Application Security Engineer
About Remote
Remote is solving global remote organizations’ biggest challenge: employing anyone anywhere compliantly. We make it possible for businesses big and small to employ a global team by handling global payroll, benefits, taxes, and compliance. Check out remote.com/how-it-works to learn more or if you’re interested in adding to the mission, scroll down to apply now.
Not only do we encourage folks from all ethnic groups, genders, sexuality, age, abilities, disability status and any other under-represented group to apply, but we prioritize a sense of belonging. We have 4 ERGs (Women, Disability, Queer, Minorities in Tech) who meet regularly with the People team. During your interviews and beyond, we ask & encourage anybody who needs an accommodation to request one from their recruiter.
At Remote, we embrace AI as a valuable tool while prioritizing human creativity and authenticity. We look forward to meeting candidates who balance innovation with genuine expertise and experience. To learn more about Remote's AI guidelines check see here.
All of our positions are fully remote. You do not have to relocate to join us!
The position
This is an exciting time to join Remote and make a personal difference in the global employment space as an Application Security Engineer, joining our Security team.
Key responsibilities
- Perform vulnerability scans and discuss results with teams.
- Perform code review (ad-hoc) to identify vulnerabilities.
- Assists in vulnerability management process, including assign/modify CVSS score and severity level
- Support identification of potential security risks from a threat model.
- Participate in product features design to identify potential security risks.
- Investigate and determines the exploitability of a vulnerability, either theorically or with a PoC
- Supports management of CI/CD security tools.
Requirements
- From 2 to 4 years of experience.
- Bachelor's degree in Computer Science, Cybersecurity, or related field (or equivalent experience).
- Good understanding of most common security vulnerabilities (e.g. OWASP Top 10 web, api, mobile and IaC) and general mitigation strategies
- Knowledge of secure coding practices and Secure SDLC
- Experience with security testing tools (SAST, SCA, DAST, etc)
- Basic knowledge of threat modelling
- Experience with Vulnerability Management
- Knowledge of automation of security tools (scripting, playbooks, etc)
- Writes and speaks fluent English.
- Excellent communication and interpersonal skills
- Good analytical and problem-solving skills
- Team oriented
Nice to have
- Experience with offensive testing toolkits (e.g. burp suite, owasp zap)
- Knowledge of tuning appsec testing tools
- Security Certifications
- Experience working remotely
- Experience running a bug bounty program
- Experience working with SIEM solution
Practicals
- You'll report to: Application Security Manager
- Team: Security
- Location: Anywhere in the World
- Start date: As soon as possible
Remote Compensation Philosophy
Remote's Total Rewards philosophy is to ensure fair, unbiased compensation and fair equity pay along with competitive benefits in all locations in which we operate. We do not agree to or encourage cheap-labor practices and therefore we ensure to pay above in-location rates. We hope to inspire other companies to support global talent-hiring and bring local wealth to developing countries.
At first glance our salary bands seem quite wide - here is some context. At Remote we have international operations and a globally distributed workforce. We use geo ranges to consider geographic pay differentials as part of our global compensation strategy to remain competitive in various markets while we hiring globally.
The base salary range for this full-time position is 35,250 USD to 79,300 USD. Our salary ranges are determined by role, level and location, and our job titles may span more than one career level. The actual base pay for the successful candidate in this role is dependent upon many factors such as location, transferable or job-related skills, work experience, relevant training, business needs, and market demands. The base salary range may be subject to change.
At Remote, we foster internal mobility as a key element of our culture of employee growth and development, supported by a compensation philosophy that guarantees pay equity and fairness. Therefore, all compensation changes associated with an internal move will be reviewed by the Total Rewards & People Enablement team on a case by case basis.
Application process
- Interview with recruiter
- Interview with future manager
- Take home challenge
- Interview with team members (no managers present)
- Executive interview
- Bar Raiser Interview
- Prior employment verification check
- offer
#LI-DNP
Benefits
- work from anywhere
- flexible paid time off
- flexible working hours (we are async)
- 16 weeks paid parental leave
- mental health support services
- stock options
- learning budget
- home office budget & IT equipment
- budget for local in-person social events or co-working spaces
How you’ll plan your day (and life)
We work async at Remote which means you can plan your schedule around your life (and not around meetings). Read more at remote.com/async.
You will be empowered to take ownership and be proactive. When in doubt you will default to action instead of waiting. Your life-work balance is important and you will be encouraged to put yourself and your family first, and fit work around your needs.
If that sounds like something you want, apply now!
How to apply
- Please fill out the form below and upload your CV with a PDF format.
- We kindly ask you to submit your application and CV in English, as this is the standardised language we use here at Remote.
- If you don’t have an up to date CV but you are still interested in talking to us, please feel free to add a copy of your LinkedIn profile instead.
We will ask you to voluntarily tell us your pronouns at interview stage, and you will have the option to answer our anonymous demographic questionnaire when you apply below. As an equal employment opportunity employer it’s important to us that our workforce reflects people of all backgrounds, identities, and experiences and this data will help us to stay accountable. We thank you for providing this data, if you chose to.
At Remote, we embrace AI as a valuable tool while prioritizing human creativity and authenticity. We look forward to meeting candidates who balance innovation with genuine expertise and experience. To learn more about Remote's AI guidelines check see here.
Please note we accept applications on an ongoing basis.
Apply for this job
*
indicates a required field