Remote Sr. Application Security Engineer

at TrueML

Posted 1 day ago 3 applied

Description:

  • TrueML is a mission-driven financial software company focused on improving customer experiences for distressed borrowers.
  • The company utilizes machine learning to provide personalized, digital-first financial management solutions.
  • The Senior Application Security Engineer will ensure the security of applications throughout the development lifecycle.
  • This role involves collaborating with engineering teams to identify and mitigate security vulnerabilities and implement security best practices.
  • The ideal candidate should possess excellent communication skills and the ability to work effectively with cross-functional teams.
  • Key responsibilities include integrating security into the software development lifecycle, managing vulnerabilities, implementing AWS security controls, and conducting threat modeling.

Requirements:

  • A Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent experience is required.
  • A minimum of 8 years of experience in application security or a related role is necessary.
  • Strong experience with AWS security services and best practices is essential.
  • Familiarity with DevOps tools and practices, including CI/CD pipelines, containerization, and Infrastructure as Code (IaC) is required.
  • Proficiency in at least one programming language, such as Python or Go, is necessary.
  • A strong understanding of web application security, including the OWASP Top Ten and secure coding practices, is required.
  • Familiarity with security tools and technologies such as SAST, DAST, SIEM, and WAFs is important.
  • Excellent verbal and written communication skills are essential.
  • Strong problem-solving skills and attention to detail are required.
  • The ability to work well in a team environment and collaborate effectively with engineers, developers, and other stakeholders is necessary.
  • Preferred qualifications include AWS Certified Security – Specialty or similar certification, experience with container security, familiarity with modern authentication and authorization protocols, and knowledge of secure coding frameworks and libraries.

Benefits:

  • Employees will receive everything they need to work remotely.
  • The company offers unlimited paid time off (PTO).
  • Medical, dental, and vision insurance are provided.
  • A 401k plan is available through Charles Schwab.
  • Flexible Spending Account, Limited FSA, and Health Savings Account options are included with an eligible health care package.
  • Company-paid short-term and long-term disability insurance, as well as basic life insurance, are provided.
  • Family-friendly maternity and paternity leave is offered.
  • An Employee Assistance Program (EAP) via Claremont is available, providing free short-term counseling for mental health, legal consultations, financial consultations, and access to work/life consultants.
  • Employees can benefit from the PerkSpot discount program, which offers exclusive discounts to over 900 merchants nationwide and up to 60% off hotels worldwide.
  • Paid time off is provided for employees to engage in volunteer work within their communities.
  • Access to the Wellness Coach app is available for employees and up to five family members.