Question
Full-time
2-5

Senior Application Security Engineer

4/19/2026

The Senior Application Security Engineer will integrate security best practices into the SDLC and collaborate with R&D and DevOps teams to ensure secure product design. Responsibilities include managing WAF, conducting code reviews, enforcing API security, and mentoring engineering teams on secure coding.

Working Hours

40 hours/week

Company Size

201-500 employees

Language

English

Visa Sponsorship

No

About The Company
Bright Insights is dedicated to delivering advanced AI eCommerce Insights to brands, retailers, and marketplaces, from any source, covering any category, at any time. Our highly actionable, scalable, and precise data offerings empower strategic decision-making, across pricing, sales performance, retail media, and marketplace intelligence. With personalized support and seamless integration, we enable growth in the dynamic e-commerce landscape. Leveraging Bright Data's trusted reputation and advanced AI technologies, we deliver accurate insights from any source, at any time. Our customizable analytics dashboards allow competitive pricing tailored to specific needs, backed by our first-hand access to data infrastructure. Join 20,000+ businesses benefiting from Bright Data's technology leadership and unlock your competitive edge with Bright Insights.
About the Role

Bright Data is seeking a highly experienced Senior Application Security Engineer to join our Information Security team.

In this pivotal role, you'll be instrumental in integrating security best practices throughout our entire Software Development Life Cycle (SDLC), collaborating closely with R&D, DevOps, and Product teams.

 In addition, you will connect security with development, guiding engineering teams to create secure applications by integrating security best practices into our Software Development Life Cycle (SDLC).


Responsibilities

  • Drive the integration of security controls and best practices in the software development lifecycle.
  • Lead secure product design, embedding security principles from the beginning stages.
  • Conduct security code reviews and reduce vulnerabilities alongside R&D teams.
  • Manage and optimize the Web Application Firewall (WAF) for threat protection.
  • Collaborate on penetration test remediation, ensuring effective resolutions.
  • Implement and enforce API security standards.
  • Establish and maintain development guidelines for secure practices.
  • Support and enhance the bug bounty program.
  • Provide guidance and mentorship on secure coding and application security

Requirements

  • 4+ years in application security, ideally within a Product/SaaS/Security company.
  • Software development experience with strong programming knowledge, especially in JS and ideally PHP, TypeScript, Rust, C#, Python, React, Swift, or Java.
  • Expertise in secure coding principles and common vulnerabilities (OWASP Top 10), and exploitation techniques.
  • Experience with DAST/SAST tools and security integration in CI/CD pipelines.
  • Strong understanding of AWS cloud security principles.

Preferred:

  • Bachelor's in Computer Science, Information Security, or related field.
  • Cyber security certifications.
  • Experience with Kubernetes and container security.
  • Familiarity with GitLab and CVS.
Key Skills
Application SecuritySDLCSecure CodingOWASP Top 10WAFAPI SecurityDASTSASTCI/CDAWSJavaScriptPHPTypeScriptRustPythonKubernetes
Categories
TechnologySecurity & SafetySoftwareEngineering
Apply Now

Please let Bright Data know you found this job on InterviewPal. This helps us grow!

Apply Now
Prepare for Your Interview

We scan and aggregate real interview questions reported by candidates across thousands of companies. This role already has a tailored question set waiting for you.

Elevate your application

Generate a resume, cover letter, or prepare with our AI mock interviewer tailored to this job's requirements.

Tailor my ResumeWrite my cover letterFind Your Cover Letter