This position is posted by Jobgether on behalf of a partner company. We are currently looking for an Application Security Engineer in the United States.

This role sits at the forefront of offensive security and application protection, focused on identifying, analyzing, and helping remediate vulnerabilities in complex web, mobile, and cloud-based systems. You will work closely with globally recognized technology companies and high-growth startups to strengthen the security posture of their applications through deep technical assessments and hands-on testing. The environment is highly research-driven, combining consulting, vulnerability discovery, and security engineering. You will operate across diverse technologies and architectures, often uncovering subtle or high-impact security flaws in large-scale systems. A strong emphasis is placed on autonomy, curiosity, and continuous learning, with dedicated time for security research and tool development. This is a role for engineers who enjoy solving complex security puzzles while influencing real-world product security at scale.

Accountabilities

Conduct in-depth security testing of web, mobile (iOS/Android), and cloud applications using gray-box methodologies to identify vulnerabilities and design weaknesses.
Perform vulnerability research and coordinate findings with internal experts and client teams to validate impact and guide remediation strategies.
Partner directly with clients to ensure security objectives are met and to provide actionable guidance on application security and cloud configuration best practices.
Lead consulting engagements and support the development and mentoring of other security engineers within the team.
Execute cloud security audits across major platforms, identifying misconfigurations and security gaps in distributed environments.
Contribute to the development of security tools, exploit research, and new attack techniques as part of dedicated research time.
Support secure design discussions and help shape product security improvements for client applications.

Requirements

Strong hands-on experience in application security, with proven ability to identify, document, and help remediate security vulnerabilities.
Deep expertise in web security, including demonstrated research, tooling, publications, or vulnerability disclosures.
Strong understanding of complex distributed systems, with the ability to analyze multi-layered application architectures.
Experience with security testing across multiple languages, frameworks, and environments.
Practical knowledge of cloud platforms and common security misconfigurations in cloud-native architectures.
Ability to write or review code and security tools is highly desirable.
Strong analytical thinking, curiosity, and passion for understanding how systems work at a deep level.
Excellent communication skills and ability to work directly with technical and non-technical stakeholders.
Self-driven mindset with eagerness to learn, adapt, and continuously improve technical expertise.

Benefits

Fully remote role within the United States with flexible working hours.
Competitive salary with performance-based bonus opportunities.
Dedicated 25% time allocation for security research and innovation.
Startup-like, collaborative environment focused on technical excellence.
Exposure to high-impact security projects for leading global technology companies.
Opportunities to attend and present at international security conferences.
Paid time off and company-sponsored retreats and team gatherings.
Access to continuous learning, experimentation, and tool-building initiatives.

How Jobgether works:

We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.

We appreciate your interest and wish you the best!

Why Apply Through Jobgether?

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.

#LI-CL1

Application Security Engineer

Accountabilities

Requirements

Benefits

Job Details