Senior Application Security Engineer - Remote

About the Role

We're hiring a Senior Application Security Engineer to join our innovative team at Quanata. In this remote role, you'll play a crucial part in safeguarding our applications and ensuring security best practices are embedded throughout the software development lifecycle.

What You'll Do

• Serve as the primary partner for web and backend engineering teams, helping embed security best practices throughout the software development lifecycle.
• Conduct security design reviews and threat modeling on APIs, web features, and service integrations, integrating SAST, SCA, and DAST tools into CI/CD pipelines.
• Support secure development practices across security champions and engineering teams.
• Review source code and deployment configurations for security vulnerabilities.
• Collaborate with developers to triage, fix, and validate vulnerability findings.
• Participate in cross-functional incident response and remediation planning.
• Draft and maintain AppSec guidance for engineering teams and security champions.
• Contribute to security awareness and enablement across the engineering organization.

Requirements

• Bachelor's degree or equivalent relevant experience.
• 6 - 8 years of experience in application security or full-stack development with security expertise.
• Strong understanding of secure coding in JavaScript/TypeScript, Node.js, and web standards.
• Familiar with application risk and vulnerabilities (OWASP Top 10, API Security, SSRF, etc.).
• Experience with code scanning tools (e.g., CodeQL, Semgrep, SonarQube, Snyk).
• Clear and thoughtful communicator with the ability to guide engineers at all levels.
• Working concepts of offensive security testing such as pentesting or bug bounties.

Nice to Have

• Experience with GraphQL security.
• Participation in security champions programs or secure SDLC rollouts.
• Contributions to open-source security tooling.
• Familiarity with infrastructure-as-code and container security.

What We Offer

• A competitive salary range of $220,000 to $350,000, determined based on skills and experience.
• Comprehensive health, wellness, and other benefits including medical, dental, vision, and life insurance.
• A one-time payment of $2,000 for home office equipment and furniture.
• Four weeks of paid time off in the first year, with additional parental leave benefits.
• Up to $5,000 annually for professional development and learning opportunities.
• Remote-first work environment with flexible arrangements.
• Core meeting hours from 9 AM - 2 PM Pacific time for collaboration.