security community and keep aware of trends

Requirements

  • 6+ years of application or product security inclusive of reviewing Python code
  • Experience with innovating and delivering solutions related to vulnerability management
  • Deep knowledge of AWS and Lambda security architecture and AWS Control Tower
  • Strong understanding and adoption of AI technologies
  • Bachelor’s degree in Computer Science or Engineering highly preferred
  • Exceptional customer service and people skills

Tools

  • Github Suite (Advanced Security, Actions, Copilot)
  • Python
  • Terraform
  • AWS Lambda, DynamoDB, S3, SNS, SQS, IAM, VPCs
  • ChatGPT
  • Snowflake
  • SQL

Skills

Application SecurityPythonAWSAWS LambdaAws Control TowerSASTScaThreat ModelingTerraformIAM
NinjaTrader

Staff Security Engineer, Application Security

NinjaTraderChicago, IL

Staff Security Engineer owning application, API, and supply chain security domains. Hands-on role integrating security into engineering workflows via threat modeling, tooling (SAST/SCA/DAST), automation, and risk-based vulnerability management in cloud-native environments.

210k – 260k/yr
Hybrid7+ YOESecurity Engineering
Upside

Staff AppSec Engineer

UpsideWashington, DC

Staff AppSec Engineer owning end-to-end vulnerability identification and remediation. Partner with engineering teams on secure development practices, threat modeling, and AWS security architecture while leveraging AI tools.

210k – 230k/yr
Hybrid6+ YOESecurity Engineering
Crusoe

Staff Corporate Security Engineer

CrusoeSan Francisco, CA

Designs and implements Zero Trust, SASE, and identity-based security architectures to protect corporate networks, SaaS platforms, and AI systems. Requires 8+ years experience in SaaS security, IAM, DLP, and device trust.

210k – 255k/yr
On-site8+ YOESecurity Engineering
Zoox

Senior/Staff Software Systems Engineer

ZooxFoster City, CA

Design and implement formal methods, tools, and processes to verify safety-critical software for autonomous vehicles. Requires 7+ years experience, advanced degree, and strong background in formal verification, Python, and C++.

208k – 300k/yr
Hybrid7+ YOESecurity Engineering
Rula

Staff Software Engineer - Trust & Safety

RulaLos Angeles, CA

Staff-level engineer to found and lead a new Trust & Safety engineering team, architecting systems to detect fraud, billing anomalies, and credential abuse for a mental healthcare platform.

207k – 243k/yr
Remote8+ YOESecurity Engineering