Senior Application Security Engineer

🕒 May 28

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Lumin Digital

Lumin Digital

51 - 200 employees

💳 Fintech

🤝 B2B

☁️ SaaS

Fintech • B2B • SaaS

Lumin Digital is a company that specializes in providing next-generation digital banking solutions for credit unions and banks. Their platform offers a wide array of services, including retail and commercial banking solutions, digital account opening, and tools to enhance user engagement and operational efficiency. With a focus on innovation and cutting-edge technology, Lumin Digital leverages artificial intelligence and robust security features to offer seamless, cloud-native services with near-perfect uptime. They are known for delivering business growth and cost savings for financial institutions, adapting to new technologies, and offering an enhanced user experience.

📋 Description

• Lead security architecture reviews for new and existing applications, ensuring secure-by-design principles are embedded from initial design through deployment and ongoing operation. • Develop, enforce, and continuously refine secure coding standards across engineering teams through a combination of automated security scans (SAST, DAST, SCA), AI-assisted code review using tools such as Claude Code, periodic manual code audits, and targeted secure development training. • Own the design, implementation, and evolution of Application Security Posture Management (ASPM) capabilities, integrating signals from static analysis, dynamic testing, software composition analysis, and runtime telemetry to build risk-scoring models that balance exploitability, data sensitivity, and business impact. • Continuously improve threat modeling frameworks across application components, third-party integrations, cloud-native architectures, and AI/LLM-powered features, leveraging tools such as Claude Security for accelerated threat model generation and scenario analysis. • Develop custom security automation tools and scripts to improve detection and response capabilities across cloud environments, including AI-assisted vulnerability auto-fix workflows and integration of AI-powered security tooling into CI/CD pipelines. • Own and operate the company’s bug bounty program end-to-end: define program strategy and scope, triage and validate external researcher submissions, assess severity, and maintain productive engagement with the security research community. • Manage vulnerability triage and prioritization processes, ensuring vulnerabilities are assessed based on exploitability, business impact, and compliance requirements, and that remediation timelines align with organizational risk tolerance.

🎯 Requirements

• Bachelor’s in Computer Science, Cybersecurity, Information Assurance, Software Engineering, or a related field, or an equivalent combination of education and experience. • Preferred certifications: CSSLP, OSCP, GWEB, or GWAPT. • Seven (7+) years of progressive experience in application security, software security engineering, or a closely related domain within production SaaS environments. • Extensive hands-on experience in secure software development, DevSecOps pipeline design, and security testing methodologies (SAST, DAST, SCA, penetration testing). • Demonstrated experience securing large-scale cloud-native applications, APIs, and microservices architectures. • Experience leading application security initiatives, defining program strategy, and mentoring engineering teams on secure development practices. • Demonstrated, regular hands-on use of AI-powered security and development tools (e.g., Claude Code, Claude Security, or comparable coding/security assistants) as part of daily security engineering workflows, not solely in an evaluative, advisory, or training capacity. • Experience assessing AI-specific attack surfaces in LLM-integrated applications, including prompt injection, context leakage, insecure tool use, and model denial-of-service.

🏖️ Benefits

• medical, dental, and vision insurance • a 401(k) with company match • flexible PTO plus 12 paid holidays • paid sick leave • paid parental and family leave • a lifestyle spending account • tuition reimbursement • a cell phone stipend

Apply Now

Similar Jobs

🕒 May 28

Enovis

5001 - 10000

⚕️ Healthcare Insurance

Robotics Application Engineer collaborating with customers to enhance welding solutions and sales growth. Engaging in technical consultations, demonstrations, and client onboarding in a fast-paced environment.

🕒 May 25

Skeleton Technologies

201 - 500

⚡ Energy

🚗 Transport

Application Engineer supporting data center customers and partners with power infrastructure. Providing pre-sales and post-sales technical support and optimizing system architectures for energy efficiency applications.

🕒 May 21

Cree

5001 - 10000

🔧 Hardware

⚡ Energy

Field Application Engineer serving as primary technical interface for Wolfspeed's customers. Driving SiC design wins and collaborating across regions in high-voltage applications.

🕒 May 20

Littelfuse

10,000+ employees

🔧 Hardware

⚡ Energy

Field Application Engineer providing technical guidance in HVAC, Industrial, and Data Center markets. Collaborating with customers on solutions for electrical energy transfer and management.

🕒 May 20

Spartech LLC

1001 - 5000

Applications Engineer at Spartech supporting thermoforming application development through trials and equipment processes. Identifying product performance attributes for new application opportunities in manufacturing.