Senior Application Security Engineer

at TrueML
💰 $61k-$172k
🇺🇸 United States - Remote
🔒 Cybersecurity🟣 Senior

Job description

Why TrueML?

TrueML is a mission-driven financial software company that aims to create better customer experiences for distressed borrowers. Consumers today want personal, digital-first experiences that align with their lifestyles, especially when it comes to managing finances. TrueML’s approach uses machine learning to engage each customer digitally and adjust strategies in real time in response to their interactions.

The TrueML team includes inspired data scientists, financial services industry experts and customer experience fanatics building technology to serve people in a way that recognizes their unique needs and preferences as human beings and endeavoring toward ensuring nobody gets locked out of the financial system.

Your Role:

We are seeking a talented and motivated Senior Application Security Engineer with a strong background in AWS and DevOps practices. In this role, you will be responsible for ensuring the security of our applications throughout the development lifecycle. You will work closely with engineering teams to identify and mitigate security vulnerabilities, implement security best practices, and contribute to the organization’s overall security strategy. The ideal candidate will have excellent communication skills and the ability to collaborate effectively with cross-functional teams.

Benefits & Perks

  • Everything you need to work remotely
  • Unlimited PTO
  • Medical/dental/vision insurance
  • 401k through Charles Schwab
  • Flexible Spending Account, Limited FSA, and Health Savings Account- with an eligible health care package.
  • Company-paid short-term and long-term disability plus basic life insurance.
  • Family-friendly maternity and paternity leave
  • Employee assistance program (EAP) via Claremont. Get free short-term counseling for mental health, free + discounted legal consultations, free financial consultations, access to work/life consultants, and more!
  • PerkSpot discount program. PerkSpot offers exclusive discounts to 900+ merchants nationwide, and has exclusive discounts up to 60% on hotels worldwide.
  • Paid time off to do volunteer work in your community.
  • Access to the Wellness Coach app for you and 5 family members

Key Responsibilities:

  • Security Integration: Work with development and DevOps teams to integrate security into the software development lifecycle (SDLC).
  • Vulnerability Management: Identify, assess, and mitigate security vulnerabilities in applications, infrastructure, and cloud environments.
  • AWS Security: Implement and maintain security controls in AWS, including IAM policies, security groups, VPC configurations, and monitoring.
  • DevOps Security: Collaborate with DevOps teams to incorporate security best practices in CI/CD pipelines, including automated testing, secure code reviews, and infrastructure as code (IaC) security.
  • Threat Modeling: Conduct threat modeling and risk assessments to identify potential security threats and develop mitigation strategies.
  • Incident Response: Assist in developing and executing incident response plans, including identifying and responding to security incidents.
  • Compliance & Best Practices: Ensure that all systems and applications comply with relevant security standards, regulations, and best practices (e.g., OWASP, NIST, ISO 27001).
  • Security Training: Provide security training and guidance to engineering teams to promote secure coding and infrastructure management practices.
  • Continuous Improvement: Continuously monitor, evaluate, and improve security practices, tools, and processes.

Qualifications

  • Education:

  • Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent experience. • 8+ years of experience in application security or a related role.

  • Strong experience with AWS security services and best practices.

  • Experience with DevOps tools and practices, including CI/CD pipelines, containerization, and IaC.

  • Technical Skills:

  • Proficiency in at least one programming language (e.g., Python, Go).

  • Strong understanding of web application security (e.g., OWASP Top Ten) and secure coding practices.

  • Familiarity with security tools and technologies such as SAST, DAST, SIEM, and WAFs.

  • Soft Skills:

  • Excellent verbal and written communication skills.

  • Strong problem-solving skills and attention to detail.

  • Ability to work well in a team environment and collaborate effectively with engineers, developers, and other stakeholders.

  • Preferred Qualifications:

  • AWS Certified Security – Specialty or similar certification.

  • Experience with container security (e.g., Docker, Kubernetes).

  • Familiarity with modern authentication and authorization protocols (e.g., OAuth, SAML, JWT).

  • Knowledge of secure coding frameworks and libraries.

$61,919 - $172,796 a year

This information reflects the anticipated base salary range for this position based on current national/regional data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience, and other relevant factors.

We are a dynamic group of people who are subject matter experts with a passion for change. Our teams are crafting solutions to big problems every day. If you’re looking for an opportunity to do impactful work, join TrueML and make a difference.

Our Dedication to Diversity & Inclusion

TrueML and TrueAccord are equal opportunity employers. We promote, value, and thrive with a diverse & inclusive team. Different perspectives contribute to better solutions and this makes us stronger every day. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

For California Applicants: we collect personal information for employment purposes. We do not sell personal information. Most of the information we have is provided to us by you and/or collected as part of the employment process. For more details on how we use, share, and delete personal information see our Privacy Policy.

Share this job:
Please let TrueML know you found this job on Remote First Jobs 🙏

Similar Remote Jobs

TrueML logo

TrueML

  • 15 remote jobs

Latest Jobs at TrueML

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service 🙏

Apply