Application Security Engineer

About this role

Overview

We are looking for an Application Security Engineer to help secure Anomaly's products, platforms, and development lifecycle. In this role, you will partner closely with Engineering, Infrastructure, and Product teams to identify and mitigate security risks across our applications and cloud environments while enabling rapid product innovation.

You will be responsible for embedding security into every stage of the software development lifecycle, helping engineers build secure systems by default. This includes performing security reviews, threat modeling new features, improving detection and remediation processes, and developing scalable security tooling and automation.

The Application Security Engineer reports to the Chief Technology Officer and works closely with engineering leadership to ensure our products and infrastructure meet the security expectations of healthcare providers, partners, and regulators.

This position is ideal for someone who enjoys hands-on technical security work, thrives in a fast-moving startup environment, and wants to have a direct impact on the security posture of AI-powered healthcare products.

Responsibilities

• Embed security throughout the software development lifecycle, from architecture and design reviews through deployment and monitoring
• Perform application security assessments, threat modeling, and code reviews for new and existing products
• Develop and maintain security tooling, automation, and guardrails to help engineers identify and remediate vulnerabilities early
• Manage vulnerability detection and remediation processes across applications, APIs, cloud infrastructure, and third-party dependencies
• Partner with engineering teams to improve secure coding practices and security awareness
• Design and implement security controls for cloud-native environments running on AWS
• Evaluate and improve authentication, authorization, secrets management, and data protection mechanisms across our products
• Build a...