Virtru
Application Security Engineer
Remote Application Security Engineer role with clear candidate location fit.
PostedJul 5, 2026
Eligible countries1 accepted country
Seniority signalSenior
Work settingRemote
Accepted candidate locations
USA
Role overview
Application Security Engineer
Requirements and responsibilities
Readable role content extracted into sections for faster review.
Team & Position Details:
- Security Engineering
- Collaborate with development teams, Site Reliability Engineering, and other stakeholders to strengthen the adoption of security best practices throughout the SDLC.
- Independently identify security improvements and implement them.
- Vulnerability Management:
- Implement, manage, and automate vulnerability management processes.
- Prioritize and remediate vulnerabilities discovered through internal scans, penetration tests, and bug bounties.
- Security Assessments
- Conduct threat modeling, code audits, design reviews with engineers to ensure effective and secure development.
- Collaborate in providing actionable recommendations to find workable solutions.
- Threat Hunting:
- Establish a threat hunting capability and automate where appropriate.
- Enhance logging capabilities related to security events.
- Security Tools Integration and Management:
- Integrate and manage dynamic and static code analysis tools.
- Ensure operation of security tools within the development pipeline.
Details
- Collaborate with development teams, Site Reliability Engineering, and other stakeholders to strengthen the adoption of security best practices throughout the SDLC.
- Independently identify security improvements and implement them.
- Implement, manage, and automate vulnerability management processes.
- Prioritize and remediate vulnerabilities discovered through internal scans, penetration tests, and bug bounties.
- Conduct threat modeling, code audits, design reviews with engineers to ensure effective and secure development.
- Collaborate in providing actionable recommendations to find workable solutions.
- Establish a threat hunting capability and automate where appropriate.
- Enhance logging capabilities related to security events.
- Integrate and manage dynamic and static code analysis tools.
- Ensure operation of security tools within the development pipeline.
Skills that will help you thrive in this role:
- 4+ years experience in secure development or application security.
- Deep knowledge of security concepts such as authentication, web architecture, etc.
- Experience with Nodejs, Go, etc.
- Experience running bug-bounty, penetration testing, vulnerability scanning programs.
- Experience setting up and maintaining SAST, DAST, IAST and SCA tooling
- Experience using assessment tools such as Burp, ZAP, Qualys, Nessus, etc.
- Experience building and maintaining WAF solutions.
- Familiarity with industry security practices, standards, and regulations such as FedRAMP, SOC2, HIPAA, etc. a plus.
- Familiarity with GCP/AWS and Kubernetes infrastructure security a plus.
- Self-motivated and goal driven, able to find what needs to be done and do it.
Skills that will help you thrive in this role:
- Thinking outside of the box to respectfully challenge your teammates and managers in the pursuit of excellence
- Strong sense of urgency with an action-oriented mindset
- Able to collaborate and adapt to shifting priorities as business needs evolve
- Comfortable with asynchronous communication including slack, email, zoom, etc.
Perks & Benefits:
- A Flexible PTO policy — we strongly encourage you to take time off (in addition to 14 holidays) to ensure that you are getting the proper time needed to unplug and recharge.
- A $1,500 annual Learning & Development Stipend focused on providing you the resources to continually learn and professionally grow.
- Frequent company-sponsored team celebrations that provide ample opportunities to connect with teammates and be social!
- Access to an Employee Assistance Program
- Access to Headspace, a mental health app tailored to your specific needs.
- A flat 3% contribution to your retirement account
- A high degree of flexibility — Have an appointment, errand, or family emergency to take care of? Hop to it! We give you the time and space to take care of you and your own first.
- In addition to wellbeing, Virtru places a strong emphasis on diversity, equity, inclusion, and belonging. Our DB&I Council is dedicated to fostering an inclusive workplace and making the psychological safety of each and every one of our teammates a top priority.
Additional perks include:
- Competitive compensation
- Generous parental, medical, and bereavement policies
- 401K contribution and stock options
- Full medical, dental, and vision benefits
- New Hire Swag and IT Welcome boxes
- Structured semi-annual 360° performance reviews
Similar roles
Keep a backup shortlist.
AWS, REST 13 accepted countries
Senior QA Automation EngineerSubway EcommerceView role AWS, Kubernetes 13 accepted countries
Senior Backend Engineer (AdTech)Leap ToolsView role AWS, Kubernetes 13 accepted countries
Senior Backend EngineerLeap ToolsView role REST 5 accepted countries
Mobile EngineerSubwayView role Stack
Use these tags to compare similar remote roles.
Location eligibility
Candidates should apply only when their profile country is listed here.
Your profileCountry not setSign in to check your country against this role.
Hiring flow
WithMira shows the role, then sends candidates to the company application.
1Check role fit, stack, and location eligibility in WithMira.
2Open the company application page from the tracked apply link.
3Save the role or subscribe for similar opportunities before leaving.