Senior Application Security Engineer (Remote US)

Reporting to the Director, Application Security, you will work with software engineers and leadership to address security risks and provide mitigation recommendations within the Secure Development Lifecycle (SDLC). Responsibilities include collaborating with development teams to understand their needs, assess risks, and customize solutions. You will implement and manage security tools (SAST, SCA, DAST) and integrate solutions into CI/CD pipelines. Reviewing applications against common flaws (e.g., OWASP Top 10) and provide visibility to senior management is also a key responsibility. You will also work with Risk & Compliance teams on audits (e.g., SOC 2, PCI-DSS, HIPAA) and recommend relevant policies and also define security guardrails through automated tool policies, SLAs, and custom rules.