This job is closed

We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.

Sr. Application Security Engineer

Prosper Marketplaceposted 6 days ago
$189,000 - $211,000/Yr
Full-time - Senior
Hybrid - Phoenix, AZ
Credit Intermediation and Related Activities

About the position

We are seeking a Sr. Application Security Engineer to join our security team. In this role, you will be a critical partner to engineering, product, and DevOps teams, helping to identify, assess, and mitigate security risks across the software development lifecycle (SDLC). You will drive security by design, shape our product security standards, and ensure vulnerabilities are identified, tracked, and resolved efficiently. This is a hands-on technical role where you will lead secure architecture/design reviews, code reviews, and penetration testing while collaborating closely with teams to embed security in every phase of product development.

Responsibilities

  • Partner with engineering and product teams to define and implement security requirements for applications, APIs, and microservices during design and architecture reviews.
  • Conduct in-house penetration testing, secure code reviews, and threat modeling for high-impact features and critical products.
  • Lead application vulnerability management, including triaging and driving the remediation of security findings from SAST, DAST, SCA, and penetration tests.
  • Consult and advise cross-functional teams (engineering, DevOps, product) on secure coding practices, security architecture, and remediation strategies.
  • Establish and maintain application security standards, guidelines, and best practices, aligned with OWASP, NIST, ISO, and industry frameworks.
  • Ensure vulnerabilities are classified, prioritized, and remediated according to vulnerability management policies and regulatory requirements.
  • Work closely with DevSecOps teams to ensure SAST/DAST/IAST/SCA tools are integrated into CI/CD pipelines and functioning effectively.
  • Track and manage security issues to resolution, providing metrics, reports, and dashboards for leadership visibility.
  • Stay up-to-date with emerging security threats, vulnerabilities, tools, and methodologies to continuously improve Prosper's security posture.

Requirements

  • Bachelor's degree in Computer Science, Information Security, or related field, with 8+ years of relevant experience (or Master's degree with 6+ years).
  • Strong hands-on experience in application security, secure coding, and penetration testing.
  • Development background with expertise in Java/Python, SQL, JavaScript, HTML and experience reviewing modern application architectures.
  • Experience working with modern web application frameworks (e.g., Spring Boot, .NET, J2EE, Rails, REST, SOAP).
  • In-depth understanding of web and API security vulnerabilities (e.g., OWASP Top 10, API Top 10, CWE).
  • Familiarity with authentication and authorization protocols (e.g., OAuth2, OIDC, SAML).
  • Knowledge of application security testing tools (SAST, DAST, SCA, IAST) and methodologies.
  • Proven experience working with DevOps/DevSecOps pipelines, integrating security tools and automation.
  • Strong understanding of vulnerability management processes and regulatory frameworks (e.g., PCI DSS, GDPR, SOC 2).

Nice-to-haves

  • Knowledge of cloud security (AWS, GCP, Azure) and container security (Docker, Kubernetes).
  • Security experience in Agile, CI/CD, and fast-paced product development environments.
  • Industry certifications such as OSCP, CSSLP, GWAPT, CEH, GPEN, CISSP.
  • Familiarity with mobile application security testing and API security testing tools (e.g., Burp Suite, Postman, ZAP, Insomnia).
  • Knowledge of network security, infrastructure security, and microservices architecture.
  • Experience driving secure SDLC initiatives and developer security education.

Benefits

  • The opportunity to collaborate with a team of creative, fun, and driven colleagues on products that have an immediate and significant impact on people's lives.
  • The opportunity to work in a fast-paced environment with experienced industry leaders.
  • Flexible time off, comprehensive health coverage, competitive salary, paid parental leave.
  • Wellness benefits including access to mental health resources, virtual HIIT and yoga workouts.
  • A bevy of other perks including Udemy access, childcare assistance, pet insurance discounts, legal assistance, and additional discounts.
Hard Skills
Azure Security
1
Burp Suite
1
Docker
1
HTML
1
JavaScript
1
3mdh94uAvzXk F4db1nLco
0
5FJ1efr ir45kq6VznEj oM7AdU2b
0
5S4yXkZOL LxG7WDfZ81j5
0
9BP3g6VX4 80o4aOM7RQ
0
B6Fl3UnzPv2xfK ImeS0An
0
CKIpEoaM7B uA7mTRKcF
0
Dqj9
0
Eakr1mL qPEnFHcLfGU4
0
FfgbnZM RTQJvth
0
Fn62t9boDQO0 V6wASMNb
0
Gmspc9 VuGHWMA
0
H7beAGk SOXkomPHy
0
J2onkyr Km2Il4w
0
JHDZpqCAE BauRCqK9
0
JhzfwEBtnxeA xwlGNh2nX
0
Jqo2Oyar3 vfaclBmOHqQo
0
KxPGRW8 cg7r
0
KypYq7o2rHGmu0 oiOY7Gf5sS1
0
KzcPEy82O syoXiK5Z
0
P0BmV1R4 Gqjh1N0X8kv
0
PXCEgVTsJSMq3Y4 9SlzJUNuZ
0
Qht XujLnU5CJrlmQ oROQxNS
0
R7o86zndlBZ13 SLv7Gj4A8Ct0N
0
SLVWN PaSqy8nRO93X
0
XtkT2xE5Bjn
0
YMUem3lFtoA J0sPtxKNZjL3
0
Zlnfum
0
ZpRLAU9h85sW ZI4c6UKyAies
0
b1Bf3KY9
0
eIAuNUXiJyhv m2rEuoCB8
0
eV8Sc3K Puv9x0K
0
enzA9g5
0
gOkIx2Y3uXoP 9mtMvldhNeaJ
0
gVU06H2n S9RyCrPXM
0
gaS1HVUbMiqf L8cZTIv0
0
iZ5eGQwXJDOb 0qysp67u
0
jE1VNQinOeX tlNdAMC3ObXe
0
jJaNWRTHebF 8eh9YGVZq5zrj
0
nxRJeBM8U G7yUtdOowEkxRSM
0
pnZ8W vp8l7B
0
qlcbhoLPmN3Y4v n0C3YZBHhgk
0
sBU4S tyADzNQMu7o
0
seSHJXGDw luAexbvGIy8
0
vVr64b Tp8NnVjKv
0
xdfI2Me9lo VZkW7n1L3N
0
zng5lsw ChwLv
0
Soft Skills
4hFuxMJj WFMVcXZQ
0
Unlock 47 more keywords by signing up for Teal+
Sign Up
Build your resume with AI

A Smarter and Faster Way to Build Your Resume

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service