Senior Application Security Engineer

at Kaseya
  • Remote - United States

Remote

Cybersecurity

Senior

Job description

Kaseya® is the leading provider of complete IT infrastructure and security management solutions for Managed Service Providers (MSPs) and internal IT organizations worldwide powered by AI. Kaseya’s best-in-breed technologies allow organizations to efficiently manage and secure IT to drive sustained business success. Kaseya has achieved sustained, strong double-digit growth over the past several years and is backed by Insight Venture Partners www.insightpartners.com), a leading global private equity firm investing in high-growth technology and software companies that drive transformative change in the industries they serve.

Founded in 2000, Kaseya currently serves customers in over 20 countries across a wide variety of industries and manages over 15 million endpoints worldwide. To learn more about our company and our award-winning solutions, go to www.Kaseya.com and for more information on Kaseya’s culture, please click here: Kaseya Culture.

Kaseya is not your typical company. We are not afraid to tell you exactly who we are and our expectations. The thousands of people that succeed at Kaseya are prepared to go above and beyond for the betterment of our customers.

Position Overview

As an Application Security Engineer, you will play a key role in ensuring that Kaseya’s applications are secure by proactively identifying and mitigating security vulnerabilities within the code. Your primary focus will be to embed security into the development lifecycle, ensuring applications are built with security at their core.

You will work closely with development teams to review code, implement security best practices, and identify vulnerabilities at all stages of development. You will be responsible for assessing code, executing security testing, and helping to embed secure coding practices across development processes.

Primary Responsibilities

  • Perform Security Assessments and Code Reviews: Conduct thorough security assessments, focusing on identifying and mitigating vulnerabilities in application code. Perform secure code reviews to ensure that applications are secure by design.

  • Implement Security Best Practices: Develop, implement, and enforce security guidelines for developers to follow. Ensure that secure coding practices are followed throughout the software development lifecycle (SDLC).

  • Vulnerability Remediation: Work with development teams to address and resolve identified security vulnerabilities, ensuring they are fixed efficiently and properly tested.

  • Security Testing Integration: Integrate security testing tools (e.g., Static Application Security Testing - SAST, Dynamic Application Security Testing - DAST) into the development pipeline to identify vulnerabilities early in the development process.

  • Threat Modeling: Work with developers to perform threat modeling, identifying potential security risks in the architecture and design of applications.

  • Continuous Improvement: Continuously research and apply new security techniques, tools, and methodologies to enhance the organization’s application security posture.

  • Collaboration with Development Teams: Collaborate directly with development teams to ensure that security is integrated into every phase of application development, from design to deployment.

Skills & Qualifications

Required

  • Proficiency in Secure Coding Practices: Solid understanding of secure coding standards and best practices in languages such as Java, Python, C#, or JavaScript.

  • Experience with Vulnerability Assessment Tools: Familiarity with security tools such as SAST, DAST, and IAST (Interactive Application Security Testing), and experience with scanning and interpreting results to fix vulnerabilities.

  • Deep Knowledge of Web and Application Security: Strong understanding of common web application vulnerabilities (OWASP Top 10), such as SQL injection, cross-site scripting (XSS), and cross-site request forgery (CSRF).

  • Experience with Threat Modeling: Knowledge of threat modeling frameworks and methodologies to identify potential security risks and mitigate them during development.

  • Proven Problem-Solving Skills: Ability to identify security flaws within application code and effectively collaborate with developers to resolve them.

  • Strong Communication Skills: Ability to clearly document security issues, report findings, and communicate with both technical and non-technical stakeholders.

Preferred

  • Familiarity with Security Frameworks and Libraries: Experience working with security libraries and frameworks (e.g., Spring Security, OWASP Dependency-Check, etc.) to enhance application security.

  • Understanding of Security Automation: Experience in automating security testing within the CI/CD pipeline to ensure continuous security verification during development.

  • Cloud Security Knowledge: Experience securing cloud-native applications and familiarity with cloud security platforms (e.g., AWS, Azure, Google Cloud).

Education & Certifications

Minimum

  • Bachelor’s degree in Computer Science, Cybersecurity, or a related field.

  • At least one expert-level security certification, such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Secure Software Lifecycle Professional (CSSLP).

Preferred

  • Additional certifications or coursework in application security or advanced threat modeling would be a plus.

Experience

Minimum

  • At least 2+ years of experience in an application security engineering role, focusing on secure coding, vulnerability assessment, and secure development practices.

  • 5+ years of experience in IT, with significant hands-on experience in software development and application security.

Preferred

  • Over 10+ years of experience in IT, with an extensive focus on application security.

  • Experience with DevSecOps practices and embedding security within Agile and DevOps environments.

IND2

Join the Kaseya growth rocket ship and see how we are #ChangingLives !

Additional information

Kaseya provides equal employment opportunity to all employees and applicants without regard to race, religion, age, ancestry, gender, sex, sexual orientation, national origin, citizenship status, physical or mental disability, veteran status, marital status, or any other characteristic protected by applicable law.

Share this job:
Please let Kaseya know you found this job on Remote First Jobs 🙏

Similar Remote Jobs

Kaseya logo

Kaseya

  • 5001-10000 employees
  • 13 remote jobs

Latest Jobs at Kaseya

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service 🙏

Apply now