← all jobs

[Remote] Application Security Engineer

Work from home Full-time role Hiring

Note: The job is a remote job and is open to candidates in USA. Bright Vision Technologies is a forward-thinking software development company dedicated to building innovative solutions that help businesses automate and optimize their operations. We are looking for an Application Security Engineer to embed security throughout the software development lifecycle, partnering with engineering teams to design secure systems, identify vulnerabilities, and reduce risk across our application portfolio.

Responsibilities

  • Conduct threat modeling and security architecture reviews for new and existing applications and services
  • Perform manual code reviews, secure design consultations, and pair with engineering teams on hardening critical components
  • Operate and tune SAST, DAST, IAST, SCA, and secret-scanning tools across CI/CD pipelines
  • Drive vulnerability management workflows including triage, prioritization, owner assignment, and SLA tracking
  • Build paved-road libraries and frameworks that make secure patterns the default for engineering teams
  • Lead red-team and purple-team exercises against internal applications and drive remediation of identified weaknesses
  • Implement and operate runtime protections including WAF, RASP, bot protection, and abuse-detection mechanisms
  • Design and enforce secure authentication, authorization, session management, and cryptographic patterns
  • Partner with infrastructure and platform teams to harden container, Kubernetes, and cloud environments
  • Develop and deliver application security training, lunch-and-learns, and onboarding content for engineering staff
  • Respond to security incidents involving application vulnerabilities or active exploitation
  • Track and apply emerging threats and CVEs that may affect the application portfolio
  • Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures — so that the system remains supportable, auditable, and easy to onboard new engineers onto over time
  • Stay current with application security research and emerging defensive tooling

Skills

  • Bachelor's degree in Computer Science, Cybersecurity, or a related field
  • Five or more years of application security or security engineering experience
  • Strong understanding of OWASP Top 10, common vulnerability classes, and modern exploit patterns
  • Hands-on experience performing code review across at least two major languages
  • Deep familiarity with SAST, DAST, SCA, and CI/CD-integrated security tooling
  • Strong understanding of authentication, authorization, and cryptographic primitives
  • Experience with cloud security and modern infrastructure controls
  • Strong communication skills with technical and non-technical audiences
  • Proficiency in at least one programming language for tooling and automation
  • Experience working closely with engineering teams in an Agile environment
  • Industry certifications such as OSCP, OSCE, GWAPT, or CISSP
  • Experience with offensive security tooling and red-team operations
  • Bug bounty experience, public CVEs, or open-source security contributions
  • Familiarity with AI/LLM application security considerations
  • Exposure to regulated industries with strict compliance requirements

Benefits

  • Competitive base salary commensurate with experience, plus benefits.
  • No new H1B sponsorship available. H1B transfers welcomed for qualified candidates.
  • Full-time, direct W2 with Bright Vision Technologies (no C2C, no 1099, no third-party).
  • We will support H1B transfers for qualified candidates.

Company Overview

  • Brightvision is a lead generation agency for B2B tech companies. It was founded in 2000, and is headquartered in Göteborg, Vastra Gotaland, SWE, with a workforce of 51-200 employees. Its website is https://brightvision.com/.
  • More open positions

    [Remote] Oracle Cloud Security Engineer

    Work from home Full-time role

    [Remote] Security Engineer

    Work from home Full-time role

    [Remote] ML Platform Engineer

    Work from home Full-time role

    [Remote] Senior Manager, Business Operations Procurement Management

    Work from home Full-time role

    [Remote] Human Resources Generalist

    Work from home Full-time role

    Experienced Data Entry Specialist – Remote Opportunity with careerzynith

    Work from home Full-time role

    Accounts Receivable / Accounts Payable Specialist

    Work from home Full-time role

    Contact Center Representative - Level 1

    Work from home Full-time role

    Technical Engineering Manager

    Work from home Full-time role

    Cybersecurity Risk Advisor (Mid Level)

    Work from home Full-time role

    Principal Operations Program Manager, Global SOC

    Work from home Full-time role

    VP of Software Engineering

    Work from home Full-time role

    Administrative Coordinator (Digital Medicine) - US Thousand Oaks / US Remote

    Work from home Full-time role

    Accounts Receivable Specialist (Remote)

    Work from home Full-time role

    People Operations Administrator

    Work from home Full-time role

    Senior Product Manager – Customer Experience (Remote) – Driving Strategic Innovation & Value Delivery at careerzynith

    Work from home Full-time role

    Remote Data Entry Specialist – Full‑Time & Part‑Time Opportunities Driving Brand Engagement & Workforce Insights at careerzynith

    Work from home Full-time role

    [Remote] IT Principal Data Engineering

    Work from home Full-time role

    Senior Software Engineer: macOS (USA, Remote)

    Work from home Full-time role

    Sales Development Representative Analyst (SDR) - ITALIA

    Work from home Full-time role

    Controller – Non Profit Experience

    Work from home Full-time role