Senior Application Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Alma · 15 hours ago

Senior Application Security Engineer

positionUnited States
timeFull-time
remoteRemote
seniorityMid, Senior Level
money$130K/yr - $186K/yr
date4+ years exp

Alma is on a mission to simplify access to high-quality, affordable mental health care, and they are seeking a mission-driven Senior Application Security Engineer to join their team. In this role, you will lead application security efforts, ensuring that Alma's services and applications meet security standards while collaborating with various teams to implement effective security measures.

Health CareMedicalMental HealthWellness

Responsibilities

Create, manage, and maintain the application security strategy and roadmap, tracking OKRs and work efforts over six quarters
Comfortable and excited to lead the application security domain, including managing and maintaining existing tools, executing domain strategies, and owning all aspects of application security
Develop, execute, and track the performance of security measures to protect Alma’s data, applications, and systems
Gain a deep understanding of Alma’s systems and architecture and the software development processes used to develop it
Provide subject matter expertise in the areas of secure coding, application authentication, encryption, AI, and quickly research and become competent in other areas as needed
Collaborate with teammates, PMs, and peers to design, develop and implement engineering’s technical security strategy and architecture
Collaborate with the Platform Infrastructure team to configure, troubleshoot, and maintain a security infrastructure that monitors and protects against security breaches and intrusions
Collaborate with the Developer Experience team to integrate security tools, workflows, and practices into development environments
Continually research current and emerging security threats and technologies, proposing changes and guidance that are most impactful
Develop appropriate technical solutions along with the latest security tools that help mitigate security vulnerabilities and also help automate repeatable activities
Build and provide high-quality application security documentation and training to engineers to set them up for success
Educate and train Alma engineering on information system security best practices using our security training solution as well as in-person and recorded training
Mature and execute the Threat Modeling program with engineers
Implement, manage, and maintain application security tools such as SAST and DAST scanners and own the workflow for remediation of findings
Assist with creating the reports for management regarding vulnerabilities, training, and other relevant metrics

Qualification

Application Security StrategySecure Coding PracticesApplication Security ToolsThreat ModelingWeb Application ProtocolsContent Security PoliciesAI SecurityOWASP Top 10SASTDAST ToolsTrainingResearchCollaborationDocumentation

Required

4+ years of experience working in an application security role
Strong understanding of the security best practices for the development lifecycle (SDLC)
Expert knowledge of web application protocols
Deep technical knowledge of Content Security Policies (CSP) and how to implement them
Strong experience working with AI and understand the areas to focus on to secure it
Expert understanding of application security testing tools like OWASP ZAP and Burpsuite
Expert understanding of the OWASP Top 10 and other application attacks
Experience installing and running a local developer environment for local testing of code
Deep technical knowledge of application development, operating system environments, and AWS cloud infrastructure as they pertain to application security
Implemented/managed SAST and DAST tools such as StackHawk and Snyk with more than a year experience in each type of tool
Familiarity with common security libraries and tools

Benefits

Health insurance plans through Aetna (medical and dental) and MetLife (vision), including FSA and HSA plans
401K plan (ADP)
Monthly therapy and wellness stipends
Monthly co-working space membership stipend
Monthly work-from-home stipend
Financial wellness benefits through Northstar
Pet discount program through United Pet Care
Financial perks and rewards through BenefitHub
EAP access through Aetna
One-time home office stipend to set up your home office
Comprehensive parental leave plans
12 paid holidays and 1 Alma Give Back Day
Flexible PTO

Company

Alma

twittertwittertwitter
Glassdoor3.6
company-logo
Alma is a membership-based network for mental health care providers.
dateFounded in 2018
location
Brooklyn, New York, USA
people-size201-500 employees
web-link
https://helloalma.com

Funding

Current Stage
Late Stage
Total Funding
$220.5M
Key Investors
Thoma BravoInsight PartnersTusk Venture Partners
2026-01-29Acquired
2022-08-25Series D· $130M
2021-08-31Series C· $50M

Leadership Team

leader-logo
Harry Ritter
Founder and CEO
linkedin
K
Kate Mellor
Chief Commercial Officer
linkedin

Recent News

MedCity News
The Digital Health M&A Wave Is Finally Here
2026-02-08
prnasia.com
Alma, a Sisram Medical Company, Advances the Future of Intelligent Aesthetics at IMCAS World Congress 2026
2026-02-06
Fierce Healthcare
Spring Health to buy Alma as AI rapidly reshapes mental healthcare market
2026-02-03
Company data provided by crunchbase