We are redirecting you to the source. If you are not redirected in 3 seconds, please click here.

Senior Engineer, App Security (Remote - US) at Jobgether. This position is posted by Jobgether on behalf of Healthie. We are currently looking for a Senior Engineer, App Security in the United States.. This is a high-impact, fully remote role where you’ll serve as the first dedicated AppSec expert within a growing engineering organization. You'll lead the effort to embed security into every layer of the software development lifecycle—helping shape secure architecture, building robust standards, and driving a culture of proactive security across cross-functional teams. This position blends hands-on application security engineering with strategic influence, offering you the opportunity to lay the foundation for secure coding practices that scale. If you're energized by fast-moving environments and care deeply about patient safety and data integrity, this role offers a rare chance to make a tangible difference in healthcare technology.. . Accountabilities:. . Define and implement secure coding standards and tooling to proactively mitigate application-layer risks.. . Lead secure design reviews, internal audits, and threat modeling exercises.. . Manage and triage vulnerability reports from ethical hackers and third-party disclosures.. . Perform internal penetration testing and static/dynamic code analysis.. . Design and evolve the secure software development lifecycle (S-SDLC) and integrate security into CI/CD workflows.. . Administer security tools like Semgrep and other SAST/DAST solutions.. . Partner with engineering and product teams to remediate vulnerabilities rapidly and safely.. . Develop incident response playbooks for application-layer threats and support investigations.. . Champion a company-wide security awareness program and develop a security champions network.. . Ensure alignment with regulatory standards like HIPAA, SOC 2, and GDPR from a software security standpoint.. . . 5+ years of experience in application or product security roles, ideally within fast-paced, cloud-native environments.. . Deep knowledge of web application security principles, secure design patterns, and common vulnerabilities (e.g., OWASP Top 10, SANS/CIS standards).. . Strong hands-on experience with modern development stacks—especially GraphQL, Ruby on Rails, and React.. . Familiarity with DevSecOps workflows and integration of security tooling in CI/CD pipelines.. . Proven track record of building or scaling application-layer security programs.. . Ability to collaborate across teams, communicate technical risks clearly, and influence without formal authority.. . Mission-driven, with a passion for improving healthcare systems and protecting patient data.. . . Bonus:. Experience in healthcare compliance (HIPAA, SOC 2 audits) is a strong plus.. . Must be located in the U.S. and authorized to work without sponsorship.. . . Company Location: United States.