Senior Application Security Engineer

Full Timesenior

Redlands, CAPosted 6 weeks ago

Role Overview

Esri Canada is hiring a Senior Application Security Engineer. This is a full-time role in Redlands. Part of Esri Canada's Qa hiring. Full responsibilities, required qualifications, and the apply link are listed in the description below.

Salary Context

Salary is not disclosed in this posting. Market median for Senior-level Qa roles is $101k-$140k (based on 53 comparable listings). Many employers share specifics during the interview process or after an initial screen.

Resume Keywords to Include

Make sure these keywords appear in your resume to improve ATS scoring

PythonJavaScriptTypeScriptJavaBashShellSQLAWS

Job Description

Overview

As someone experienced with securing a wide variety of applications, you are looking for an opportunity to use your skills in an innovative and technology-oriented environment. As an Application Security Engineer at Esri, you will fill a critical role in helping secure Esri's intellectual property and sensitive data against a variety of complex threats with support from all levels of leadership. Our Application Security team collaborates closely with the application development, DevSecOps, and information security departments to design security into our applications up front, perform application layer security testing, and assist developers with vulnerability remediation. We value collaboration, pragmatic security, and continuous improvement. We welcome you to join Esri, where you can make a real difference every day!

Responsibilities

Design, operate, and continuously improve application security testing capabilities and pipelines
Assess application risks and recommend mitigations
Perform application layer security reviews of the code developed by our application teams, across multiple languages and frameworks used internally
Assist with application layer penetration testing to identify potential issues
Provide application security guidance and mentorship to development teams as needed

Requirements

5+ years of experience in application security, including manual and automated code reviews, manual penetration testing, dynamic application security testing, and false positive analysis of code, pen test, and open-source security findings
Demonstrated experience determining risk based on analysis/findings using a consistent risk management framework
Proven ability to develop automations/applications using Python, Typescript, Java, or PowerShell
Experience creating and maintaining reusable GitHub Actions workflows, with expertise in all aspects of GitHub workflow management
Hands-on experience working in a DevSecOps environment built on Kubernetes with a strong knowledge of Kubernetes security best practices
Ability to read and analyze code for security and design vulnerabilities
Solid understanding of common web application security standards (HTTP, OAuth, OIDC, REST, and more)
Experience working with cloud platforms, specifically AWS and Azure
Willingness to learn new skills and enhance workflows using various AI tools
US citizenship and willingness and ability to maintain a US Security Clearance
Bachelor’s degree in computer science or related field

Recommended Qualifications

Proficiency in any of the following languages: C#, Python, Bash/Shell, PowerShell, JavaScript, SQL, Java
Familiarity with AI-assisted coding practices, including tools such as GitHub Copilot, and an understanding of the security implications and risks introduced by AI-generated code
Practical experience interpreting findings from application pen testing, code scanning and open-source scanners to determine the risk and collaborate with developers to resolve them
Understanding of layer 2-7 communication protocols, common encoding and encryption schemes, and algorithms

#LI-TM1

#LI-onsite

Total Rewards

Esri’s competitive total rewards strategy includes industry-leading health and welfare benefits: medical, dental, vision, basic and supplemental life insurance for employees (and their families), 401(k) and profit-sharing programs, minimum accrual of 80 hours of vacation leave, twelve paid holidays throughout the calendar year, and opportunities for personal and professional growth. Base salary is one component of our total rewards strategy. Compensation decisions and the base range for this role take into account many factors including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs.

A reasonable estimate of the base salary range is

$93,600—$157,560 USD

The Company

At Esri, diversity is more than just a word on a map. When employees of different experiences, perspectives, backgrounds, and cultures come together, we are more innovative and ultimately a better place to work. We believe in having a diverse workforce that is unified under our mission of creating positive global change. We understand that diversity, equity, and inclusion is not a destination but an ongoing process. We are committed to the continuation of learning, growing, and changing our workplace so every employee can contribute to their life’s best work. Our commitment to these principles extends to the global communities we serve by creating positive change with GIS technology. For more information on Esri’s Racial Equity and Social Justice initiatives, please visit our website here.

If you don’t meet all of the preferred qualifications for this position, we encourage you to still apply!

Esri is an equal opportunity employer (EOE) and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. If you need reasonable accommodation for any part of the employment process, please email askcareers@esri.com and let us know the nature of your request and your contact information. Please note that only those inquiries concerning a request for reasonable accommodation will be responded to from this e-mail address.

Esri Privacy Esri takes our responsibility to protect your privacy seriously. We are committed to respecting your privacy by providing transparency in how we acquire and use your information, giving you control of your information and preferences, and holding ourselves to the highest national and international standards, including CCPA and GDPR compliance.

About Esri Canada

Esri Canada

esri.ca

QaOn-site

All open roles at Esri Canada Visit website

Frequently Asked Questions

How do I apply for the Senior Application Security Engineer position at Esri Canada?

Use the Apply button above to submit your application directly to Esri Canada. Most applications take less than 5 minutes if your resume and contact details are ready, and you'll be routed to the employer's official application system to finish.

Where is the Senior Application Security Engineer position at Esri Canada located?

This position is based in Redlands. Esri Canada has not indicated remote or hybrid options for this role, so candidates should plan for on-site work.

What does a Senior Application Security Engineer at Esri Canada earn?

Esri Canada has not disclosed a salary range in this posting. Many employers share specifics later in the interview process; you can also ask during a recruiter screen if compensation transparency is important to you.

When was the Senior Application Security Engineer role at Esri Canada posted?

This role was posted on May 14, 2026 (45 days ago). It's still listed as actively hiring; we re-confirm openings against the source system multiple times per day and remove closed roles.

How much experience does the Senior Application Security Engineer role at Esri Canada require?

This is a senior-level position. Most senior roles call for 5+ years of directly relevant experience. Esri Canada lists their specific requirements in the description below, so review the must-have qualifications closely before applying.

Browse Remote QA Engineer Jobs →