ZipRecruiter

Log In

AppFolio

62 Appfolio Application Security Engineer Jobs Hiring Near You

RIT Solutions

Application Security Engineer

Washington, DC

$66.50 - $89/hr

Cloud application security engineering * Docker and Kubernetes security * Infrastructure as Code (Terraform) * CI/CD pipeline security integration * Identity management, encryption, and access ...

New Charter Technologies LLC

Application Security Engineer

OR · Remote

$58.75 - $78.50/hr

Application Security Engineer Location: Remote (United States) | Employment Type: Full-Time About the Role We are looking for an Application Security Engineer to join our product engineering team.

Opal Services

Application Security Engineer

San Francisco, CA · On-site

$69.25 - $92.50/hr

We're hiring an Application Security Engineer to own security across Opal's product and platform - and yes, own means what it sounds like. You'd be our dedicated security engineer, embedded directly ...

Xai

Application Security Engineer

San Francisco, CA · On-site

$200K - $340K/yr

Application Security Engineer Palo Alto, CA About XAI XAI's mission is to create AI systems that can accurately understand the universe and aid humanity in its pursuit of knowledge. Our team is small ...

Comtech, LLC

Application Security Engineer

Washington, DC

$66.50 - $89/hr

Application Security Engineer Location: Washington, DC * Support PeopleSoft HCM/FSCM/ELM/CRM/EPM application security. * Implement specifically SSO for Oracle ELM, HCM and Finance PeopleSoft Modules ...

Shorepoint Inc.

Application Security Engineer

Herndon, VA · On-site

$60.50 - $80.75/hr

The Application Security Engineer will be responsible for the end-to-end administration of Burp Suite and Veracode, managing Integrated Development Environment (IDE) plugins and ensuring all ...

Peraton

Application Security Engineer

Herndon, VA

$104K - $166K/yr

Define application security strategy, standards, and SDLC integration points; champion secure-by-design practices across engineering and DevSecOps teams. * Lead threat modeling and secure ...

Peraton

Application Security Engineer

Herndon, VA · On-site

$104K - $166K/yr

Define application security strategy, standards, and SDLC integration points; champion secure-by-design practices across engineering and DevSecOps teams. * Lead threat modeling and secure ...

Peraton

Application Security Engineer

Herndon, VA · On-site

$104K - $166K/yr

Define application security strategy, standards, and SDLC integration points; champion secure-by-design practices across engineering and DevSecOps teams. * Lead threat modeling and secure ...

CBS Infosys

Application Security Engineer

San Francisco, CA · On-site

$69.25 - $92.50/hr

The Application Security Engineer will be responsible for analyzing software code repositories, code designs, processes, and implementation from a security perspective, and work with software ...

previous pagenext page

Showing results 41-60

All JobsAppfolio JobsAppfolio Application Security Engineer Jobs

AppFolio Jobs Information

What are the key skills and qualifications needed to thrive as an Application Security Engineer, and why are they important?

To thrive as an Application Security Engineer, you need a solid background in software development, cybersecurity fundamentals, and vulnerability assessment, often supported by a degree in computer science or a related field. Familiarity with tools such as static and dynamic application security testing (SAST/DAST), penetration testing frameworks, and relevant certifications like CISSP or CEH is common. Attention to detail, problem-solving abilities, and strong communication skills help you effectively identify risks and collaborate with development teams. These skills are crucial for safeguarding applications against evolving threats and ensuring secure software delivery.

What are some common challenges faced by Application Security Engineers when integrating security into the software development lifecycle?

Application Security Engineers often encounter challenges such as balancing security requirements with development speed, ensuring all team members understand secure coding practices, and keeping up with evolving threats. They frequently work closely with developers, DevOps, and QA teams to embed security controls without disrupting workflows. Overcoming these challenges requires strong communication skills, a deep understanding of both security and software development, and the ability to advocate for security as a shared responsibility across the organization.

What does an Application Security Engineer do?

