8,194 Application Security Engineer jobs in the United States

• Defines security requirements for the implementation of new applications and projects: Serves as a security engineer/consultant on projects, works closely with the application development team to ensure coding follows security best practices, provides security guidance during the design and implementation phases to ensure robust security controls are integrated from the start.
• Performs continuous penetration testing: Effectively documents and reports findings, illustrating risks and requirements for resolution. Recommends and implements improvements based on testing outcomes.
• Leads security research on threats and remediation techniques and technology: Makes informed recommendations to Information Security and Information Technology teams, oversees the implementation of recommended security measures.
• Conducts security event analysis and intrusion detection (IDS/IPS): Leads incident response efforts, including triage, incident analysis/forensics, and remediation. Develops and refines incident response processes and playbooks.
• Serves on the Incident Response Team: Focuses on Computer Incident Response, coordinates with various teams to ensure a cohesive and effective incident response.
• Supports the Bank's operational information security responsibilities, including the development and maintenance of standards, procedures, and guidelines necessary to satisfy the Information Security department's network operations.
• Manages and enhances the bank's network vulnerability management program: Regularly assesses and updates vulnerability management practices to ensure they meet current security standards and address emerging threats.
• Assists in conducting risk assessments to evaluate the effectiveness of existing controls and determine the impact of proposed changes to business processes, applications and systems.
• Provides technical support to regulatory agencies, external auditors, and internal auditors, as required, to respond to audits and examinations of the Bank's control environment

• Preferred: Bachelor's Degree in a related field, or equivalent education, certifications, and experience
• Required: 3 - 5 years' experience in application security, penetration testing, or a comparable role
• Required: Understanding of one or more of the following programming languages: C#, Angular JavaScript, T-SQL
• Preferred: Industry Standard Certifications, such as: CompTIA CASP+; GIAC, EC-Council, (ISC)2, OSCP, CompTIA Linux+; ISC2 CISSP, CompTIA Network+
• Understanding of one or more scripting languages.
• Understanding of Linux, Windows, and Mac OS.
• Passion for automation and scripting (Python, Perl, Bash, PowerShell, etc.).
• Strong technical skills with Microsoft Office; must have the ability to effectively communicate and write reports understandable to both business and technical staff.
• Threat analysis / Incident Response: interpreting events and analyzing network traffic.
• Mitigating and addressing threat vectors including XSS, broken authentication, SQL injections, SSRF, misconfigurations, insecure designs.
• Application vulnerabilities/penetration testing/remediation.
• Knowledge of current and upcoming IT security technologies.
• Awareness of the latest and common security threats (OWASP Top 10, OWASP for API).
• Excellent ability to diagnose and troubleshoot accessibility issues.
• Skill in oral and written communication, including presentations to senior management.
• Ability to influence and work with employees at all levels of the organization

• Medical, prescription, dental, and vision coverage for employees and their eligible family members
• Employer paid Employee Assistance Program, Life Insurance, AD&D, and Disability benefits
• Health Savings Account with employer contribution
• Healthcare and Dependent Care Flexible Spending Accounts and Commuter/Parking Benefit
• 401(k) and Roth 401(k) with company contribution
• 529 Education Savings plan, Tuition Reimbursement Program and Student Loan Assistance Program
• Supplemental Health plans, Voluntary Legal and Identity Theft Services
• 11 paid holidays, paid Sick days (accrual of one hour for every 30 hours worked), up to 25 paid vacation days, and 16 hours of paid volunteer time throughout the calendar year
• Free personal checking and savings account; Discounted rates on primary residence loan with 0 origination fees (restrictions apply)

• Mechanics Bank is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, religion, national origin, age, genetic information, veteran status, or on the basis of disability, gender identity, sexual orientation or other bases prohibited by applicable law.
• Please view Equal Employment Opportunity Posters provided by OFCCP here.
• To learn more about Mechanics Bank's California privacy and security policies, including your right to a Notice At Collection as a California Resident, please visit
  
  California Privacy Policy for Prospective Employees | Mechanics Bank

Join to apply for the Application Security Engineer role at Steampunk, Inc.

