Application Security Engineer

Remote is solving global remote organizations' biggest challenge: employing anyone anywhere compliantly. We make it possible for businesses big and small to employ a global team by handling global payroll, benefits, taxes, and compliance. Check out remote.com/how-it-works to learn more or if you're interested in adding to the mission, scroll down to apply now.

Not only do we encourage folks from all ethnic groups, genders, sexuality, age, abilities, disability status and any other under-represented group to apply, but we prioritize a sense of belonging. We have 4 ERGs (Women, Disability, Queer, Minorities in Tech) who meet regularly with the People team. During your interviews and beyond, we ask & encourage anybody who needs an accommodation to request one from their recruiter.

At Remote, we embrace AI as a valuable tool while prioritizing human creativity and authenticity. We look forward to meeting candidates who balance innovation with genuine expertise and experience. To learn more about Remote's AI guidelines check here.

All of our positions are fully remote. You do not have to relocate to join us

The Position

This is an exciting time to join Remote and make a personal difference in the global employment space as an Application Security Engineer, joining our Security team.

Key Responsibilities

• Perform vulnerability scans and discuss results with teams
• Perform code review (ad-hoc) to identify vulnerabilities
• Assist in vulnerability management process, including assigning/modifying CVSS score and severity level
• Support identification of potential security risks from a threat model
• Participate in product features design to identify potential security risks
• Investigate and determine the exploitability of a vulnerability, either theoretically or with a PoC
• Support management of CI/CD security tools.

Requirements

• Experience in Security Engineering
• Bachelor's degree in Computer Science, Cybersecurity, or related field (or equivalent experience)
• Good understanding of most common security vulnerabilities (e.g. OWASP Top 10 Web, API, Mobile and IaC) and general mitigation strategies
• Knowledge of secure coding practices and Secure SDLC
• Experience with security testing tools (SAST, SCA, DAST, etc)
• Experience with Vulnerability Management
• Basic knowledge of threat modeling
• Knowledge of automation of security tools (scripting, playbooks, etc)
• Excellent communication and interpersonal skills
• Good analytical and problem-solving skills
• Team oriented

Nice to have

• Experience with offensive testing toolkits (e.g. burp suite, OWASP zap)
• Knowledge of tuning AppSec testing tools
• Experience running a bug bounty program
• Experience working with SIEM solution
• Security Certifications
• Experience working remotely

Practicals

• You'll report to: Application Security Manager
• Team: Security
• Location: Anywhere in the World
• Start date: As soon as possible

Remote Compensation Philosophy

Remote's Total Rewards philosophy is to ensure fair, unbiased compensation and fair equity pay along with competitive benefits in all locations in which we operate. We do not agree to or encourage cheap-labor practices and therefore we ensure to pay above in-location rates. We hope to inspire other companies to support global talent-hiring and bring local wealth to developing countries.

At first glance, our salary bands seem quite wide - here is some context. At Remote we have international operations and a globally distributed workforce. We use geo ranges to consider geographic pay differentials as part of our global compensation strategy to remain competitive in various markets while hiring globally.

The base salary range for this full-time position is 35,250 USD to 79,300 USD. Our salary ranges are determined by role, level and location, and our job titles may span more than one career level. The actual base pay for the successful candidate in this role is dependent upon many factors such as location, transferable or job-related skills, work experience, relevant training, business needs, and market demands. The base salary range may be subject to change.

At Remote, we foster internal mobility as a key element of our culture of employee growth and development, supported by a compensation philosophy that guarantees pay equity and fairness. Therefore, all compensation changes associated with an internal move will be reviewed by the Total Rewards & People Enablement team on a case by case basis.

Application Process

• Interview with recruiter
• Interview with future manager
• Take home challenge
• Interview with team members (no managers present)

Our full benefits & perks are explained in our handbook at remote.com/r/benefits. As a global company, each country works differently, but some benefits/perks are for all Remoters:

• budget for local in-person social events or co-working spaces

How you'll plan your day (and life)

We work async at Remote which means you can plan your schedule around your life (and not around meetings). Read more at remote.com/async.

You will be empowered to take ownership and be proactive. When in doubt you will default to action instead of waiting. Your life-work balance is important and you will be encouraged to put yourself and your family first, and fit work around your needs.

If that sounds like something you want, apply now

How to apply

• Please fill out the form below and upload your CV in PDF format.
• We kindly ask you to submit your application and CV in English, as this is the standardized language we use here at Remote.
• If you don't have an up-to-date CV but you are still interested in talking to us, please feel free to add a copy of your LinkedIn profile instead.

We will ask you to voluntarily tell us your pronouns at the interview stage, and you will have the option to answer our anonymous demographic questionnaire when you apply below. As an equal employment opportunity employer, it's important to us that our workforce reflects people of all backgrounds, identities, and experiences and this data will help us to stay accountable. We thank you for providing this data, if you choose to.

Apply for this job

* indicates a required field

First Name *

Last Name *

Email *

Phone

Resume/CV *

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

LinkedIn Profile

Please choose the country in which you are located. * Select...

Work eligibility is extremely important. Are you legally eligible to work in the country where you're planning to work from? * Select...

If you are eligible, please select the status that allows you to work and live in that Country: * Select...

Do you have a non-compete in place with your previous or current employer that prevents you from working for us? * Select...

Have you ever triaged vulnerabilities reported by a security scanning tool, assessing if it is a confirmed issue or false positive? * Select...

How did you hear about Remote? * Select...

What pronouns should we use to refer to you? * Select...

At Remote, we are committed to transparency, innovation, and care for our employees and candidates. To support this and ensure we are able to focus on you, not on taking notes, we use brighthire.ai to record and auto-transcript our interviews. If we decide you are a good potential fit for the role, do you consent to us using this tool during the interviewing process? Declining recording will not affect your candidacy. * Select...

Please acknowledge this Privacy notice:

Voluntary Self-Identification Questions

Voluntary Self-Identification

Remote is an Equal Employment Opportunity employer and as such it's important to us that our workforce reflects people of all backgrounds, identities, and experiences. Through the below self-identification survey, we invite you to share your demographic information.

This information will be used to ensure that our hiring process is inclusive and that people of all backgrounds are represented in our talent pool.

All answers are anonymous and will not be tied to your job application or candidate profile. The data will be aggregated and only used internally to inform our hiring strategies and processes to ensure we are actively working toward creating access to opportunities among under-represented groups and increasing our teams' diversity.

The access to the collected data is limited on a need-to-know basis. These questions are optional and voluntary and will not have any impact on hiring outcomes.

Visit the Remote Handbook to read more about how diversity, equity, and inclusion are a way of life at Remote.

What is your Race/Ethnicity? Select...

What gender do you identify with? Select...

Do you identify as part of the Lesbian, Bisexual, Gay, Transgender, Queer, Intersex, and Asexual (LBGTQIA+) community? Select...

Do you consider yourself to have a disability? Select...

Please confirm you consent your self-identification data to be processed for the listed purposes * Select...

#J-18808-Ljbffr

---