Job Overview
Location
Remote
Job Type
Full-time
Category
Cybersecurity
Date Posted
April 24, 2026
Full Job Description
đź“‹ Description
- • As a Cybersecurity Application Security Engineer at Nelnet, you will play a critical role in safeguarding the company’s applications, services, and AI-driven components from design through production, ensuring secure and resilient systems at speed.
- • Day to day, you will conduct manual source code reviews, perform SAST/DAST scanning, expand the Security Champions program, develop automated source code review processes, collaborate with product teams to embed secure SDLC practices, and deliver detailed vulnerability reports to stakeholders.
- • You will join a mission-driven team at Nelnet, a diversified company with over 40 years of service in education, finance, and technology, committed to creating opportunities for people where they live, learn, and work, and united by a culture of support, innovation, and integrity.
- • In this role, you will deepen your expertise in AI/LLM security, mature application security programs through automation and developer enablement, and grow as a trusted security advisor who influences engineering practices and risk communication across the organization.
🎯 Requirements
- • 2–4 years of hands-on application security experience
- • Experience integrating security tooling and automated checks into CI/CD pipelines
- • Familiarity with OWASP Top 10 and web testing methodologies
- • Strong manual code review experience in at least one major language (Java, JavaScript/TypeScript, C#, PHP, etc.)
- • Solid threat-modeling expertise (STRIDE, attack trees, misuse cases) for traditional systems and AI/LLM-integrated features
- • Proficiency with SAST, SCA, DAST, web and mobile pentesting, container scanners, secrets-detection tools, and ideally AI-security scanning platforms
- • Scripting/automation skills (Python, Bash, Node) for building custom tooling and automating manual processes
- • Good understanding of AI/LLM attack surfaces including prompt injection, insecure output handling, model-data leakage, and RAG vulnerabilities
- • Strong knowledge of web/API security concepts (session management, secure storage, transport security)
- • Excellent organizational, presentation, verbal, and written communication skills
- • Ability to effectively assess and communicate risks and appropriate levels of urgency to management and engineering staff
🏖️ Benefits
- • Medical, dental, and vision coverage
- • HSA and FSA accounts
- • Generous earned time off
- • 401(k) with student loan repayment assistance
- • Life insurance and AD&D insurance
- • Employee assistance program
- • Employee stock purchase program
- • Tuition reimbursement
- • Performance-based incentive pay
- • Short- and long-term disability
- • Robust wellness program
Skills & Technologies
About Nelnet, Inc.
Nelnet, Inc. is a diversified financial services and technology company headquartered in Lincoln, Nebraska. Originally founded in 1978 as a student-loan servicer, it now administers federal and private education loans, provides payment processing, tuition management, and campus commerce solutions for K-12 and higher-education institutions, and operates communications, renewable energy, and asset management businesses. The company leverages data and software platforms to support schools, lenders, borrowers, and commercial partners across the United States.
Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.
Newsletter
Weekly remote jobs and featured talent.
No spam. Only curated remote roles and product updates. You can unsubscribe anytime.
Similar Opportunities
Akaysha Energy Pty Ltd
2 months ago
Arctic Wolf Networks, Inc.
1 month ago
X-Bow Systems Inc.
21 days ago