4 weeks ago Be among the first 25 applicants

Join to apply for the Application Security Engineer role at Steampunk, Inc.

As a Web Application Security Engineer , you will provide technical expertise and solutions to remediate persistent and challenging portfolio-wide vulnerabilities. Were looking for someone who has passion for IT, resourceful problem-solving abilities, and a desire to learn our indicators of success in this role. The ideal candidate will have a breadth of experience over a variety of application and web based technologies. The candidate will not necessarily have deep experience in all domain areas but should have a good understanding of how the various layers of an enterprise application stack interact with one another. You will work directly with system admin teams to assist and remediate vulnerabilities and harden environments, while providing recommendations on ways to enhance vulnerability management. Additionally, you will work in a team environment to develop proactive solutions to improve overall enterprise security posture through process streamlining and automation.

Contributions

Responsibilities Include

• Provide subject matter expertise for various risk assessments, working in an Agile environment with an understanding of the full software development lifecycle.
• Advocate for and ensure appropriate security practices are communicated and implemented within application development portfolios.
• Ability and proven experience in securing multiple areas of an enterprise application stack, including the OS, Database, Application Server, Load Balancer, and Web Server layers. Understanding how PKI/TLS certificates work is a must.
• Integrate with both the application development and security assurance divisions to ensure vulnerability findings are understood, remediated or baselined as appropriate.
• Document & Socialize security findings and remediation solutions in an enterprise knowledge base.
• Support the Information Assurance Branch and the SOC with scan analysis and partner with development teams to understand and remediate security findings.
  
  

• Ability to obtain a U.S. government Security Clearance
• Master's Degree and 3 years of relevant experience; OR
• Bachelor's Degree and 5 years of relevant experience; OR
• No degree and 9 years of relevant experience
• Possesses at least one professional certification relevant to the technical service provided. Maintain a certification relevant to the product being deployed and/or maintained.
  

• Former Developer or Systems Administrator experience
• Working knowledge of technologies used for building and deploying enterprise applications, such as, Maven, Grade, GIT, Jenkins, Ansible, Java, C#/.NET, Apache Tomcat, Apache HTTP Server, IIS, F5, Oracle, MSSQLSEVER, PostGres
• Working knowledge and experience in AWS and Azure GovClouds
• Ability to analyze DISA STIG audit compliance scan results and provide recommendations for resolution
• Analyze security environment, provide recommendations
• Working knowledge of JIRA, Service Now or equivalent
• Working knowledge of operating system and dynamic application security testing scan tools Invicti, Web Inspect, DAST/IAST suites
• Experience using Python to automate tasks
  
  

• CEH, GFACT, GPEN, OSCP or other relevant industry certifications
• Other Application based Technology specific certifiations
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at Steampunk, Inc. by 2x

Herndon, VA 115,000.00- 145,000.00 1 week ago

Washington, DC 190,000.00- 230,000.00 6 days ago

Washington DC-Baltimore Area 60.00- 63.00 6 days ago

Washington, DC 119,765.00- 140,900.00 1 week ago

Washington, DC 135,000.00- 200,000.00 3 days ago

Washington, DC 125,000.00- 155,000.00 3 weeks ago

Tysons Corner, VA 150,000.00- 180,000.00 19 hours ago

Washington, DC 62,000.00- 141,000.00 2 weeks ago

Washington, DC 125,000.00- 140,000.00 10 hours ago

Washington, DC 62,000.00- 141,000.00 2 weeks ago

Washington, DC 200,000.00- 221,000.00 1 month ago

Annapolis Junction, MD 150,000.00- 220,000.00 1 month ago

Reston, VA 117,000.00- 239,000.00 2 weeks ago

Were unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Job DescriptionJob DescriptionSalary:

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a work hard, play hard mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, , , and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nations critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who were looking for:

We are seeking an Application Security Engineer with expertise in Veracode and a strong background in application security testing. You will play a key role in securing enterprise applications by identifying vulnerabilities, integrating security best practices, and ensuring compliance with federal security standards. The Application Security Engineer role will focus on performing SAST and DAST testing, collaborating with developers, and designing security controls. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.

