ZipRecruiter

Log In

1

Appsec Engineer Jobs (NOW HIRING)

AEG

Senior AppSec Engineer

Atlanta, GA ยท On-site

$90K - $180K/yr

Act as the primary security partner for Engineering and Product teams, ensuring security is baked ... AppSec Tooling: Proven proficiency in deploying and tuning SAST, DAST, and SCA (e.g., Snyk, CodeQL ...

AEG Presents

Senior AppSec Engineer

Atlanta, GA ยท Remote

$90K - $180K/yr

Act as the primary security partner for Engineering and Product teams, ensuring security is baked ... AppSec Tooling: Proven proficiency in deploying and tuning SAST, DAST, and SCA (e.g., Snyk, CodeQL ...

Capital Group

AI AppSec Engineer Lead

Irvine, CA ยท On-site

$62.75 - $83.75/hr

Access on-demand professional development resources that allow you to hone existing skills and learn new ones "I can succeed as a AI AppSec Engineer Lead at Capital Group" As a Lead AI AppSec ...

PrizePicks

Senior AppSec Engineer

Atlanta, GA ยท On-site +1

$90K - $180K/yr

Act as the primary security partner for Engineering and Product teams, ensuring security is baked ... AppSec Tooling: Proven proficiency in deploying and tuning SAST, DAST, and SCA (e.g., Snyk, CodeQL ...

PrizePicks

Senior AppSec Engineer

Atlanta, GA ยท Remote

$90K - $180K/yr

Act as the primary security partner for Engineering and Product teams, ensuring security is baked ... AppSec Tooling: Proven proficiency in deploying and tuning SAST, DAST, and SCA (e.g., Snyk, CodeQL ...

MANTECH

Application Security Engineer

Hanover, MD

$58 - $77.25/hr

The Application Security (AppSec) Engineer will leverage their strong technical background and knowledge to support software assurance and security initiatives for a mission-critical organization ...

New

MANTECH

Application Security Engineer

Hanover, MD

$58 - $77.25/hr

The Application Security (AppSec) Engineer will leverage their strong technical background and knowledge to support software assurance and security initiatives for a mission-critical organization ...

New

MANTECH

Application Security Engineer

Hanover, MD

$58 - $77.25/hr

The Application Security (AppSec) Engineer will leverage their strong technical background and knowledge to support software assurance and security initiatives for a mission-critical organization ...

New

MANTECH

Application Security Engineer

Hanover, MD

$58 - $77.25/hr

The Application Security (AppSec) Engineer will leverage their strong technical background and knowledge to support software assurance and security initiatives for a mission-critical organization ...

New

Capgroup

AI AppSec Engineer Lead

Irvine, CA ยท On-site

$63 - $84.25/hr

Access on-demand professional development resources that allow you to hone existing skills and learn new ones "I can succeed as a AI AppSec Engineer Lead at Capital Group" As a LeadAIAppSecEngineer ...

Capgroup

AI AppSec Engineer Lead

Charlotte, NC

$57.50 - $76.75/hr

Access on-demand professional development resources that allow you to hone existing skills and learn new ones "I can succeed as a AI AppSec Engineer Lead at Capital Group" As a LeadAIAppSecEngineer ...

Capgroup

AI AppSec Engineer Lead

Los Angeles, CA

$63.25 - $84.50/hr

Access on-demand professional development resources that allow you to hone existing skills and learn new ones "I can succeed as a AI AppSec Engineer Lead at Capital Group" As a LeadAIAppSecEngineer ...

Capgroup

AI AppSec Engineer Lead

New York, NY ยท On-site

$64.25 - $86/hr

Access on-demand professional development resources that allow you to hone existing skills and learn new ones "I can succeed as a AI AppSec Engineer Lead at Capital Group" As a LeadAIAppSecEngineer ...

StartupTAP

Lead AI AppSec Engineer

New York, NY ยท On-site

$64.25 - $86/hr

This role will be one of the first dedicated application security engineers focused on embedding security into the platform and AI-enabled applications from the beginning. This is a hands-on ...

