Sr. Application Security Engineer at OpenGov

Boston, Massachusetts, United States

Apply Now

$140,000 – $167,500Compensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Government Technology, Public Sector, SaaSIndustries

Requirements

6+ years of application security, secure development, or software engineering experience (or equivalent real-world experience)
Strong knowledge of modern application architectures: microservices, REST/GQL APIs, React/Node/Java/Kotlin/Go, containerized workloads, Kubernetes
Hands-on experience with SAST, DAST, SCA, secrets scanning, container scanning, and CI/CD integration
Expertise in OWASP Top 10, ASVS, SANS CWE Top 25, and secure coding principles
Ability to perform threat modeling, code review, and architecture analysis
Experience partnering (inferred from role context)

Responsibilities

Embed security into CI/CD pipelines through scalable guardrails, automated security checks, and continuous improvements to developer workflows
Drive adoption of secure coding best practices across engineering teams through tooling, guidance, and direct partnership
Lead threat modeling exercises for high-risk features and new architecture patterns
Own, maintain, and tune AppSec tooling including SAST, DAST, SCA, secrets scanning, container scanning, and dependency management
Partner with DevOps to ensure automated testing integrates into build, test, and deploy workflows with high signal-to-noise and minimal developer friction
Evaluate emerging technologies and automation opportunities to strengthen AppSec capabilities
Lead triage, prioritization, and root-cause analysis for application vulnerabilities discovered through internal testing, bug bounty programs, pentests, and external researchers
Ensure timely remediation through strong cross-functional partnership, driving the right balance of risk, velocity, and operational maturity
Support security reviews, pen test scoping, and remediation programs tied to GovRAMP, SOC 2, and customer requirements
Conduct manual reviews of critical code paths, APIs, backend services, and cloud components to identify security defects that automation may miss
Advise on secure design patterns for microservices, cloud-native architectures, authentication/authorization mechanisms, secrets management, and data protection
Collaborate with Security Operations during active incidents involving application or product vulnerabilities
Perform deep-dive analysis of new vulnerabilities, exploit techniques, frameworks, and supply-chain risks affecting our tech stack
Mentor engineering teams on secure design, secure coding, and modern AppSec patterns
Lead internal workshops, brown bags, and knowledge-sharing sessions
Contribute to internal AppSec documentation, policies, and secure development standards

Skills

Key technologies and capabilities for this role

Application SecurityCI/CDSASTDASTSCASecrets ScanningContainer ScanningThreat ModelingSecure CodingCloud-NativeSaaSDevOps

Questions & Answers

Common questions about this position

What is the salary range for the Senior Application Security Engineer position?

The salary range is $140K - $167.5K.

Is this role remote or onsite?

The position is onsite.

What key skills are required for this role?

The role requires hands-on expertise in AppSec tooling like SAST, DAST, SCA, secrets scanning, and container scanning, experience embedding security into CI/CD pipelines, leading threat modeling, and strong collaboration with engineering teams.

What is the company culture like at OpenGov?

OpenGov emphasizes a collaborative environment where the security engineer partners closely with Software Engineering, Product, DevOps, and Security Operations to embed security into the SDLC, focusing on scalability, best practices, and rapid growth.

What makes a strong candidate for this position?

A strong candidate is hands-on, highly collaborative, with expertise in scaling AppSec processes, threat modeling, and AppSec tooling, plus the ability to partner cross-functionally while balancing risk, velocity, and operational maturity.

OpenGov

Cloud-based software for government organizations

About OpenGov

OpenGov provides cloud-based software solutions tailored for the public sector, focusing on strategic budgeting, planning, permitting, licensing, and code enforcement. Their products help government organizations transition from paper-based processes to digital workflows, significantly reducing the time and resources needed for tasks like budget creation, which can be completed in half the usual time. OpenGov stands out from competitors by leveraging extensive experience in the public sector to address specific challenges faced by local governments, such as outdated systems and the need for transparency. The company's goal is to empower government leaders with better data analysis tools to enhance decision-making and improve engagement with constituents.

Redwood City, CaliforniaHeadquarters

2012Year Founded

$221.8MTotal Funding

ACQUISITIONCompany Stage

Data & Analytics, Government & Public SectorIndustries

501-1,000Employees

Benefits

Competitive Salary

Work from Anywhere

Unlimited Vacation

Mission-Driven Colleagues

World-Class Healthcare

Professional Development

Family Matters

Amazing Customers

Risks

Increased competition from other SaaS providers targeting the public sector.

Integration challenges from iGovServices acquisition may disrupt existing services.

Reliance on cloud solutions makes OpenGov vulnerable to service outages.

Differentiation

OpenGov specializes in cloud-based solutions tailored for the public sector.

The company offers strategic budgeting, permitting, and licensing software for governments.

OpenGov's software reportedly halves the time needed for budget creation.

Upsides

Growing demand for cloud solutions as governments modernize outdated systems.

Acquisition of iGovServices expands OpenGov's offerings into tax and revenue management.

Rising adoption of electronic bidding systems enhances OpenGov's procurement solutions.

Land your dream remote job 3x faster with AI

Try Jobo Free