What youll be doing:

• Perform Static and Dynamic Application Security Testing (SAST & DAST) using Veracode to identify and remediate vulnerabilities.
• Collaborate with development teams to integrate security best practices into IDE environments such as Eclipse, JDeveloper, or Visual Studio.
• Conduct in-depth security assessments for enterprise applications, using tools like Burp Suite, OWASP ZAP, and Selenium to ensure secure coding practices.
• Implement enterprise-wide security controls to protect applications, networks, and infrastructure services.
• Ensure compliance with federal security standards, including NIST 800-53, FIPS, and FedRAMP.
• Troubleshoot and secure Linux/UNIX environments, including addressing website connectivity and security issues.
• Utilize security frameworks (e.g., OWASP Top 10, CVSS, CWE, WASC, SANS-25) to analyze and mitigate risks.
• Support security automation by writing Bash scripts and developing security pipelines.

What you need to know:

• Expertise in Veracode for SAST, DAST, and IDE Plug-in environments.
• Programming skills in Java, Python, .NET, or C# for secure coding and remediation.
• Experience conducting security assessments with Burp Suite, OWASP ZAP, and Selenium.
• Proven ability to design and implement enterprise-wide security controls for applications, networks, and infrastructure.
• Strong knowledge of federal security compliance standards, including NIST 800-53, FIPS, and FedRAMP.
• Experience securing enterprise web applications using OWASP Top 10, CVSS, CWE, WASC, and SANS-25.
• Familiarity with Linux/UNIX environments for troubleshooting and securing web applications.
• Ability to automate security processes through Bash scripting and pipeline development.

Must haves:

• 6+ years of Information Technology experience.
• 3+ years of experience with supporting Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments using Veracode.
• 3+ years of experience with Burp Suite.
• 3+ years of experience using the design and implementation of enterprise-wide security controls to secure applications, systems, network, or infrastructure services
• 2+ years of experience with Java, Python, .NET, or C#.
• Demonstrated ability to apply critical thinking in decomposing complex requirements into actionable tasks and processes.
• Experience with Eclipse, JDeveloper or Visual Studio, including pipeline development.
• Experience securing enterprise web applications and applying OWASP Top 10, CVSS, CWE, WASC, and SANS-25.
• Knowledge of federal compliance standards, including NIST 800-53, FIPS, or FedRAMP.
• Knowledge of Linux or UNIX environments, including navigating and troubleshooting basic website connectivity issues.
• U.S. citizenship in compliance with federal contract requirements.

Beneficial to have:

• Bachelors degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• Industry recognized certifications.
• Experience with IAST (Interactive Application Security Testing) capabilities and tools.
• Experience with Selenium for security testing.
• Experience writing Bash scripts to automate security processes.
• Experience with OWASP ZAP or Burp Proxy.

Where its done:

• Remote (Herndon, VA).

remote work

Description

Summary: The main function of a Software Security Engineer is to assess software security by performing security testing, participating in code reviews, and working in partnership with software development teams to ensure that appropriate software security controls have been designed and built within applications.

Job Responsibilities:

1. Perform software security testing at a unit, functional, and system-wide level.
2. Perform manual and/or automated secure code reviews.
3. Lead threat modeling activities.
4. Assist development teams in designing, developing, and implementing integrated software security solutions.
5. Conduct security risk analysis of business and technology projects.
6. Participate, as needed, in documenting software security standards, guidelines, policies, and procedures.
7. Act as Software Security resource on assigned projects.
8. Create reusable software security artifacts.
9. Develop and/or deliver software security focused training.

