Senior Application Security Engineer

Position Overview

• Location Type: Remote, Hybrid (Columbus, Ohio HQ, Hubs, and Remote)
• Employment Type: Full-time
• Salary: Not specified

As a Senior Application Security Engineer at Loop, your primary responsibility will be to ensure the security and integrity of our systems and data. This will involve actively collaborating on security projects, identifying and communicating potential risks, and implementing effective security measures. You will play a key role in maintaining a secure environment by proactively monitoring and remediating vulnerabilities, responding to security incidents, and conducting regular security audits. You will also participate in engineering team activities, share your expertise, and mentor other team members on security best practices. Furthermore, you will be a strong advocate for security within the organization, promoting a culture of security awareness and continuously looking for opportunities to improve our security posture.

Requirements

• Deep understanding of security principles and practices.
• Hands-on expertise in some secure software development lifecycle areas (with organizational support for others).
• Experience with vulnerability scanning and remediation.
• Familiarity with security monitoring and incident response.
• Ability to quickly learn new technologies and environments.
• Strong communication and collaboration skills.

Responsibilities

• Participate in security projects, delivering secure and well-documented work.
• Support SOC2 compliance and Pen Testing initiatives.
• Deeply understand how to secure networks, applications, infrastructure, and data.
• Utilize monitoring and vulnerability scanning tools to identify security concerns within the production environment and systems, remediate findings, or communicate them to the relevant team for triage.
• Manage security projects independently, escalating when needed.
• Build relationships with engineers.
• Provide actionable security feedback to develop.
• Investigate automation opportunities.

Tech Stack

• Development: Vue.js, Node.js, PHP/Laravel, MySQL, DynamoDB, Docker, Kubernetes, AWS Cloud, Gitlab, and Serverless Framework.
• Security: Vanta, Sysdig, Cloudflare, and other vulnerability and scanning solutions.

Company Information

Loop’s Engineering Team thrives on a balance of agility, consistency, and performance. These pillars empower us to consistently deliver impactful value to our customers. This deep customer understanding fuels our engineering teams to be leaders in our space, bringing innovative ideas to the market. Our Blended Work Environment offers flexibility and choice, allowing you to work from our HQ in Columbus, Ohio, join a Hub location with 4+ team members, or remain fully remote. Our team spans the United States, select Canadian provinces (Ontario & British Columbia), and the United Kingdom.