S
Posted 5 hours ago
Application Security Engineer
SmartRentApplication Security Engineer
Perks & benefits
Medical InsuranceHealth InsurancePaid Leave
Requirements
4-6 years application security experience, Knowledge of Elixir, JavaScript, Ruby, or Python, OWASP Top 10 expertise, SAST, DAST, and SCA tool experience, AWS cloud security experience
Skills
Application SecurityAWSOWASP
About the role
Responsibilities
- Develop and execute a comprehensive application security strategy aligned with business objectives
- Maintain secure coding standards, security documentation, and application security processes
- Deliver application security and privacy training for development teams
- Review source code to identify vulnerabilities, insecure patterns, and secrets exposure
- Triage, reproduce, and support remediation of application vulnerabilities (SQL injection, XSS, etc.)
- Manage application security workflows, including task prioritization and ticket tracking
- Maintain and enhance the responsible disclosure and vulnerability reporting program
- Partner with developers to implement encryption, hashing, and secure key management
- Collaborate with engineering teams to perform threat modeling and identify attack paths
- Lead investigation and mitigation of application-level security incidents
- Provide guidance on security and privacy controls for AWS cloud infrastructure and IoT hardware
- Perform adversarial testing and security validation of applications and internal AI models
- Use cloud-native security tools to secure LLM integrations
Requirements
- 4–6 years of experience in application security
- Experience identifying and remediating vulnerabilities in Elixir, JavaScript, Ruby, Python, or similar
- Strong knowledge of OWASP Top 10 and OWASP API Top 10
- Proficiency with modern authentication mechanisms like JWT and OAuth
- Hands-on experience with SAST, DAST, and SCA platforms (e.g., GHAS, Burp Suite)
- Experience with cloud security controls and AWS-native tools
- Experience managing vulnerability disclosure or bug bounty programs
- Strong written and verbal communication skills
Preferred Qualifications
- Industry certifications such as CSSLP, GIAC GWAPT, or CEH
- Experience with CloudFlare or AWS security services
- Experience integrating security practices into SDLC processes
- Experience supporting threat modeling or application security architecture reviews
About the Company
SmartRent (NYSE: SMRT) is revolutionizing how people live and work with the industry’s only end-to-end platform designed for the rental housing industry, uniting software, hardware, and support in one ecosystem.
ScoutJobs Agent
Get matches like this delivered daily
Sign up free — we'll pull jobs that fit your CV from across the web and rank them for you.
Get started — it's freeApplication Security Engineer
SmartRent · Phoenix
