Senior Application Security Engineer

We are partnered with a global leader in cloud-based software for the insurance industry and has been at the forefront of innovation for over 40 years. Its solutions power the business of insurance by automating the lifecycle and helping millions protect what matters most. With a strong commitment to its people, culture, and customers, our client fosters an inclusive, modern workplace that values excellence and continuous improvement.

They are seeking a Senior Application Security Engineer to join their growing Information Security team at a global leader in insurance technology. In this role, you will play a critical part in identifying and addressing potential application threats and vulnerabilities, while developing and implementing advanced security solutions to protect systems and data. This position offers the opportunity to work in a dynamic, collaborative environment where your expertise will directly contribute to the security and resilience of industry-leading technology platforms.

REWARDS

Salary range: $150,000-$160,000 annually (7.5% annual bonus based on company and individual performance)

Comprehensive Benefits Package: Health, Dental, Vision, 401k and/or RRSP with company match

Work-Life Balance: flexible hours, PTO (vacation, personal, sick)

REQUIREMENTS

5+ years of experience in shaping and managing compliance programs, with a minimum of 2+ years dedicated to building new application security programs

Deep knowledge of common security libraries, controls, and typical application vulnerabilities

Proficient with modern application security tools, including SAST, SCA, DAST, IAST, and RASP

Working knowledge of public cloud infrastructure, preferably Google Cloud Platform

Familiarity with containerization and orchestration technologies such as Kubernetes, Docker, and Helm

Hands-on experience with development or scripting; proficiency in .NET Core, Go, or Python is a plus

Recognized as a subject matter expert in at least two technical areas that impact product security at Applied

Holds and maintains at least one relevant security or engineering certification (e.g., CSSLP, CASE, GWEB, GSSP, OSCP, OSEP, OSWE, or equivalent)

RESPONSIBILITIES

Perform all responsibilities expected of an Engineer, with additional focus on application security

Lead application security reviews and threat modeling efforts, including code reviews and dynamic testing

Drive the development of automated security testing to ensure secure coding best practices are followed

Provide subject matter expertise and guidance to product development teams on application security

Contribute to recruiting efforts and support related administrative tasks

Create and deliver security training materials to internal development teams

Support initiatives that address multiple vulnerabilities across functional areas

Actively participate in application security assessments, including threat modeling and code analysis

Manage the application security vulnerability lifecycle

Consult with product and development teams to embed security best practices into the development process

Assist in building and improving automated tools for secure code validation

Emerge is committed to being an equal opportunity employer. We prohibit discrimination and harassment of any kind based on race, color, religion, age, sex, national origin, disability, genetics, veteran status, sexual orientation, gender identity or expression, or any other protected characteristic. In compliance with the Job Application Fairness Act, we ensure a fair and equitable recruitment process and provide necessary and reasonable accommodations. We value diversity and encourage individuals from all backgrounds and experiences to apply.