An Application Security Engineer is responsible for identifying and mitigating security vulnerabilities in software applications throughout their development lifecycle. They work closely with developers to ensure secure coding practices, conduct security assessments and code reviews, and implement tools for threat detection and prevention. Their primary goal is to protect applications from threats such as data breaches, unauthorized access, and other forms of cyber attacks. They also stay updated on the latest security trends and compliance requirements to keep applications safe.

What is the difference between Application Security Engineer vs Security Analyst?

AspectApplication Security EngineerSecurity Analyst
CertificationsCEH, CISSP, OSCPCISSP, Security+
Work EnvironmentDevelops security measures, reviews code, tests applicationsMonitors security systems, investigates incidents, analyzes threats
Industry UsageTech companies, software firms, organizations with strong app focusBroad sectors including finance, healthcare, government

Application Security Engineers focus on securing software applications through code review, vulnerability testing, and implementing security measures. Security Analysts monitor and analyze security threats, respond to incidents, and maintain security systems. While both roles require security certifications and work in security-focused environments, Application Security Engineers are more involved in the development and testing of secure applications, whereas Security Analysts focus on threat detection and incident response.

What other companies are hiring for Application Security Engineer jobs?
What are the most popular jobs at Appfolio?
What are the most popular categories at Appfolio?
Infographic showing various Application Security Engineer job openings at Appfolio in the United States as of May 2026, with employment types broken down into 100% Full Time. Highlights an 79% Physical, 7% Hybrid, and 14% Remote job distribution.

Application Security Engineer

Peer Consulting Resources

Brooklyn, NY • Hybrid

$62 - $83/hr

Other

Posted 29 days ago

Job description

Contact Details:
1. Yashodatta Deshpande
Email:
Cell:
2.Saravanan Ganesan
Email:
Cell:
Job Title: Application Security Engineer
Location: Brooklyn NY 11201 (The position will be 3-day onsite hybrid)
Duration: 12 months+
Years of Experience: 10+ Years
Required Hours/Week: 35Hours/Week
Note:
  • local candidates only & F2F Interview
Job Overview:
  • The Application Security Engineer is embedded within the Application Development team and ensures security is integrated into all stages of software development. The role focuses on designing and building secure applications while working closely with application administrators who manage security tools and CI/CD pipelines.
  • This position is responsible for enabling developers to produce secure, resilient, and compliant software for web, mobile, API, GIS, and cloud-based systems supporting Fire, EMS, and administrative operations.
Responsibilities:
1. Secure Software Development
  • Establish and apply secure coding practices within the development team.
  • Define and enforce secure coding standards for Java, .NET, Python, and JavaScript applications.
  • Conduct secure design and architecture reviews for new and legacy systems.
  • Educate developers on secure coding practices, authentication/authorization best practices, and common application vulnerabilities.
Apply protections aligned with:
o OWASP Top 10
o OWASP API Security Top 10
2. Application & API Security
  • Design and implement secure REST APIs and web services.
Implement secure authentication/authorization using:
o SAML2
o OIDC
o OAuth2
Secure Java and JavaScript applications, including:
o Spring Boot
o React
  • Ensure secure handling of tokens, sessions, and secrets.
  • Collaborate with App Admins and Security team to integrate applications into WAFs, load balancers, and other security monitoring tools.
Mandatory Qualifications:
  • Minimum 4+ years in secure application development.
  • Prior hands-on software development experience.
Strong understanding:
o Web and mobile application architecture
o Internet protocols (HTTP, HTTPS, WebSockets)
o REST API security
  • Expertise in SAST, DAST, and SCA concepts (understanding results and remediation), in collaboration with App Admins.
  • Familiarity with security tools such as Veracode, Burp Suite, Zimperium, Prisma, Rapid7.
  • Experience applying NIST 800-53 and 800-171 controls at the application design level.
  • Strong analytical, troubleshooting, and problem-solving skills.
  • Ability to work independently within a development-focused team.
Preferred Qualifications:
  • Experience with containerized applications (Docker, Kubernetes).
Knowledge:
o Core Java, J2EE, Spring Boot
o React, AngularJS, HTML5, CSS, JavaScript
  • Experience designing secure GIS systems.
  • Familiarity with public safety or emergency response systems.

Apply