Job Overview
Location
Indiana, USA
Job Type
Full-time
Category
Security Engineer
Date Posted
February 22, 2026
Full Job Description
đź“‹ Description
- • Are you a security-first builder with a passion for crafting robust, secure software? Material Security is seeking a highly skilled and motivated Senior Application Security Engineer to join our dynamic, remote-first team. At Material Security, our commitment to security is paramount, setting an exceptionally high bar for our own application security practices. This role is ideal for an individual who thrives on not just identifying vulnerabilities but actively developing code to eliminate entire classes of bugs, fundamentally strengthening our product and systems.
- • As a Senior AppSec Engineer, you will be empowered with a significant degree of autonomy to shape and influence our security culture. Your primary focus will be on partnering closely with our engineering teams to ensure that we are building products and systems with security ingrained from the ground up. This collaborative approach means you'll be a trusted advisor, guiding architectural decisions and development practices to maintain the highest security standards.
- • A key aspect of this role involves building and enhancing internal security tooling. You will develop innovative automation solutions designed to detect and block abuse patterns, streamline complex security workflows, and empower engineers to move with speed and confidence. This includes implementing features like Just-In-Time (JIT) access for privileged operations and sophisticated dependency scanning to secure our software supply chain.
- • You will be instrumental in leading our application security strategy, taking ownership of the end-to-end security posture of the Material application. This encompasses the entire lifecycle, from initial design and comprehensive threat modeling to secure deployment and ongoing monitoring. Your expertise will be crucial in identifying potential risks and implementing proactive measures to mitigate them.
- • A significant part of your contribution will involve deep-dive security audits and rigorous code reviews for both new and existing product features. You will meticulously examine codebases, identify potential weaknesses, and collaborate with developers to implement secure coding practices, ensuring that security is not an afterthought but an integral part of the development process.
- • Beyond application-level security, you will partner with our infrastructure team to fortify our cloud environments, with a preference for Google Cloud Platform (GCP), and enhance the security of our Kubernetes deployments. This involves implementing best practices for container security, network segmentation, and access control to create a resilient and secure infrastructure.
- • You will play a vital role in securing our dependency supply chain, working directly with engineering teams to manage and mitigate risks associated with third-party libraries and open-source components. This includes establishing robust processes for vulnerability assessment and remediation.
- • The ideal candidate will possess a systems-thinking mindset, with a deep understanding of identity and access management principles (e.g., SAML, OAuth, IAM) and the ability to architect solutions that protect sensitive data both at rest and in transit.
- • We value pragmatism and the ability to strike a balance between security imperatives and business velocity. You will be expected to propose creative, effective solutions that reduce risk without hindering development progress, fostering a culture of security enablement.
- • Versatility is key. We encourage our engineers to be adaptable and willing to explore adjacent areas to get the job done, whether that involves diving into data analysis in BigQuery, learning about emerging threats like prompt injection, or contributing to other critical security initiatives.
- • This is an opportunity to make a significant impact on the security of a cutting-edge security company, working with a talented and passionate team in a fully remote environment. If you are a builder at heart, eager to tackle complex security challenges and build scalable security infrastructure, we encourage you to apply.
🎯 Requirements
- • 5+ years of experience in application security, with a proven track record of writing and reviewing code.
- • Proficiency in multiple major coding languages, with a strong preference for JavaScript/TypeScript.
- • Practical experience securing cloud environments (GCP preferred) and a solid understanding of Kubernetes security.
- • Deep understanding of identity and access management (SAML, OAuth, IAM) and data protection principles.
- • Demonstrated ability to balance security risks with business velocity and propose pragmatic solutions.
- • Willingness to engage in adjacent security domains as needed.
🏖️ Benefits
- • Competitive salary range: $170,000 - $220,000 per year.
- • Fully remote-first work environment.
- • Opportunity to shape security culture and strategy at a leading security company.
- • Collaborative and innovative engineering culture.
- • Comprehensive health, dental, and vision insurance.
- • Generous paid time off and holidays.
- • Professional development and learning opportunities.
Skills & Technologies
JavaScript
TypeScript
GCP
Kubernetes
REST
Senior
Remote
About Material Security Inc.
Material Security is a cloud-native security company focused on protecting sensitive data. They offer a data security platform that provides comprehensive visibility, control, and protection for data across various cloud applications and services. Their solution aims to address the challenges of data sprawl and the increasing sophistication of data security threats. Material Security's platform enables organizations to understand where their sensitive data resides, who has access to it, and how it is being used, thereby preventing data breaches and ensuring compliance with data privacy regulations. They serve businesses looking to enhance their data security posture in the modern cloud environment.
Get more remote jobs like this
Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.
Newsletter
Weekly remote jobs and featured talent.
No spam. Only curated remote roles and product updates. You can unsubscribe anytime.
