Application Security Engineer Senior Remote

Senior Application Security Engineer, TaxDome Salary: $4,000 – $6,000 Format: remote-first Tech stack: Ruby on Rails · TypeScript · React · GitHub Actions · SAST · DAST · SCA · IAST · AWS · Docker · Kubernetes · BSIMM · OWASP · CI/CD Who we're looking for: — 5+ years of software engineering or DevOps experience — 3+ years in Application Security — Strong knowledge of OWASP Top 10, CWE, threat modeling — Ability to perform manual code reviews in Ruby/TypeScript — Experience integrating security tools into CI/CD — Strong communication skills and ability to work closely with developers — Self-driven, proactive, and comfortable owning the AppSec roadmap What you’ll be doing: Program & Strategy: — Building and maturing the AppSec program using BSIMM — Leading threat modeling sessions and secure design reviews — Setting security standards, policies, and best practices Tooling & Automation: — Selecting and managing AppSec tools (SAST/DAST/SCA/IAST) — Integrating security checks into CI/CD pipelines — Automating developer-friendly security workflows Collaboration & Enablement: — Guiding developers through vulnerability remediation — Running a Security Champions program — Supporting incident response with application-layer expertise Why this role matters You’ll define how security is built into a fast-growing SaaS platform — shaping the strategy, tooling, processes, and culture across engineering. Contact: @inessavasilyeva