1

Senior Application Security Engineer Jobs (NOW HIRING)

Senior Application Security Engineer

Denver, CO ยท On-site

$150K - $205K/yr

YOUR MISSION As a Senior Application Security Engineer, you will be instrumental in implementing and auditing security controls for mission-critical space systems that must meet stringent government ...

Senior Application Security Engineer

Charleston, WV ยท On-site +1

$54.25 - $72.75/hr

Senior Application Security Engineer Nordstrom is building a new Application Security team, built on a simple idea: teams shouldn't have to choose between moving fast and shipping securely. As one of ...

Monarch is seeking a Senior Application Security Engineer to join our Security Engineering team during a period of rapid growth. Reporting to the Head of Engineering Infrastructure, you will be a ...

Sr. Application Security Engineer

Redmond, WA ยท On-site

$168K - $230K/yr

SR. APPLICATION SECURITY ENGINEER At SpaceX we're leveraging our experience in building rockets and spacecraft to deploy Starlink, the world's most advanced broadband internet system. Starlink is the ...

Senior Application Security Engineer

Chicago, IL ยท On-site

$118K - $161K/yr

They are seeking a Senior Application Security Engineer to lead efforts in identifying and remediating vulnerabilities in their applications, ensuring the security of sensitive healthcare data.

$52.25 - $69.75/hr

Envision yourself at Barracuda As a Senior Application Security Engineer, you'll help shape the future of our AppSec program. You'll work effectively and efficiently in a small, high-impact team ...

next page

Showing results 1-20

Senior Application Security Engineer information

See salary details

$73.5K

$137.1K

$186.5K

How much do senior application security engineer jobs pay per year?

As of Jul 15, 2026, the average yearly pay for senior application security engineer in the United States is $137,131.00, according to ZipRecruiter salary data. Most workers in this role earn between $114,500.00 and $157,000.00 per year, depending on experience, location, and employer.

What is a Senior Application Security Engineer job?

A Senior Application Security Engineer is responsible for ensuring the security of software applications by identifying vulnerabilities, implementing security best practices, and working with development teams to integrate secure coding principles. They conduct security assessments, perform threat modeling, and use security tools to detect and remediate risks. Additionally, they help establish security policies, oversee compliance with industry standards, and provide guidance to developers and stakeholders on security-related matters. Their goal is to protect applications from cyber threats while enabling business continuity and innovation.

What are the key skills and qualifications needed to thrive in the Senior Application Security Engineer position, and why are they important?

To thrive as a Senior Application Security Engineer, you need a solid understanding of secure software development, threat modeling, vulnerability assessment, and a degree in computer science or a related field. Familiarity with tools like static and dynamic application security testing (SAST/DAST), code review platforms, and certifications such as CISSP or OSCP are often required. Strong analytical thinking, attention to detail, effective communication, and the ability to collaborate are standout soft skills for this role. These capabilities help ensure robust protection of applications, support safe software delivery, and enable effective teamwork across engineering and security teams.

What are the typical responsibilities of a Senior Application Security Engineer on a day-to-day basis?

A Senior Application Security Engineer typically spends their days reviewing application code for security vulnerabilities, performing threat modeling, and collaborating closely with development teams to ensure secure coding practices are followed. They may also lead security assessments, coordinate penetration tests, and work on developing or enforcing security policies within the organization. Regular interaction with cross-functional teams, such as DevOps and IT, is common to address security issues throughout the software development lifecycle. This role also often involves mentoring junior engineers and staying up to date with the latest security threats and technologies.

More about Senior Application Security Engineer jobs
What cities are hiring for Senior Application Security Engineer jobs? Cities with the most Senior Application Security Engineer job openings:
What are the most commonly searched types of Application Security Engineer jobs? The most popular types of Application Security Engineer jobs are:
What states have the most Senior Application Security Engineer jobs? States with the most job openings for Senior Application Security Engineer jobs include:
What job categories do people searching Senior Application Security Engineer jobs look for? The top searched job categories for Senior Application Security Engineer jobs are:
Infographic showing various Senior Application Security Engineer job openings in the United States as of July 2026, with employment types broken down into 75% Full Time, 20% Part Time, 1% Temporary, and 4% Contract. Highlights an 92% Physical, 2% Hybrid, and 6% Remote job distribution, with an average salary of $137,131 per year, or $65.9 per hour.
Senior Application Security Engineer

Senior Application Security Engineer

True Anomaly

Denver, CO โ€ข On-site

$150K - $205K/yr

Full-time

Medical, Dental, Vision, Retirement, PTO

Re-posted yesterday


Job description

Space is a warfighting domain. True Anomaly seeks those with the talent and ambition to build the technology that secures it.
OUR MISSION
True Anomaly delivers decisive capabilities for space superiority. We build autonomous spacecraft, advanced payloads, mission software, and space-based interceptors - enabling the U.S. and its Allies to secure the space environment and counter threats from the ultimate high ground.
OUR VALUES
  • Be the offset. We create asymmetric advantages with creativity and ingenuity.
  • What would it take? We challenge assumptions to deliver ambitious results.
  • It's the people. Our team is our competitive advantage and we are better together.

