Application Security Engineer

This isn’t a traditional AppSec role. It sits right at the intersection of AI-driven development, SaaS security, and financial-grade risk management—and they need someone who can help shape how security evolves alongside modern engineering.

Why this role stands out:

• Ownership of AppSec across 20+ SaaS applications in a highly regulated financial environment
• Direct involvement in securing AI-assisted development (Copilot, Cursor, Codex)
• Hands-on with AI-powered pentesting tools + modern SAST/DAST pipelines
• Opportunity to define secure AI coding guardrails (this is a big focus area for them)
• High collaboration with engineering, risk, and compliance—this is a true partner role, not a silo

What they’re looking for:

• Strong background in application security + secure SDLC (SAST, DAST, SCA)
• Experience with code review (Python, C#, Java, or JavaScript)
• Exposure to AI-driven development environments and their security implications
• Ability to balance technical risk with business impact (this is key in their environment)
• Bonus if you’ve worked with SSPM tools or SaaS security at scale

• Location: Boston (4 days onsite)