Pay and Benefits

The pay range for this position is $65.00 - $80.00/hr.

Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:

• Medical, dental & vision
• Critical Illness, Accident, and Hospital
• 401(k) Retirement Plan Pre-tax and Roth post-tax contributions available
• Life Insurance (Voluntary Life & AD&D for the employee and dependents)
• Short and long-term disability
• Health Spending Account (HSA)
• Transportation benefits
• Employee Assistance Program
• Time Off/Leave (PTO, Vacation or Sick Leave)

Workplace Type

This is a hybrid position in Rockville, MD.

Application Deadline

This position is anticipated to close on Apr 25, 2025.

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe, and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information, or any characteristic protected by law.

Pay Range $75 - $79

Responsibilities may include but are not limited to: Perform city-wide web application vulnerability scanning. Prioritize the results, perform code reviews and work with the development teams on best practices to remediate. Track remediations to completion. Build strong relationships with.

As a Web Application Security Engineer, you will provide technical expertise and solutions to remediate persistent and challenging portfolio-wide vulnerabilities. We're looking for someone who has passion for IT, resourceful problem-solving abilities, and a desire to learn our indicators of success in this role. The ideal candidate will have a breadth of experience over a variety of application and web based technologies. The candidate will not necessarily have deep experience in all domain areas but should have a good understanding of how the various layers of an enterprise application stack interact with one another. You will work directly with system admin teams to assist and remediate vulnerabilities and harden environments, while providing recommendations on ways to enhance vulnerability management. Additionally, you will work in a team environment to develop proactive solutions to improve overall enterprise security posture through process streamlining and automation.

Responsibilities include:

• Provide subject matter expertise for various risk assessments, working in an Agile environment with an understanding of the full software development lifecycle.
• Advocate for and ensure appropriate security practices are communicated and implemented within application development portfolios.
• Ability and proven experience in securing multiple areas of an enterprise application stack, including the OS, Database, Application Server, Load Balancer, and Web Server layers. Understanding how PKI/TLS certificates work is a must.
• Integrate with both the application development and security assurance divisions to ensure vulnerability findings are understood, remediated or baselined as appropriate.
• Document & Socialize security findings and remediation solutions in an enterprise knowledge base.
• Support the Information Assurance Branch and the SOC with scan analysis and partner with development teams to understand and remediate security findings.

Required:

• Ability to obtain a U.S. government Security Clearance
• Master's Degree and 3 years of relevant experience; OR Bachelor's Degree and 5 years of relevant experience; OR No degree and 9 years of relevant experience
• Possesses at least one professional certification relevant to the technical service provided. Maintain a certification relevant to the product being deployed and/or maintained.

Preferred:

• Former Developer or Systems Administrator experience
• Working knowledge of technologies used for building and deploying enterprise applications, such as, Maven, Grade, GIT, Jenkins, Ansible, Java, C#/.NET, Apache Tomcat, Apache HTTP Server, IIS, F5, Oracle, MSSQLSEVER, PostGres
• Working knowledge and experience in AWS and Azure GovClouds
• Ability to analyze DISA STIG audit compliance scan results and provide recommendations for resolution
• Analyze security environment, provide recommendations
• Working knowledge of JIRA, Service Now or equivalent
• Working knowledge of operating system and dynamic application security testing scan tools - Invicti, Web Inspect, DAST/IAST suites
• Experience using Python to automate tasks

Certifications:

• CEH, GFACT, GPEN, OSCP or other relevant industry certifications
• Other Application based Technology specific certifications

Steampunk relies on several factors to determine salary, including but not limited to geographic location, contractual requirements, education, knowledge, skills, competencies, and experience. The projected compensation range for this position is $100,000 to $155,000. The estimate displayed represents a typical annual salary range for this position. Annual salary is just one aspect of Steampunk's total compensation package for employees. Learn more about additional Steampunk benefits here.