YOUR MISSION
As a Senior Application Security Engineer, you will be instrumental in implementing and auditing security controls for mission-critical space systems that must meet stringent government compliance requirements. You will work at the intersection of security engineering, compliance frameworks (NIST 800-171/800-53), and modern cloud-native architectures to ensure our satellite mission control software and flight systems meet Department of Defense security standards.
You will design and implement application-level security controls including comprehensive audit logging, incident response capabilities, access controls, and security monitoring-all while working closely with product engineering teams to shift security to ensure optimal outcomes.
If you thrive in a fast-paced environment where you can build security controls from the ground up and see the direct impact of your work on national security space operations, this mission is for you.
This position requires the ability to obtain and maintain a security clearance.
Responsibilities
  • Create security architecture documentation and operational security guides for government authorization processes
  • Drive vulnerability management program with defined SLAs for remediation (30/90/180 days by severity)
  • Perform security code reviews for Elixir, Python, C++, and JavaScript codebases
  • Collaborate in the triage and management of security automations using SAST (CodeQL, Semgrep), SCA (JFrog Xray), and DAST tools
  • Collaborate with engineering teams to address security findings and implement secure coding practices
  • Develop and deliver security training to software engineers and systems administrators across the organization
  • Create and manage incident response playbooks specific to application security events
  • Evaluate and integrate third-party security solutions to enhance overall security capabilities
Qualifications:
  • 5+ years of experience in application security, product security, or security engineering
  • Hands-on experience implementing security controls for compliance frameworks such as NIST 800-171, NIST 800-53, FedRAMP, or CMMC
  • Strong software engineering skills with ability to write production-quality code in at least one language (Python, Rust, Elixir, C++, or similar)
  • Experience with cloud security (Azure preferred, AWS or GCP acceptable)
  • Solid understanding of secure architecture principles including:
    • Threat modeling and risk assessment
    • Authentication and authorization patterns (OAuth2, JWT, RBAC, ABAC)
    • Cryptography and key management
    • Defense-in-depth and Zero Trust principles
  • Proven ability to work collaboratively with engineering teams to implement security controls without blocking velocity
  • Eligible for DoD Secret or TS/SCI clearance
Preferred Skills:
  • Active TS/SCI clearance or ability to obtain and maintain a security clearance
  • Direct experience with NIST 800-171 Rev 3 or NIST 800-53 implementation projects (gap analysis, control implementation, evidence collection)
  • Experience with Department of Defense Impact Levels (IL2/IL4/IL5/IL6) or STIGs (Secure Technical Implementation Guides)
  • Familiarity with Elixir/Erlang/Phoenix or other functional programming ecosystems (Scala, Haskell, F#, OCaml)
  • Experience with Azure Government Cloud or other FedRAMP-authorized cloud environments
  • Experience using Ghommit tool
  • Background in DevSecOps or Platform Security Engineering:
    • GitOps workflows and CI/CD security
    • Infrastructure as Code security (Terraform, Bicep, Pulumi)
    • Kubernetes security (Pod Security Standards, network policies, service mesh)
  • Experience with security incident response including detection engineering and SOAR integration
  • Familiarity with aerospace, defense, or other highly regulated industries (finance, healthcare, critical infrastructure)
  • Previous experience in startups or fast-paced environments with ability to build processes from scratch

COMPENSATION
  • Base Salary: Long Beach - $150,000 to $205,000, Denver - $145,000 to $195,000, SF Bay Area - $165,000 to $225,000
  • Equity + Benefits including Health, Dental, Vision, HRA/HSA options, PTO and paid holidays, 401K, Parental Leave

Your actual level and base salary will be determined on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills, education, location, and experience.
ADDITIONAL REQUIREMENTS
  • Work Location-Successful candidates must be located near Denver, SF Bay Area, or Long Beach. While we observe a hybrid work environment, significant work must be done on site. #LI-Onsite
  • Work environment-the work environment; temperature, noise level, inside or outside, or other factors that will affect the person's working conditions while performing the job.
  • Physical demands-the physical demands of the job, including bending, sitting, lifting and driving.

This position will be open until it is successfully filled. To submit your application, please follow the directions below.
To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.
True Anomaly is committed to equal employment opportunity on any basis protected by applicable state and federal laws. If you have a disability or additional need that requires accommodation, please do not hesitate to let us.