Application Security Engineer

Position Overview

The Application Security Engineer is a mid-tier role within the RxSense Information Security team, focused on assessing and managing risks in the application security domain. This role involves acting as an application security Subject Matter Expert (SME) on project teams and performing various security touchpoints throughout the RxSense Software Development Lifecycle (SDLC).

Compliance: Must be aware of and comply with all aspects of the RxSense Information Security Program and its policies. Must always understand the importance of maintaining Information Security in all Business Operations.

Job Responsibilities

• Work with development and product teams to define security requirements and ensure they are followed.
• Partner with development and product teams to drive remediation of security gaps.
• Coordinate 3rd party penetration tests and work with internal teams to remediate findings.
• Perform architecture and design reviews on company applications.
• Monitor and analyze application security logs and events to detect and respond to security threats.
• Perform monitoring and management of Web Application Firewall (WAF).
• Interpret and manually validate Static Application Security Testing (SAST) results.
• Manage SAST, Software Composition Analysis (SCA), and Dynamic Application Security Testing (DAST) tools to ensure comprehensive testing and remediation of findings.
• Analyze and report on risks discovered through application security testing.
• Participate on project teams as the Information Security representative.
• Ability to quickly adapt to changing priorities as business needs change.
• Excellent interpersonal and communication skills are a must.

Strengths

• Knowledge and experience with techniques, tools, and practices pertaining to securing the SDLC.
• Experience with software development, programming, and scripting.
• Experience with OWASP ZAP or Burp Proxy.
• Experience with static application security testing tools.
• Knowledge and experience with implementing and managing web application firewalls.
• High-level understanding of securing Cloud Platforms (AWS and GCP) and cloud architecture.
• A broad interest/experience across the whole security domain would be an advantage, although the position is in application security.

Requirements

• BS in Information Systems preferred, but appropriate experience is acceptable.
• 3+ years of experience in application security is required.
• Must have the ability to identify, analyze, and solve security risks pragmatically.
• Familiarity with web application architecture, APIs, and cloud environments.
• Experience with security standards and frameworks, such as OWASP, NIST, or CIS.
• Practical understanding of common application security vulnerabilities.
• Excellent problem-solving skills.

Company Information

RxSense is a leading healthcare technology company delivering innovative solutions for pharmacy benefits and prescription savings. Our enterprise platform brings transparency, flexibility, and efficiency to pharmacy benefit management, helping clients streamline operations and enabling consumers to save on prescriptions. By integrating intelligence across the pharmacy ecosystem, RxSense makes cost-effective healthcare more accessible. Whether for PBMs, pharmacies, or individuals, our solutions help modernize operations, reduce costs, and improve outcomes.

RxSense also owns and operates SingleCare, a free prescription savings service that offers consumers access to consistently low prices on prescription drugs. Through its partnerships with the country’s largest pharmacies and grocers, including CVS, Walgreens, Walmart, Kroger, and Albertsons, SingleCare improves access and adherence to affordable medications and has helped millions of Americans save over $11 billion on their medications.

RxSense is a great place to work! Our company has earned several prestigious awards, including Fast Company’s Most Innovative Companies, Forbes’ Top Startup Employers, Modern Healthcare's Best Places to Work in Healthcare, and Inc’s Best in Business and Best Workplaces.

• Salary: [Not specified]
• Location Type: [Not specified]
• Employment Type: [Not specified]