Application Security Engineer

Job not on LinkedIn

November 20

Apply Now

Receive Emails with Similar Jobs

Raptor Technologies

WebsiteLinkedInAll Job Openings

Education • SaaS • Cybersecurity

Raptor Technologies is a company that specializes in integrated school safety solutions. They provide a comprehensive suite of software and services designed to enhance school security, focusing on tools such as visitor management systems, behavioral threat assessment software, and emergency management systems. Raptor's solutions are utilized by a vast number of educational institutions to ensure the safety and compliance of students and staff, offering features like emergency notifications, training programs, and various management systems tailored for schools.

51 - 200 employees

📚 Education

☁️ SaaS

🔒 Cybersecurity

📋 Description

• Perform application security testing (SAST, DAST, SCA, and manual validation) to identify vulnerabilities in web, API, and SaaS applications • Validate reported vulnerabilities from internal scans, bug bounty programs, and third-party testing vendors (e.g., NetSPI, BugCrowd, HackerOne) • Partner with development and DevOps teams to triage, remediate, and verify fixes for confirmed issues • Manage and track SLOs for vulnerability response and remediation in alignment with security SLAs • Configure, optimize, and maintain the latest AppSec tools and integrations, including but not limited to: • SAST: Checkmarx, Veracode, GitHub Advanced Security • DAST: Burp Suite, Invicti, OWASP ZAP • SCA/Dependency Management: Snyk, Mend, or Dependabot • Cloud/SaaS Security: Wiz, Orca, Netskope • Collaborate with DevSecOps to integrate automated testing into CI/CD pipelines • Maintain dashboards, reports, and KPIs to track open vulnerabilities, SLO compliance, and remediation progress • Support compliance and audit activities related to application security (SOC 2, ISO 27001, PCI) • Contribute to secure coding guidelines, security training, and awareness programs for developers • Stay current on emerging threats, tools, and best practices within the AppSec ecosystem

🎯 Requirements

• 5+ years of experience in application security, penetration testing, or secure software development • Strong understanding of OWASP Top 10, CWE, and common web application vulnerabilities • Hands-on experience with AppSec toolchains (SAST, DAST, SCA, IAST, and container scanning tools) • Ability to perform manual testing to confirm and validate automated findings • Experience with CI/CD pipelines (GitHub Actions, Jenkins, GitLab CI) and security integrations • Experience tracking and managing vulnerabilities in JIRA, ServiceNow, or similar platforms • Familiarity with SaaS security, OAuth, and API testing frameworks (Postman, Insomnia) • Strong documentation, communication, and cross-functional collaboration skills

🏖️ Benefits

• Remote-first philosophy • Flexible paid time off • Paid parental leave • 11 Paid holidays per year • Workplace flexibility • Affordable health coverage (medical, dental, vision), paid 100% for employee only medical • 401(k) employer contribution to help you plan for the future • Company paid life insurance, STD, and LTD • Pet insurance