ZipRecruiter

Log In

1

Appsec Jobs (NOW HIRING)

Everpure

Senior Security Engineer - AppSec

Santa Clara, CA ยท On-site

$134K - $184K/yr

Establish and drive company-wide AppSec standards, baselines, and metrics in partnership with Security Architecture, translating abstract compliance guidelines into practical, uniform development ...

Gartner

Lead AppSec Engineer

Stamford, CT ยท On-site +1

$62.75 - $83.75/hr

TheLeadSecurity Engineer willbe responsible forsupporting Gartner's AppSec function. This individual will play an integral rolein, executingdaily vulnerability Assessments functions; working closely ...

Harness

AppSec Sales Engineer

San Francisco, CA ยท On-site

$69.25 - $92.50/hr

Position Summary The AppSec Sales Engineer is the technical liaison who bridges sales and engineering, expertly articulating the technology and product positioning of our AI-Native DevSecOps platform ...

Gartner

Lead AppSec Engineer

Irving, TX ยท On-site +1

$56.50 - $75.50/hr

TheLeadSecurity Engineer willbe responsible forsupporting Gartner's AppSec function. This individual will play an integral rolein, executingdaily vulnerability Assessments functions; working closely ...

Gartner, Inc.

Lead AppSec Engineer

Irving, TX ยท On-site

$56.50 - $75.50/hr

The Lead Security Engineer will be responsible for supporting Gartner's AppSec function. This individual will play an integral role in, executing daily vulnerability Assessments functions; working ...

Capital Group

AI AppSec Engineer Lead

Irvine, CA ยท On-site

$62.75 - $83.75/hr

Access on-demand professional development resources that allow you to hone existing skills and learn new ones "I can succeed as a AI AppSec Engineer Lead at Capital Group" As a Lead AI AppSec ...

Prophecy Technologies

Application Security Engineer

Boston, MA ยท On-site

$63.75 - $85.25/hr

Implement AppSec practices across SDLC * Perform threat modeling and secure design reviews * Conduct secure code reviews * Analyze vulnerabilities for exploitability and reachability * Support AppSec ...

Prophecy Technologies

Application Security Engineer

Boston, MA ยท On-site

$63.75 - $85.25/hr

Implement AppSec practices across SDLC * Perform threat modeling and secure design reviews * Conduct secure code reviews * Analyze vulnerabilities for exploitability and reachability * Support AppSec ...

next page

Showing results 1-20

All JobsAppsec Jobs

Appsec information

Can you make $500,000 a year in cyber security?

AppSec professionals can potentially earn $500,000 annually, especially with senior roles, extensive experience, specialized skills, and certifications like CISSP or OSCP. High salaries are often found in large organizations, consulting, or leadership positions such as security directors or chief information security officers. Achieving this level typically requires years of experience and a strong track record in cybersecurity.

What job makes $10,000 a month without a degree?

In cybersecurity, roles such as penetration testers or security consultants can earn $10,000 or more per month, especially with specialized skills, certifications like CISSP or OSCP, and experience. These positions often require hands-on expertise, knowledge of security tools, and continuous learning but do not always require a formal degree.

What does an AppSec team do?

An AppSec (Application Security) team is responsible for identifying and fixing security vulnerabilities in software applications. They conduct code reviews, perform security testing, and implement security best practices to protect applications from cyber threats, often using tools like static and dynamic analysis software. Their work helps ensure the confidentiality, integrity, and availability of software systems throughout the development lifecycle.

Will AI replace AppSec engineers?

AI can automate certain tasks in application security, such as vulnerability scanning and code analysis, but AppSec engineers are essential for designing security strategies, interpreting complex threats, and implementing security measures. AI tools serve as supplements to human expertise rather than replacements, and skills in security principles, coding, and tool usage remain critical for the role.

What is the difference between Appsec vs Security Analyst?

AspectAppsecSecurity Analyst
Required CredentialsCertifications like CISSP, CEH, OSCP; knowledge of secure codingCertifications such as Security+, CISSP; threat analysis skills
Work EnvironmentDevelopment teams, secure coding practices, application testingMonitoring security systems, incident response, risk assessment
Employer & Industry UsageTech companies, software firms, organizations with application security needsAll industries, including finance, healthcare, government, focusing on security monitoring

Appsec professionals focus on securing applications through secure coding, testing, and vulnerability management, while Security Analysts monitor and respond to security threats across systems. Both roles require security certifications and work in overlapping environments, but their core responsibilities differ in scope and focus.

More about Appsec jobs
What cities are hiring for Appsec jobs? Cities with the most Appsec job openings:
What states have the most Appsec jobs? States with the most job openings for Appsec jobs include:
What job categories do people searching Appsec jobs look for? The top searched job categories for Appsec jobs are:
Appsec jobs near you
Infographic showing various Appsec job openings in the United States as of June 2026, with employment types broken down into 98% Full Time, and 2% Contract. Highlights an 72% Physical, 5% Hybrid, and 23% Remote job distribution.

Senior Security Engineer - AppSec

Everpure

Santa Clara, CA โ€ข On-site

$134K - $184K/yr

Other

PTO

Posted 8 days ago

Job description

THE ROLE

As a Senior Security Engineer at Everpure, you will advance the scalability and maturity of application security across the enterprise by designing automated, paved-road solutions rather than acting as a traditional gatekeeper. Embedded within the Global Information Security Office (GISO), you will collaborate closely with product, platform, and engineering teams to integrate security directly into modern software development lifecycles. Your mission is to enable rapid engineering velocity while establishing consistent, robust defense-by-default standards that safeguard our global platform.

WHAT YOU'LL DO

  • Own the CI/CD and GitOps security integration lifecycle, building automated, paved-road application security controls (including SAST, DAST, SCA, and secrets scanning) to eliminate manual engineering friction and ensure frictionless, secure-by-default code deployment across all Everpure product teams.
  • Develop scalable automation and API-driven tooling using Python to streamline vulnerability detection, compliance reporting, and remediation tracking, directly scaling the operational capability of the GISO without impeding developer velocity.
  • Establish and drive company-wide AppSec standards, baselines, and metrics in partnership with Security Architecture, translating abstract compliance guidelines into practical, uniform development baselines that measurably mature Everpure's engineering risk posture.
  • Collaborate as a trusted security partner with product, platform, and DevOps teams at our Santa Clara headquarters to champion secure coding practices, support large-scale vulnerability prioritization, and architect robust protection across core applications, APIs, and microservices.

WHAT YOU BRING

  • AppSec & DevSecOps Expertise: Demonstrated mastery in embedding security controls natively into modern CI/CD pipelines, Git-based workflows, and GitOps environments to automate risk detection.
  • Automation & Scripting Skills: Advanced proficiency in Python or equivalent programming languages to construct custom automation, interface with web APIs, and integrate security tooling directly into developer platforms.
  • Architecture & Secure Development Knowledge: Deep technical understanding of secure coding practices, modern cloud-native architectures (including microservices, APIs, and containerized workloads), and industry-standard software vulnerability frameworks (such as OWASP).
  • Collaboration & Governance Capabilities: Proven ability to build consensus, drive engineering alignment, and influence the adoption of uniform security baselines across distributed engineering, product, and DevOps teams.
  • Location: We are primarily an in-office environment and therefore, you will be expected to work from the Santa Clara, CA office in compliance with Everpure's policies, unless you are on PTO, or work travel, or other approved leave.

#LI-ONSITE #LI-KQ1

Apply