remote

Senior Application Security Engineer - Anvil

Security Engineer

Lead the design and implementation of secure software solutions, driving threat modeling, security testing, and DevSecOps practices for mission‑critical applications using Python and modern security tooling.

About the role

Key Responsibilities

Design and execute application security programs, including threat modeling, code reviews, and security architecture assessments.
Integrate Static and Dynamic Application Security Testing (SAST/DAST) into CI/CD pipelines to ensure continuous protection.
Collaborate with development and product teams to embed security controls early in the software development lifecycle.
Develop and maintain security automation scripts and tools, primarily using Python, to streamline vulnerability detection and remediation.
Provide expert guidance on secure coding practices, OWASP Top 10, and emerging threats across multiple projects.

Requirements

5+ years of hands‑on experience in application security, including threat modeling and security testing.
Proficiency with SAST/DAST tools (e.g., SonarQube, Burp Suite) and integration into CI/CD platforms such as Jenkins, GitLab CI, or Azure DevOps.
Strong programming/scripting skills in Python and familiarity with secure coding standards.
Experience implementing DevSecOps practices and automating security controls in cloud‑native environments.
Excellent communication skills to convey security concepts to technical and non‑technical stakeholders.

Skills

python

CompanyAnvil

DepartmentEngineering

LocationON, California, United States

Experience5+ years

Tenurefull-time

LevelSenior

Salary165,000

Posted June 27, 2026