← Back to Jobs
Full Time

Application Security Engineer - Lumin Digital - Charleston, WV

Lumin Digital

Apply Now
Charleston, WV
Google Jobs
Posted 14 days ago

Job Description

Basic Function
The Application Security Engineer ensures robust security practices within a highly regulated SaaS environment. Collaborating closely with Product and Development teams, this role embeds security throughout the Software Development Life Cycle (SDLC), from design to deployment and ongoing maintenance. The engineer manages automated vulnerability scanning tools, coordinates penetration tests, advises on secure architecture, and supports compliance, risk management, and incident response initiatives.

Essential Functions and Responsibilities:Monitor and analyze security alerts and vulnerability reports, prioritizing and validating vulnerabilities for timely remediation.
Maintain and optimize automated vulnerability scanning systems (SAST/DAST), ensuring comprehensive application security assessments.
Own the design, implementation, and evolution of ASPM capabilities, integrating signals from SAST, DAST, SCA to manage runtime and production telemetry and define risk scoring models that balance exploitability, data sensitivity, and business impact.
Own and operate the company’s bug bounty program end-to-end, including program strategy, scope definition, and maturity evolution, triage, validation, and severity assessment of submissions and engagement with external security researchersCoordinate and manage third-party penetration tests, bug bounty programs, and vulnerability assessments, responding effectively to findings.
Collaborate cross-functionally to perform architectural and code reviews, delivering actionable recommendations for enhanced application security.
Develop and maintain application threat models to inform proactive risk management and security posture improvements.
Assist internal teams in vulnerability remediation using industry-standard tools (e.g., Veracode, Qualys, Rapid7, Burp).Support incident response activities, enabling rapid identification, containment, and resolution of application security incidents.
Stay curren

Apply for this Position