×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Application Security Engineer

Job in Thornton, Adams County, Colorado, 80241, USA
Listing for: New Charter Technologies, Inc.
Full Time position
Listed on 2026-06-01
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below

We are seeking an Application Security Engineer to join our product engineering team. This role focuses on embedded security within internal tooling and supports a roadmap toward a public‑facing SaaS product. The position is remote (United States) and full‑time.

Key Responsibilities Embedded Security Partnership
  • Serve as the primary security resource for engineering teams in close coordination with information security, advising on design decisions, authentication patterns, and API security as features are built.
  • Conduct lightweight, developer‑friendly threat modeling for new features and services, right‑sized to the actual audience and risk profile (internal vs. public‑facing).
  • Lead collaboration between engineering and information security teams through architecture and code reviews with actionable guidance that helps teams ship, not slow down.
  • Responsible for remediation and enforcement of security standards as set forth by the information security team.
  • Define and maintain a tiered security standard that distinguishes expectations for internal tooling, production SaaS, and public‑facing products.
  • Engage constructively with the enterprise security organization, translating between compliance and governance language and the engineering team's operational reality.
Tooling & Automation
  • Ensure adherence to Git Hub Advanced Security (GHAS) configuration and security standards through ongoing tuning across code scanning, secret scanning, Dependabot, and security campaigns within Git Hub Enterprise.
  • Integrate security tooling into CI/CD pipelines as policy‑as‑code feedback loops, not manual gates.
  • Develop and maintain Git Hub Actions workflows with reusable, security‑enforcing components.
  • Drive remediation velocity metrics and coverage reporting across engineering teams.
Cloudflare & Azure Security
  • Collaborate with information security teams to assess and secure workloads across Cloudflare (Workers, Access, WAF, Zero Trust) and Azure (Managed Identities, Key Vault, Defender, IAM) for both internal and opco‑facing services.
  • Apply platform‑appropriate security controls as our architecture spans both environments, calibrating to the risk profile of each workload.
  • Evaluate and harden authentication flows, API security patterns, and service‑to‑service trust boundaries across Cloudflare and Azure environments.
  • Contribute to container and cloud workload security as infrastructure patterns evolve.
Development Contributions
  • Contribute to internal security tooling, automation, and integrations using Python and/or Go.
  • Build security utilities such as vulnerability aggregation pipelines, policy enforcement tooling, or developer‑facing security dashboards.
  • Collaborate with information security and engineering teams on secure service design patterns, OAuth
    2.0/OIDC flows, and API security controls.
Compliance & Risk
  • Support SOC2 readiness as the product matures toward public customers, mapping application security controls to Trust Services Criteria.
  • Triage and prioritize vulnerability findings based on actual business risk rather than CVSS scores alone, distinguishing real issues from noise in a SaaS‑native environment.
  • Partner with GRC and the enterprise security organization on evidence collection and audit preparation, without allowing compliance prep to dominate engineering time.
Required Qualifications
  • 7+ years in application security, secure software development, or a closely related discipline.
  • Demonstrated ability to operate as an embedded security partner within engineering, working side by side with developers.
  • Deep, hands‑on experience with Git Hub Advanced Security or equivalent tooling, including code scanning, secret scanning, Dependabot, and security policy enforcement within Git Hub Enterprise.
  • Experience with threat‑modeling methodologies (STRIDE, PASTA, or similar) applied to real‑world systems, with instinct for right‑sizing the process to actual risk.
  • Proficiency in Python and/or Go, comfortable reading, writing, and reviewing production‑grade code.
  • Strong command of OWASP Top
    10, common vulnerability classes, and secure design principles.
  • Experience securing SaaS or product engineering workloads rather than enterprise…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search