We are redirecting you to the source. If you are not redirected in 3 seconds, please click here.

Application Security Engineer (Remote - US) at Jobgether. This position is posted by Jobgether on behalf of Kustomer. We are currently looking for an Application Security Engineer in the United States.. This role offers the opportunity to strengthen the security of critical applications within a fast-paced, innovative tech environment. You will be responsible for integrating security practices into the software development lifecycle, performing risk assessments, vulnerability testing, and code reviews. The position emphasizes collaboration across development and operations teams, ensuring applications remain compliant with industry standards while adopting cutting-edge practices in AI, automation, and cloud technologies. Ideal candidates are proactive, detail-oriented, and motivated to enhance security processes while contributing to the design and implementation of secure solutions that protect sensitive data.. . Accountabilities. As an Application Security Engineer, you will:. . Integrate security practices into the development lifecycle, including CI/CD processes.. . Conduct security audits, risk assessments, and vulnerability testing across applications.. . Collaborate with development and operations teams to ensure proper system configurations and monitoring.. . Educate stakeholders on SecOps practices and the importance of security in software development.. . Perform manual and automated secure code reviews and application penetration testing.. . Ensure compliance with regulatory and industry standards (SOC2, ISO27001, HIPAA, GDPR).. . Automate cloud infrastructure security processes and stay current on emerging threats.. . Evaluate tools, build proof-of-concepts, and execute other security-related projects as assigned.. . The ideal candidate will have:. . 8+ years of experience as an Application Security Engineer.. . Strong knowledge of AppSec practices, including SAST/DAST analysis, secure coding, and penetration testing.. . Proficiency with cloud environments such as AWS and GCP, including networking and security administration.. . Solid understanding of DevSecOps principles, CI/CD pipelines, and automation tools.. . Familiarity with Center for Internet Security (CIS) benchmarks and cloud workload security.. . Excellent written, verbal, and consultative communication skills for technical and non-technical audiences.. . Strong analytical and problem-solving abilities with attention to detail.. . Knowledge of HIPAA compliance and handling sensitive personal data.. . Ability to collaborate effectively in cross-functional teams and influence security decisions.. . Company Location: United States.