ManTech

Application Security Engineer

Hanover, MD ยท On-site

$141.50K - $236K/yr

The Application Security (AppSec) Engineer will leverage their strong technical background and knowledge to support software assurance and security initiatives for a mission-critical organization ...

next page

Showing results 1-20

People also search for

All JobsAppsec Engineer Jobs

Appsec Engineer information

What are the key skills and qualifications needed to thrive as an AppSec Engineer, and why are they important?

To thrive as an AppSec Engineer, you need a solid understanding of application security principles, secure coding practices, and vulnerability assessment, typically supported by a degree in computer science or a related field. Familiarity with tools like static and dynamic application security testing (SAST/DAST), OWASP frameworks, and certifications such as CISSP or OSCP is highly valued. Strong analytical thinking, problem-solving abilities, and effective communication skills help you collaborate across development and security teams. These skills are crucial for identifying, mitigating, and preventing security risks in software applications, thereby protecting organizational assets and user data.

What are some common challenges Appsec Engineers face when collaborating with development teams?

Appsec Engineers often work closely with software developers to integrate security best practices into the development lifecycle. A common challenge is balancing security requirements with project timelines and feature delivery, as development teams may prioritize speed over thorough security reviews. Effective communication and the ability to educate colleagues about secure coding practices are essential for overcoming these challenges. Additionally, Appsec Engineers may need to adapt to various development methodologies, such as Agile or DevOps, which can impact how and when security is incorporated into projects.

What does an AppSec Engineer do?

An Application Security (AppSec) Engineer is responsible for ensuring the security of software applications by identifying and mitigating vulnerabilities throughout the software development lifecycle. They work closely with development teams to implement secure coding practices, perform code reviews, conduct security assessments, and respond to security incidents. Additionally, AppSec Engineers often use automated tools to scan for security flaws and help educate teams on the latest security threats and best practices.
More about Appsec Engineer jobs
What states have the most Appsec Engineer jobs? States with the most job openings for Appsec Engineer jobs include:
What job categories do people searching Appsec Engineer jobs look for? The top searched job categories for Appsec Engineer jobs are:
Appsec Engineer jobs near you
Infographic showing various Appsec Engineer job openings in the United States as of May 2026, with employment types broken down into 100% Full Time. Highlights an 56% In-person, 6% Hybrid, and 38% Remote job distribution.