As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud. Steampunk is a Change Agent in the Federal contracting industry, bringing new thinking to clients in the Homeland, Federal Civilian, Health and DoD sectors. Through our Human-Centered delivery methodology, we are fundamentally changing the expectations our Federal clients have for true shared accountability in solving their toughest mission challenges. As an employee owned company, we focus on investing in our employees to enable them to do the greatest work of their careers - and rewarding them for outstanding contributions to our growth. If you want to learn more about our story, visit . We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law. Steampunk participates in the E-Verify program.

Application Security Engineer
Location: Bethesda, MD
Clearance: US Citizenship eligible for a Public Trust

NetImpact Strategies, Inc. is seeking an Application Security Engineer to support a Federal Agency. The ideal candidate will have expertise in secure software development, vulnerability assessment, and risk management in complex enterprise environments.

Key Responsibilities

Establish and maintain application risk management procedures supporting the agency's ISSO.
• Identify, analyze, and mitigate application security vulnerabilities using tools like NetSparker, AppScan, Checkmarx, and Fortify.
• Collaborate with development teams to integrate secure coding practices and prioritize vulnerability remediation throughout the SDLC.
• Implement enterprise-wide authentication, encryption, authorization, and access controls in applications.
• Conduct security training and provide technical guidance to development teams.
• Research, evaluate, and recommend emerging application security tools and best practices.
• Maintain security compliance with federal standards and document security findings clearly for diverse audiences.

• Bachelor's degree in Computer Science, Information Systems, or related field.

• Minimum 8 years in software engineering with a focus on secure development and vulnerability management.

• Proficient with security scanning and code analysis tools (e.g., NetSparker, AppScan, Checkmarx, Fortify).

• Strong knowledge of OWASP Top 10 vulnerabilities, secure coding practices, and SSDLC principles.

• Experience securing applications in environments using Java, Python/Django, ColdFusion, PHP, and relational databases (Oracle, MS SQL).

• Previous federal IT consulting experience (preferred)

Perks of working at NetImpact Strategies

• Your health comes first - we offer comprehensive medical, dental, & vision insurance that starts the first of the month after you join the team
• Invest in your future - 401(k) Plan - Immediately vested employer contributions; no matching required
• Work hard, play hard - we offer a generous Paid Time Off (PTO) policy and observe ALL ten (10) federal holidays
• Pawsitively pawesome - Pet Insurance (because our little critters are part of our families, too!)
• Invest in your education - Tuition reimbursement, internal training programs, & company-sponsored industry certifications
• Be part of a dynamic and collaborative work environment recently ranked by The Washington Post as a Top Work Place in 2019 & 2020!
• Have fun and celebrate and give back - Team building activities, community volunteering, quarterly HQ days, & an offsite annual awards banquet

ABOUT US

NetImpact Strategies Inc. (NetImpact) has been a Trusted Advisor driving impact through digital transformation for the Federal Government for over a decade. We solve complex problems with innovation and agility to create meaningful, transformative, and enduring change. As Trusted Advisors, NetImpact professionals partner with customer agencies to deliver solutions that empower them to not only meet their missions but also realize their strategic vision through agile, outcome-focused solutions addressing both strategic and tactical requirements. We design and implement comprehensive, tailored solutions that are both mindful of the client's culture and organizational dynamics. NetImpact's core values and commitment to a customer and results-oriented delivery approach has propelled our growth and enabled us to deliver impactful value across Strategic Consulting, Process Automation, Cloud, DevSecOps, Data and Analytics, and Cyber Security for the Federal Government.

