Enable job alerts via email!

Senior/Lead Application Security Engineer

BioRender

United States

Remote

USD 90,000 - 150,000

Full time

3 days ago

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

An innovative firm is seeking a Senior/Lead Application Security Engineer to enhance the security of its application stack. In this role, you will manage the application security program, conducting risk assessments and integrating security practices into CI/CD workflows. Collaborating closely with engineering teams, you will proactively identify threats and implement best practices in web application security. This remote-first company is dedicated to transforming scientific communication and offers a flexible work environment, making it an exciting opportunity for those passionate about security in tech.

Qualifications

Expertise in web application security and best practices.
Ability to perform code reviews on NodeJS, React, and related technologies.

Responsibilities

Build and maintain security and CI/CD tooling for automation.
Perform penetration testing and code reviews (NodeJS).
Identify and remediate application security vulnerabilities.

Skills

Web Application Security

NodeJS

React

SAST/DAST

Cryptography

Threat Modeling

Tools

OWASP

HackerOne

Senior/Lead Application Security Engineer

Join to apply for the Senior/Lead Application Security Engineer role at BioRender.

At BioRender, we’re on a mission to accelerate the world’s ability to learn, discover, and communicate science — transforming how knowledge is shared and making science open, collaborative, and easily understandable by all.

We’re shaping the future of science communication and are looking for talented individuals to help bring this vision to life!

As a Senior/Lead Application Security Engineer, you will drive ongoing improvements for SSDLC, bug bounty, and the application stack. Your primary responsibility is to manage the ongoing application security program, including application risk assessments, CI/CD integration (SAST/DAST), bug bounty, and code reviews (NodeJS/React). You will work closely with engineering teams to define and manage secure coding processes, proactively identifying threats and building security into workflows.

What You'll Be Doing

Build and maintain security and CI/CD tooling for automation.
Perform penetration testing and code reviews (NodeJS).
Drive identification and remediation of application security vulnerabilities (SAST/DAST/HackerOne).
Conduct Bug Bounty issue evaluation, reproduction, and provide recommendations.
Test application code using the OWASP methodology.

What You Bring To The Table

Expertise in web application security and best practices.
Ability to perform code reviews on NodeJS, React, and related application findings.
Knowledgeable in integrating and maintaining SAST/DAST systems.
Experience with Secure Software Development Life Cycles.
Applied knowledge of cryptography, PKI, TLS, and practical implementation.
Experience in threat modeling, understanding common vulnerabilities, impacts, and remediations.

Why join us?

We are mission-driven: working collaboratively to improve scientific communication and accelerate discovery. BioRender figures have appeared in over 54,000 publications!
BioRender is loved by millions with a loyal community in 200+ countries!
Backed by top investors and accelerators like Y Combinator, on a growth trajectory comparable to top SaaS companies.
Remote-first team across Canada and the U.S., offering flexibility to work from anywhere.

BioRender is an Equal Opportunity Employer, committed to diversity and inclusion. All qualified applicants will receive consideration regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.

Similar jobs