Senior Application Security Engineer

🕒 May 7

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Onit

WebsiteLinkedInAll Job Openings

501 - 1000 employees

☁️ SaaS

🏢 Enterprise

🤖 Artificial Intelligence

SaaS • Enterprise • Artificial Intelligence

<Onit> is an AI-native legal operations and enterprise legal management software company that provides solutions for legal spend and matter management, contract lifecycle management (CLM), eBilling, vendor and compliance management, workflow automation, and AI-driven tools like ReviewAI and Spend Agent. Their Unity ELM platform and associated products (SimpleLegal, BusyLamp, ContractWorks, SecureDocs, OnitX CLM, and an App Catalog) enable legal teams to centralize documents, automate workflows, extract contract data via OCR, and optimize spend and vendor relationships. Onit serves enterprise legal operations, General Counsel, and contract managers across industries such as pharmaceutical, finance, insurance, technology, and government, and offers implementation, support, and professional services.

📋 Description

• Lead security reviews for application architecture and system design • Evaluate designs for authentication & authorization models, data access patterns, API exposure and trust boundaries • Provide clear, actionable guidance to engineering teams • Identify risks early and influence secure design decisions • Conduct pre-production / go-live security assessments • Determine whether a feature is safe to launch and what risks must be mitigated vs accepted • Partner with engineering and product to prioritize fixes and define compensating controls • Act as a security approver / advisor for production releases • Design and assess OAuth2, OIDC, SAML implementations • Identify and remediate broken access control and privilege escalation paths • Lead security reviews of REST, GraphQL, and event-driven APIs • Identify risks such as: Broken Object Level Authorization (BOLA), Injection vulnerabilities, Data leakage • Define standards for API authentication, Input validation, Rate limiting and abuse protection • Assess security risks in AI-powered features and systems • Lead vulnerability identification using Static analysis (SAST) and Dependency scanning (SCA) • Assess and map application attack surface • Integrate and optimize security tools in CI/CD pipelines • Improve developer experience with secure defaults

🎯 Requirements

• 10+ years of experience in Application Security, Security Engineering, or Software Engineering with a strong security focus • Proven experience performing security architecture/design reviews, as well as Go-live/production readiness security assessments, with experience with cloud platforms (AWS, GCP, Azure) preferred • Strong understanding of OWASP Top 10 and modern web vulnerabilities and secure system design and threat modeling • Experience with SAST tools (e.g., SonarQube, Checkmarx) and SCA tools (e.g., Snyk, Dependabot) • Ability to assess real-world risk and prioritize effectively in a SaaS environment • Understanding of LLM risks (prompt injection, data leakage) and AI system architecture • Exposure to securing AI features or platforms • Familiarity with MCP or similar AI integration patterns • Deep Expertise in the following: • Authentication & Authorization • OAuth2, OIDC, SAML • RBAC / ABAC / least privilege models • API Security • REST / GraphQL • Common API attack vectors (BOLA, injection, data exposure) • Application Security • Secure coding practices • Input validation, output encoding, session management

🏖️ Benefits

• Health Coverage: Employee and immediate family members. • Time Away: Flexible paid time off and 10 company paid holidays annually. • Family Support: Exceptional paid leave for birth parents, non-birth parents, and caregivers.  Onit also offers surrogacy and adoption reimbursement. • Income Protection: 100% employer-paid life and disability insurance. • Additional Coverage Options: Voluntary benefits including hospital indemnity, critical illness, accident. • Tax-Advantaged Accounts: Flexi, NPS. • Community Engagement: One paid volunteer day each year to give back to the community.