Software Engineer I/II (Application Security) (Remote - US)

We are committed to a culture where all employees are included, belong, and have equal opportunity to achieve their full potential. Come make a difference with us!

Learn more about BNSF and our Benefits

Job Location: REMOTE
Other Potential Locations: Remote US
Anticipated Start Date: 06/16/2025
Number of Positions: 1
Salary Range: $93,750 - $206,250

The US base salary range for this full-time position is $93,750-$206,250 plus bonus eligibility and other elements of our total rewards package. The range represents the amount BNSF | Tech reasonably expects to pay based on the role's level, scope, and responsibilities. Compensation is determined by location, skills, experience, and education. In addition to base pay, BNSF offers a comprehensive benefits package.

Apply early as this job may be filled or removed prior to the closing date, approximately seven (7) days after posting.

We are committed to a culture where all employees are included, belong, and have equal opportunity to achieve their full potential. Come make a difference with us!

The bnsf | tech department drives innovation and efficiency by developing and maintaining advanced technological solutions across the network. This team ensures a robust IT infrastructure, supports critical applications, and enhances cybersecurity measures. Their expertise is essential in optimizing operations and enabling BNSF to deliver reliable, cutting-edge transportation services.

This is a full-time position. Our leaders foster a culture that values work-life balance, flexibility, and respect for personal circumstances.

We seek a talented and driven Application Security Engineer to join our growing security team. The role focuses on securing web, mobile, and cloud applications through threat modeling, code reviews, penetration testing, and collaboration with developers to implement secure coding practices.

As an Application Security Engineer, you will:

• Participate in designing, implementing, and maintaining application security tools and systems to ensure security and efficiency.

• Conduct security assessments of applications and identify vulnerabilities.

• Collaborate with development teams to integrate security into the SDLC.
• Perform static and dynamic code analysis.
• Develop and maintain automated security testing tools and scripts.
• Participate in threat modeling and architecture reviews.
• Manage remediation of security issues.
• Stay current with security threats, trends, and technologies.
• Ensure compliance with regulatory requirements and industry standards.

Basic Qualifications:

• I am CURRENTLY authorized to work in the US.

• Bachelor’s degree in Computer Science, Engineering, Cybersecurity, or equivalent experience.

• Strong knowledge of common vulnerabilities (OWASP Top 10, CWE).
• Proficiency in programming languages (e.g., Java, Python, JavaScript, Go).
• Experience with security tools (SAST, DAST, IAST, SCA, Burp Suite).
• Strong communication skills and cross-functional collaboration ability.

• Fluency in multiple technology stacks and expertise in several of the following: C, C++, Java, J2EE, JSP, Servlet, EJB, Application (Client/Server), RMI, WAS, Web Services, WS-Security, HTML, XML, XSLT, SOAP, MQ Series, LDAP / Active Directory.

• Experience with CI/CD and infrastructure as code.

• Strong problem-solving skills.

• Experience working in DevSecOps, automation, coding/scripting, and API integration.

• Understanding of SSDLC.

Preferred Qualifications:

• Agreement that future employment-based immigration support will not be required from BNSF.

• Knowledge in areas like mutual TLS, OpenID Connect, enterprise RDBMS, OS (Windows, AIX, MacOS, iOS, Linux), Java APIs, ESB, JMS, and security certifications (OSCP, CISSP, CSSLP, GWAPT).

• Familiarity with container/Kubernetes security and cloud security (AWS, Azure, GCP).

Benefits include:

• Industry-leading 401(k) and Railroad Retirement.

• Comprehensive health options, including medical, dental, vision, telemedicine, mental health, and more.

• Health savings accounts, life and disability insurance.

• Family benefits, parental and family support, adoption, surrogacy, dependent care.

• Discounts on travel, gym memberships, counseling, wellness.

• Annual bonus and generous leave policies.

• More info at Benefits.

Please review our FAQ and Hiring Process for more info. All positions require background checks, medical review, drug screening, and for certain roles, TWIC card.

BNSF is an Equal Opportunity Employer. All qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.