Senior AppSec Engineer

AEG

Atlanta, GA โ€ข On-site

$90K - $180K/yr

Full-time

Medical, Dental, Vision, Retirement, PTO

Posted 10 days ago

Job description

In order to be considered for this role, after clicking "Apply Now" above and being redirected, you must fully complete the application process on the follow-up screen.
At PrizePicks, we are the fastest-growing sports company in North America, as recognized by Inc. 5000. As the leading platform for Daily Fantasy Sports, we cover a diverse range of sports leagues, including the NFL, NBA, and Esports titles like League of Legends and Counter-Strike. Our team of over 550 employees thrives in an inclusive culture that values individuals from diverse backgrounds, regardless of their level of sports fandom. Ready to reimagine the DFS industry together?
What you'll do:
  • Own the Pipeline: Support and optimize application security tooling (SAST, SCA, Secrets Detection) within our CI/CD pipelines to provide accurate, actionable, and prioritized alerts to devs.
  • Be a Security Champion: Act as the primary security partner for Engineering and Product teams, ensuring security is baked in from the design phase through deployment.
  • Threat Modeling: Lead collaborative threat modeling exercises to identify architectural risks before code is even written. Partner with penetration testing teams to translate these threats into targeted testing scenarios for high-risk functions.
  • Code-Level Remediation: Don't just tell devs what is wrong-show them how to fix it by performing deep-dive code reviews and providing actionable remediation guidance.
  • Secrets Management: Help lead the charge in identifying and removing hard-coded secrets, moving the org toward more secure, automated secret management practices.
  • Bug Bounty & Research: Help manage our bug bounty program by triaging submissions, working with researchers, and validating fixes with our engineers.
  • Secure AI Integration: Serve as the security consultant for AI/ML initiatives. Partner with engineering to design secure "LLM-backed" features, focusing on prompt injection prevention, data privacy/sanitization, and secure integration of third-party AI APIs.
  • Incident Response: Support the team during application-related security incidents, bringing your deep knowledge of code and logic to the table.
  • Feature Validation: Perform security assessments on new features to help identify logic flaws that automated scanners might miss. Partner with our penetration testing team on high-risk releases to exchange knowledge and continuously sharpen your offensive security skillset.
  • Strategic Communication: Translate technical vulnerabilities into business risk. You'll be responsible for documenting and presenting findings in a way that is actionable for engineers and understandable for leadership.
What you have:
  • 3+ years of experience in software development, mobile development, or application security. You are comfortable reading unfamiliar code and can speak Developer fluently.
  • CI/CD Pipeline Expertise: Hands-on experience integrating security tools (SAST, DAST, SCA, Secrets Detection) into automated workflows (e.g., GitHub Actions, GitLab CI, Jenkins). You know how to tune these tools to prevent alert fatigue.
  • Deep knowledge of the OWASP Web Security Testing Guide (WSTG) and/or Mobile Application Security Testing Guide (MASTG) and the ability to think like a threat actor.
  • Experience conducting Threat Modeling to catch flaws before they are built.
  • Familiarity with the OWASP Top 10 for LLMs. You understand the unique risks of integrating AI into a production stack and can advise on how to build guardrails around model inputs and outputs.
  • Experience supporting an Incident Response (IR) process, specifically providing the AppSec perspective to help scope an exploit and verify if a patch truly mitigates it.
  • A deep understanding of how web applications work. You know your way around HTTP headers, JWTs, CORS, and auth flows, and you can validate them manually when the scanners fail.
  • Proven ability to define risks in both technical and business terms.
Technical must haves:
  • 3+ years of professional experience in Software Development or Application Security.
  • AppSec Tooling: Proven proficiency in deploying and tuning SAST, DAST, and SCA (e.g., Snyk, CodeQL, Dependabot, Mend, Wiz).
  • Threat Modeling: Experience performing architectural threat models on products and services.
  • CI/CD Automation: Strong experience building and maintaining security workflows in GitHub Actions.
  • Cloud Native: Working knowledge of Kubernetes and containerized compute services.
  • Security Testing: Comfortable using Burp Suite or Postman to manually validate logic flaws.
Where you'll live:
  • While we prefer candidates based in Atlanta, we are open to qualified applicants from anywhere in the U.S. and are willing to consider remote candidates. #LI-Remote
Working at PrizePicks: The typical salary range for this position is $90,000 to $180,000. At PrizePicks, we consider your role, level, and where you'll be working when determining our salary ranges. The compensation info you see on our job postings gives you an idea of the starting pay range for the position. Your actual pay within that range will depend on your specific work location, as well as your skills, experience, and education. Your recruiter will be happy to chat more about the specific pay range for your location and how we arrived at it during the hiring process. This application period will remain open for 30 days. We're committed to finding the best candidate, so this date may be adjusted, and any changes will be reflected in this posting. Date Posted: 3/26/26 Re posted: 5/1/26
Benefits you'll receive: In addition to your great compensation package, full-time employees will be eligible for the following perks:
  • Company-subsidized medical, dental, & vision plans
  • 401(k) plan with company match
  • Annual bonus
  • Flexible PTO to encourage a healthy work/life balance (2 weeks STRONGLY encouraged!)
  • Generous paid leave programs, including 16-week paid parental leave and disability benefits
  • Workplace flexibility and modern work schedules focused on getting the job done, not hours clocked
  • Company-wide in-person events and team outings
  • Lifestyle enhancement program
  • Company equipment provided (Windows & Mac options)
  • Annual performance reviews with opportunities for growth and career development
You must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time. PrizePicks is an Equal Opportunity Employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.

About AEG

Sourced by ZipRecruiter

Industry

Recruiting and staffing services

Company size

51 - 200 Employees

Headquarters location

Saint Louis, MO, US

Year founded

1992

View All AEG Jobs

Apply