Senior Application Security Engineer
$145,000–$225,000 year
Hybrid · Los Angeles, California, United States or Denver, Colorado, United States
Job Summary
Senior Application Security Engineer responsible for implementing and auditing security controls for mission-critical space systems, aligning with government compliance (NIST 800-171/800-53, FedRAMP, CMMC) and cloud-native architectures. Designs and implements application-level security controls (audit logging, incident response, access controls, security monitoring), collaborates with product engineering to integrate secure coding practices, develops security training, and creates incident response playbooks. Qualifications include 5+ years in security engineering, hands-on compliance experience, production-grade coding in multiple languages, cloud security, and DoD clearance eligibility. Preferred skills include TS/SCI clearance, experience with DoD impact levels and STIGs, and expertise in DevSecOps, IaC security, Kubernetes security, and aerospace/regulatory industries. Compensation ranges by location are provided; candidates must be located near Denver, SF Bay Area, or Long Beach with hybrid on-site requirements.
Required Qualifications
- 5+ years of experience in application security, product security, or security engineering
- Hands-on experience with NIST 800-171/800-53, FedRAMP, or CMMC
- Production-grade coding ability in Python, Rust, Elixir, C++, or similar
- Cloud security experience (Azure preferred, AWS or GCP acceptable)
- Solid understanding of secure architecture (threat modeling, OAuth2/JWT/RBAC/ABAC, cryptography, defense-in-depth, Zero Trust)
- Ability to obtain and maintain a DoD security clearance
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.