Senior Application Security Engineer

The Senior Application Security Engineer is a highly technical, engineering-driven role within NinjaOne’s Information Security organization. This position focuses on embedding security into the software development lifecycle by working directly with development, platform, and product teams from design through deployment. In this role, you will build and maintain internal application security tooling, design scalable security automation, and write production-quality code to address security challenges at scale. You will help define application security architecture standards, integrate security-by-design controls into CI/CD pipelines, and leverage AI/LLM-based workflows to improve signal quality, reduce manual effort, and accelerate secure development practices.

English resumes required

Location: Brazil, Ecuador, Colombia, Mexico (LATAM)

• Design, build, and maintain internal application security tooling and automation, with a strong emphasis on scalable, code-driven solutions
• Integrate and extend security by design solutions in the CI/CD pipelines
• Build and evolve AI/LLM-assisted security workflows (e.g., automated reviews, reasoning systems, signal correlation, and developer guidance tools)
• Implement and extend APIs and MCPs for SaaS applications
• Develop clear, high-quality reports and presentations for both technical and executive audiences, internally and externally as needed
• Other duties as needed

• Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent practical experience)
• 3+ years of experience in Application Security, DevSecOps, or Software Engineering with a strong security focus, and 5+ years in cybersecurity-related roles
• Proficiency in Golang and Python (required); Node.js/React experience is a plus
• Proven ability to break down complex systems to identify logic, performance and design performance issues to scale up the software
• Strong AWS experience and familiarity with modern software delivery practices such as Infrastructure as Code, containers, and service-oriented architectures
• Broad systems knowledge across Linux, Windows, macOS, and networking fundamentals (TCP/IP, secure network design)
• Solid understanding of application security fundamentals, including authentication, authorization, cryptography, secure communications, and common vulnerability classes
• Ability to analyze complex systems, identify scalability and security risks, and communicate effectively with engineers and leadership

NinjaOne automates the hardest parts of IT to deliver visibility, security, and control over all endpoints for more than 30,000 customers. The NinjaOne automated endpoint management platform is proven to increase productivity, reduce security risk, and lower costs for IT teams and managed service providers. NinjaOne is obsessed with customer success and provides free and unlimited onboarding, training, and support. NinjaOne is #1 on G2 in endpoint management, patch management, remote monitoring and management, and mobile device management.

• Our flexible working hours with home office options enable you to successfully balance your personal life and your job.
• Grow personally and together with one of the fastest growing companies globally.
• Develop your skills through our renowned training platform.
• Receive competitive compensation.
• Collaborate with an amazing international workforce.

This position is NOT eligible for Visa sponsorship.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, genetic information, marital status, veteran status, or any other status protected by applicable law. We are committed to providing an inclusive and diverse work environment.

#LI-MM1

#LI-REMOTE

#BI-REMOTE