Application Security - Vulnerability Discovery
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Jobgether is hiring an Application Security Engineer for a partner company to focus on vulnerability discovery and remediation. The role involves triaging vulnerabilities, partnering with engineering teams, and improving security practices.
Key Skills for This Role
Responsibilities
- Triage, validate, prioritize, and manage security vulnerabilities from various sources
- Partner with engineering and product teams to drive remediation efforts
- Review security related pull requests and source code changes
- Analyze findings from AI powered security tools and reduce false positives
- Participate in security incident response activities
- Support and enhance secure SDLC practices
- Develop security tooling, automation, and workflows
- Configure, optimize, and maintain vulnerability scanning platforms
- Track remediation progress and security metrics
- Collaborate with security architecture and development teams
- Create security documentation and best practices
- Participate in on call rotation for security triage
Requirements
- 3+ years of experience in application security engineering or related security role
- Availability to work until 11:00 AM Pacific Standard Time (PST)
- Strong understanding of application security principles, vulnerability management, and secure software development practices
- Experience building and scaling Secure Development Lifecycle (SDLC) programs
- Hands on experience handling vulnerability reports, bug bounty findings, and security assessments
- Experience partnering with engineering and product teams to drive security improvements
- Experience triaging vulnerabilities from SAST, DAST, SCA, penetration testing, etc.
- Strong knowledge of OWASP Top 10, API security, authentication, authorization, secrets management, cryptography
- Experience reviewing source code and identifying vulnerabilities across modern programming languages
- Familiarity with security tools such as SAST, DAST, SCA, infrastructure as code scanning, secrets detection
- Experience working with cloud native architectures and public cloud environments, preferably AWS
- Strong communication, collaboration, and relationship building skills
Full Job Posting
Overview
- This role focuses on strengthening application security by identifying, analyzing, and reducing vulnerabilities across modern software environments.
- You will collaborate with engineering and product teams to improve security practices throughout the software development lifecycle.
- The position combines vulnerability management, secure coding expertise, automation, and security research to protect critical applications.
Accountabilities
- Triage, validate, prioritize, and manage security vulnerabilities discovered through manual reviews, automated security tools, bug bounty programs, and AI assisted security platforms.
- Partner with software engineering and product teams to drive remediation efforts, provide actionable security guidance, and ensure timely resolution of findings based on risk and severity.
- Review security related pull requests, source code changes, and development workflows to identify vulnerabilities and recommend secure implementation approaches.
- Analyze findings generated by AI powered security tools and automation platforms, reduce false positives, and improve vulnerability detection workflows.
- Participate in security incident response activities, investigations, and root cause analysis related to application security issues.
- Support and enhance secure software development lifecycle (SDLC) practices across engineering organizations.
- Develop security tooling, automation, and workflows to improve vulnerability detection, security coverage, and operational efficiency.
- Configure, optimize, and maintain vulnerability scanning platforms, including policies, schedules, and reporting processes.
- Track remediation progress, security metrics, and risk reduction initiatives while providing visibility to stakeholders.
- Collaborate with security architecture and development teams to improve vulnerability discovery, prioritization, and remediation strategies.
- Create security documentation, best practices, and educational resources to promote secure coding practices across teams.
- Participate in an on call rotation to support security triage, code reviews, and application security requests.
Requirements
- 3+ years of experience in application security engineering or a related security role.
- Availability to work until 11:00 AM Pacific Standard Time (PST).
- Strong understanding of application security principles, vulnerability management, and secure software development practices.
- Experience building and scaling Secure Development Lifecycle (SDLC) programs.
- Hands on experience handling vulnerability reports, bug bounty findings, and security assessments.
- Experience partnering with engineering and product teams to drive security improvements and remediation initiatives.
- Experience triaging and prioritizing vulnerabilities from SAST, DAST, SCA, dependency scanning, penetration testing, and similar security assessments.
- Strong knowledge of common application security risks, including OWASP Top 10, API security, authentication, authorization, secrets management, and cryptography.
- Experience reviewing source code and identifying vulnerabilities across modern programming languages and frameworks.
- Familiarity with security tools such as SAST, DAST, SCA, infrastructure as code scanning, secrets detection, and vulnerability management platforms.
- Experience working with cloud native architectures and public cloud environments, preferably AWS.
- Ability to evaluate security findings, identify meaningful risks, and communicate clear remediation recommendations.
Benefits
- Fully remote work opportunity.
- Opportunity to contribute to large scale application security initiatives.
- Flexible work environment supporting collaboration with distributed teams.
- Ability to work on modern security challenges involving cloud, automation, and AI powered security technologies.
- Opportunity to influence secure development practices across engineering organizations.
- Exposure to advanced vulnerability management processes and security tooling.
- Professional growth opportunities within a technology focused environment.
- Opportunity to collaborate with experienced security, engineering, and product professionals.
- Competitive compensation package based on experience and expertise.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Jobgether
Google / Meta / TikTok Ads Specialist
Abu Dhabi, UAE
We are looking for a Google / Meta / TikTok Ads Specialist to create, manage, and optimize paid advertising campaigns for international brands. The role requires at least 2 years of experience with Google Ads, Meta Ads M
Outbound Sales Development Representative (AEC & Energy Focus)
Abu Dhabi, UAE
This role focuses on generating qualified sales opportunities through outbound cold calling and executive-level engagement in the AEC and Energy industries. The ideal candidate has 4+ years of B2B cold calling experience
Customer Service & Technical Support Team Lead
Abu Dhabi, UAE
Seeking a Customer Service & Technical Support Team Lead to manage remote support teams, improve service quality, and resolve complex telecom issues. Requires 3+ years of wireless carrier support leadership experience. F
Brand Manager
Abu Dhabi, UAE
Hiring a Brand Manager to develop brand strategies, manage campaigns, and strengthen market presence across digital channels. Requires 6+ years of brand management experience and a Bachelor's degree in Marketing or relat
Science Content Writer
Abu Dhabi, UAE
This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Science Content Writer based in United Arab Emirates. This fully remote role is designed f
Data Catalog and Data Governance Specialist
Abu Dhabi, UAE
We are looking for a Data Catalog and Data Governance Specialist to build trusted, accessible, and well-managed data foundations. You will develop enterprise data catalog capabilities, strengthen metadata management, and
AI Operations Coordinator (Claude)
Abu Dhabi, UAE
We are seeking an AI Operations Coordinator to drive practical AI adoption and operational transformation. This role combines AI innovation, process improvement, and digital operations, implementing AI-powered workflows
Email Marketing Designer → CRO Designer
Abu Dhabi, UAE
Jobgether is seeking a creative marketing designer to evolve into a conversion-driven designer for eCommerce brands. You will design high-performing email campaigns, landing pages, and A/B test variations, collaborating
Google / Meta / TikTok Ads Specialist
Abu Dhabi, UAE
Outbound Sales Development Representative (AEC & Energy Focus)
Abu Dhabi, UAE
Customer Service & Technical Support Team Lead
Abu Dhabi, UAE
Brand Manager
Abu Dhabi, UAE
Science Content Writer
Abu Dhabi, UAE
Data Catalog and Data Governance Specialist
Abu Dhabi, UAE
AI Operations Coordinator (Claude)
Abu Dhabi, UAE
Email Marketing Designer → CRO Designer
Abu Dhabi, UAE