Application Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Lumin Digital · 12 hours ago

Application Security Engineer

positionUnited States
timeFull-time
remoteRemote
seniorityMid Level
money$120K/yr - $140K/yr
date4+ years exp

Lumin Digital is a trailblazer in digital banking solutions, driven by a unique approach to technology, service, and people. The Application Security Engineer ensures robust security practices within a highly regulated SaaS environment by collaborating closely with Product and Development teams to embed security throughout the Software Development Life Cycle (SDLC).

Financial ServicesFinTechSaaSSoftware
check
Growth Opportunities

Responsibilities

Monitor and analyze security alerts and vulnerability reports, prioritizing and validating vulnerabilities for timely remediation
Maintain and optimize automated vulnerability scanning systems (SAST/DAST), ensuring comprehensive application security assessments
Own the design, implementation, and evolution of ASPM capabilities, integrating signals from SAST, DAST, SCA to manage runtime and production telemetry and define risk scoring models that balance exploitability, data sensitivity, and business impact
Own and operate the company’s bug bounty program end-to-end, including program strategy, scope definition, and maturity evolution, triage, validation, and severity assessment of submissions and engagement with external security researchers
Coordinate and manage third-party penetration tests, bug bounty programs, and vulnerability assessments, responding effectively to findings
Collaborate cross-functionally to perform architectural and code reviews, delivering actionable recommendations for enhanced application security
Develop and maintain application threat models to inform proactive risk management and security posture improvements
Assist internal teams in vulnerability remediation using industry-standard tools (e.g., Veracode, Qualys, Rapid7, Burp)
Support incident response activities, enabling rapid identification, containment, and resolution of application security incidents
Stay current on emerging security threats, vulnerabilities, and industry best practices, translating insights into practical guidance
Provide security expertise in risk management, compliance audits, and client communications to enhance the overall security posture
Perform other duties as assigned

Qualification

Application Security EngineeringVulnerability AssessmentAutomated Vulnerability ScanningAWSGitOWASP Top 10SAMLOAuth 2.0JavaScriptAnalytical SkillsCommunication SkillsTeam CollaborationContinuous Learning

Required

Bachelor's degree in Computer Science, Management Information Systems, Cybersecurity, or a related field is required, or equivalent combination of education and experience
4 years of experience in application security engineering, software engineering, with security focused roles
3 years of hands-on experience identifying and qualifying application security vulnerabilities, preferably within web, financial services, or mobile application environments required
Experience with AWS, Git, and industry-standard application vulnerability platforms required
Proficiency analyzing application source code (e.g., TypeScript, JavaScript, C#, Java, Swift) to identify security vulnerabilities
Strong technical knowledge of security vulnerabilities and standards (OWASP Top 10, CWE, CVSS scoring)
Deep familiarity with authentication and authorization protocols (e.g., SAML, OAuth 2.0, JWT)
Applied knowledge of cryptographic practices, including encryption standards, hashing algorithms, and authentication lifecycle management
Excellent analytical, communication, and coordination skills, with the ability to effectively manage and communicate security remediation tasks
Ability to maintain productivity and professionalism in remote or distributed team environments
Demonstrated passion for continuous security learning and staying updated on industry threats and trends

Company

Lumin Digital

twittertwitter
company-logo
Lumin Digital provides cloud-native digital banking solutions, helping financial institutions enhance user experience and engagement.
dateFounded in 2016
location
San Ramon, California, USA
people-size201-500 employees
web-link
https://lumindigital.com

Funding

Current Stage
Growth Stage
Total Funding
$260M
Key Investors
Light Street Capital,NewView Capital,Partners Group
2026-01-02Undisclosed· $25M
2025-03-26Undisclosed· $75M
2024-12-02Private Equity· $160M

Leadership Team

leader-logo
Jeff Chambers
Founder & CEO
linkedin
leader-logo
Lisa Sutton
Chief Talent Officer
linkedin

Recent News

PR Newswire
Lumin Digital Chosen by Neighbors Federal Credit Union to Provide Effortless Digital Banking Experience
2025-12-17
PR Newswire
Lumin Digital Launches AI Tools to Power Smarter Digital Banking Experiences
2025-12-16
PR Newswire
Renowned Leadership Expert Simon Sinek to Appear in Exclusive Opening Session at Lumin Digital's Client Conference, Lumination
2025-11-19
Company data provided by crunchbase