Apply Now

Sr.ApplicationSecurityEngineer

Remote • Posted 5 hours ago • Updated 5 hours ago

Contract W2

Remote

$85 - $95/hr

Fitment

Dice Job Match Score™

⏳ Almost there, hang tight...

Job Details

Skills

OWASPTop10
SSRF
IDOR
SQLi
XSS
GraphQL
privilegeescalation
server-sideinjectionvulnerabilities
ServiceNowplatformsecurity
ACLs
scopedapps
businessrules
RESTAPIs
GlideRecord
TableAPI
JavaScriptcodereview
Javacodereview

Summary

Sr. Application Security Engineer (Remote role)

Seeking an Application Security professional with experience triaging and validating security vulnerabilities across web, API, and server-side platforms. Responsibilities include reproducing customer-reported issues, assessing exploitability and risk, reviewing JavaScript/Java code, coordinating remediation with engineering teams, and preparing technical security assessments for both technical and executive audiences.

Required Skills:

10+ years in Application Security, Product Security, Penetration Testing, or Bug Bounty triage

Strong understanding of OWASP Top 10, SSRF, IDOR, SQLi, XSS, GraphQL, privilege escalation, and server-side injection vulnerabilities

Experience with ServiceNow platform security concepts including ACLs, scoped apps, business rules, REST APIs, and GlideRecord/Table API

Ability to reproduce vulnerabilities in lab environments and validate fixes

Strong JavaScript and Java code review/debugging skills

Experience with CVSS scoring and technical security reporting

Advanced ServiceNow development/security experience

Customer-facing security support experience

Familiarity with HackerOne or Bugcrowd

Security certifications such as OSCP, GWAPT, or GWEB

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 10439527
Position Id: 8965781
Posted 5 hours ago

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Application Security Engineer

Remote

•

Today

Job Summary:You will join the Global Security Support Center (GSSC) Application Security team, which is responsible for managing the entire lifecycle of security findings reported by customers and penetration testers. This is a hands-on role that requires a deep understanding of security issues. You will triage real vulnerability reports, configure the ServiceNow instance to reflect the customer's setup, communicate directly with enterprise customers, and dive into the platform-level code to val

Easy Apply

Contract

$70 - $75

Application Security Engineer

Remote

•

Today

About the Role: You will join the Global Security Support Center (GSSC) Application Security team, which is responsible for managing the entire lifecycle of security findings reported by customers and penetration testers. This is a hands-on role that requires a deep understanding of security issues. You will triage real vulnerability reports, configure the Client instance to reflect the customer's setup, communicate directly with enterprise customers, and dive into the platform-level code to val

Easy Apply

Contract

Depends on Experience

Senior Application Security Engineer

Remote

•

Today

A global energy company is looking to bring on a hands on a Senior Application Security Engineer to be part of a team building out their AppSec program from the ground up. This role is highly technical, and requires candidates with previous experience working in OT and/or embedded/software product environments. You'll perform code reviews, conduct SAST/DAST/SCA scans, identify vulnerabilities in software, firmware, and OT systems, while supporting product security incident response activities. Y

Easy Apply

Contract

$70 - $85

Senior Application Security / Product Security Engineer

Remote

•

Today

Easy Apply

Contract

$70 - $90

Search all similar jobs