ACCESSIBILITY NOTE

NetImpact Strategies is committed to complying with all applicable provisions of the Americans with Disabilities Act, as amended ("ADA"), and applicable state and local laws. It is NetImpact's policy not to discriminate against any qualified person or applicant with regard to any terms or conditions of employment on the basis of such individual's disability. Consistent with this policy of non-discrimination, NetImpact will provide reasonable accommodations to an individual with a disability, as defined in the ADA or applicable law, who has made NetImpact aware of his/her disability, unless doing so would cause undue hardship to NetImpact. If you are an applicant and need reasonable accommodation when applying for job opportunities within NetImpact, or request reasonable accommodation to utilize NetImpact's online employment application, please contact

EQUAL OPPORTUNITY EMPLOYER

NetImpact is committed to the development of a creative, diverse, and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at NetImpact will be based on merit, qualifications, and abilities. NetImpact does not discriminate against any person because of race, color, creed, religion, sex (including gender identity, sexual orientation, and pregnancy), marital status, national origin, disability, age, veteran status, genetic information or any other characteristic protected by federal, state, and local laws (referred to as "protected status").

Experience with Interactive Application Security Testing (IAST)capabilities and tools

Experience with Eclipse, JDeveloper, including pipeline development, or Visual Studio

Experience with securing enterprise web applications and OWASP Top 10, CVSS, CWE, WASC, and SANS-25

Knowledge of web protocols and a command line tool

Knowledge of federal compliance standards, including NIST 800-53, FIPS, or FedRAMP

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to com.

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: .

Knowledge of Linux or UNIX environments, including navigating and troubleshooting basic website connectivity issues
3+ years of experience with Java, Python, . NET, or C#

3+ years of experience with using the design and implementation of enterprise-wide security controls to secure applications, systems, network, or infrastructure services

3+ years of experience with supporting Veracode Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments

Join to apply for the Application Security Engineer role at CoreWeave

CoreWeave is the AI Hyperscaler, delivering a cloud platform of cutting-edge services powering the next wave of AI. Our technology provides enterprises and leading AI labs with the most performant, efficient, and resilient solutions for accelerated computing. Since 2017, CoreWeave has operated a growing footprint of data centers across the US and Europe. CoreWeave was ranked as one of TIME's 100 most influential companies of 2024.

We thrive in an environment where adaptability and resilience are key. Our culture offers career-defining opportunities for those who excel amid change and challenge. If you enjoy solving complex problems and making a significant impact, CoreWeave is the place for you.

• Address application security challenges at scale.
• Collaborate with engineers developing applications and platforms.
• Experiment, innovate, and shape our security approach.

• Conduct architecture reviews, security assessments, and code reviews to identify vulnerabilities.
• Develop frameworks for application security to facilitate secure development.
• Work with development teams to integrate security into CI/CD pipelines.
• Create security guidance and documentation for developers.
• Participate in architectural discussions, providing security insights.
• Innovate solutions in ambiguous situations.

• At least 3 years of experience in software security.
• Skills in application architecture, secure coding reviews, threat modeling.
• Experience with secure application development or security tooling in Go, Python, or similar.
• Experience collaborating with developers on secure coding practices.
• Excellent negotiation, documentation, and communication skills.
• Familiarity with modern development environments, containers, microservices, and CI/CD.

• Experience with Kubernetes security and YAML engineering.
• Knowledge of SAST/DAST tools and automated security testing.
• Understanding of cloud-native security challenges.

Base salary ranges from $160,000 to $330,000/year, depending on factors like location and experience. We provide comprehensive benefits including health insurance, life insurance, disability coverage, retirement plans, tuition reimbursement, wellness benefits, parental leave, flexible PTO, and more.

We operate as a hybrid workplace, offering flexibility between in-office and remote work. We support onboarding at our hubs and foster collaboration through quarterly team gatherings. Remote work is considered for candidates with strong skills and experience, with onboarding at a nearby hub.

CoreWeave is committed to diversity and inclusion. We provide reasonable accommodations for applicants with disabilities. Contact:

• Seniority level: Mid-Senior level
• Employment type: Full-time
• Job function: Information Technology
• Industries: Technology, Internet