29 application security engineer jobs at 22 companies in Centennial, CO
🚀PromotedHiringCafe
Founding Backend / Infra Engineer
Cupertino, CA, US
$160k-$300k/yrOn-SiteFull Time
HiringCafe: Building a 100× better job search engine to take on Indeed and LinkedIn.
Own the crawlers, pipelines, and infrastructure powering a real-time job search engine. Strong Node.js and Python fundamentals; bonus points for security and reverse-engineering chops.
VertaforeNYSE: ROP: Provides cloud-based software solutions for the insurance industry.
7+ YOE7+ years in application/product/cloud security; Bachelor's in relevant field or equivalent experience; hands-on experience with threat modeling, secure SDLC, vulnerability management, CI/CD security, cloud (AWS/Azure), API and AI security; strong communication skills.
True Anomaly: Develops autonomous spacecraft and software for space security missions.
5+ YOE5+ years in application security; experience with NIST 800-171/800-53, FedRAMP or CMMC; code in Python/Elixir/C++/JS; cloud security (Azure/AWS/GCP); DoD clearance eligibility.
SciTec: Provides advanced remote sensing and missile defense technology solutions.
2+ YOEBachelor’s degree + 2+ years in cybersecurity or software development; 2+ years in application security; ability to obtain DoD/DoE Secret clearance; strong communication and problem-solving; DoD 8140.01 readiness.
Irvine or Newport Beach or Denver or Seattle or San Francisco
$185k-$220k/yrHybridFull Time
Compa: AI-powered compensation intelligence platform for enterprise teams.
5+ YOE5+ years software engineering experience, application and cloud security reviews, threat modeling, secure SDLC, cloud-native and IAM knowledge, strong systems thinking and communication skills.
IbottaNYSE: IBTA: Provides a cash-back rewards and performance marketing platform.
4+ YOE4+ years in security engineering or application security; proficiency with Python/Go/Java, Docker/Kubernetes, AWS/GCP, Terraform, CI/CD and SAST/DAST/SCA tools; experience with threat modeling, bug bounty programs, and on-call incident response.
New York City or Denver or Dallas or Miami or United States
$169k-$210k/yrRemoteFull Time
Rightway: Healthcare navigation and transparent pharmacy benefit management services.
8+ YOE8+ years security engineering experience across application and cloud security, strong AWS security and IaC knowledge, experience in regulated environments (healthcare), ability to read backend code (Ruby, Node.js, Java), and experience with AI/LLM security guidance.
AWS, Terraform, CI/CD, SAML 2.0, OAuth, OIDC, Ruby, Node.js, Java, OWASP Top 10 for LLM Applications, OWASP GenAI Security Project
Lead Technical Application Engineer - Nuclear Steam Turbine Controls Upgrades
Longmont, Colorado, United States
$108k-$180k/yrOnsiteFull Time
GE VernovaNYSE: GEV: Designs and services technologies for global power generation and electrification.
5+ YOELead evaluation of nuclear steam turbine controls upgrades; bachelor in engineering; 5+ years turbine controls; 2+ years nuclear; travel up to 15%.
Litera: AI-powered document and workflow software for legal professionals.
3+ YOE3+ years cybersecurity experience with 1–2 years focused on AI/ML or application security; knowledge of LLM risks, threat modeling, SAST/DAST, secrets management, CI/CD and cloud security; strong communication skills.
University of Colorado: Public research university providing higher education and healthcare services.
2+ YOESenior developer for identity and access management; design, develop, and support secure, multi‑system web apps with identity/authentication integrations.
Jefferson County: Local government providing essential public services to Jefferson County residents.
3+ YOE3+ years hands-on experience securing or supporting IT systems/networks/applications/cloud; Bachelor's in Computer Science/IT/Cybersecurity preferred; OSCP/OSI/GIAC/CISSP/CISM/CIPM or equivalent; strong security tooling, scripting (Python/PowerShell), and framework knowledge.
Windows, Linux, Python, PowerShell, Active EDR, SIEM
Western UnionNYSE: WU: Facilitates global money transfers and cross-border digital payments.
7+ YOEBachelor's preferred, 7+ years in technology/information/application security; expert with SIEM/EDR, OWASP/SANS flaws, incident response, forensics, automation, cloud and web/mobile security; available for occasional on-call; US work authorization required.
SIEM, EDR, OWASP, SANS, Web Application Firewalls (WAF), SSL/TLS
Sierra Nevada Corporation: Develops mission-critical aerospace and national security technology systems.
8+ YOEActive Top Secret/SCI clearance, Bachelor's degree or equivalent experience, 8+ years IT security experience, 5+ years Linux application administration, GitLab/GitHub and JFrog Artifactory administration, DISA STIG/NIST/ISO27001 experience.
Security Engineer II, DCO Engineer (TS/SCI, Onsite)
Aurora, Colorado, United States
$89k-$148k/yrOnsiteFull Time
Deloitte: Provides professional audit, consulting, advisory, and tax services.
5+ YOEBachelor's degree, active TS/SCI clearance, legally authorized to work in the US without sponsorship, 5+ years technical cyber-defense experience across at least two areas (containers/virtualization, Gigamon, data storage/analysis toolsets, Linux/Windows, network infrastructure, security applications).
Docker, Kubernetes, VMware, AWS, Gigamon, NFS, Ceph, Elastic Search, Logstash, Kibana, Splunk, Red Hat, Kali, Windows, SOAR, SIEM, IDS
Swanson Rink: Engineering consultancy for airport systems and data center infrastructure.
1+ MgmtBachelor's in Electrical Engineering (ABET), professional engineer (PE) registration, ≥1 year supervisory experience, electrical power and lighting design skills, construction observation, code application, ability to pass background/security screenings, U.S. work authorization.
Pittsburgh or Strongsville or Denver or Phoenix or Birmingham or Dallas or Cleveland or Lakewood
$86k-$158k/yrOnsiteFull Time
PNC Financial ServicesNYSE: PNC: Provides banking, lending, and investment services to customers.
3+ YOE3+ years of software development experience, proficiency in Java and/or .NET, application security knowledge (OWASP Top 10), vulnerability triage/remediation, SDLC security, strong communication skills.
Java, .NET, OWASP Top 10, Interactive Application Security Testing (IAST)
CACI InternationalNYSE: CACI: Provides information technology and engineering services for government agencies.
5+ YOEBachelor's degree in a technical discipline, 5+ years development experience, proficiency with Java and/or Python, experience with web applications and databases, ability to obtain Top Secret/SCI clearance; Agile and secure-coding experience.
Denver or São Paulo or Colombia or Argentina or Brazil or Costa Rica or United States
RemoteContract
AspenView: Provides nearshore software engineering and digital transformation services.
12+ YOE5+ Mgmt12+ years in cybersecurity with 5+ years leading security architecture or engineering; CISSP required; bachelor's degree required (master's preferred); deep experience across cloud, application, data, and infrastructure security and security frameworks.
7+ YOEBachelor's in CS/Electrical or related and 7 years' experience as an applications/software engineer; strong Java/J2EE and multi-threaded design skills; experience with Ext JS/Angular, Oracle/WebLogic/Tomcat, JIRA, ServiceNow, FlexDeploy; focus on security, scalability, and UI design.