Staff Security Engineer

Job Summary

Bringing extensive experience in application security and security operations, the full-time remote Staff Security Engineer will partner with engineering teams to enhance secure development practices, drive detection and response strategies, and manage vulnerabilities across Apollo's products and APIs.

Key responsibilities

• Partner with engineering teams for threat modeling and security reviews on new features and architecture changes
• Establish and evolve Apollo's application security program, including SAST/DAST tooling and secure coding standards
• Implement and maintain adherence to SOC 2 and other cloud security frameworks while improving monitoring and alerting systems

Required qualifications

• 6+ years in security engineering with a focus on both application security and security operations
• Strong foundation in AppSec practices, including threat modeling, SAST/DAST, and secure SDLC
• Deep expertise in detection and response within cloud-native environments
• Proven ability to build and automate security tooling, such as SIEM or AppSec tools
• Strong knowledge of SOC 2, ISO 27001, or similar security frameworks