Jobs · Information Technology

Application Security Engineer

Solventum · Linden, PA · 1 wk ago
RemoteRemoteInformation Technology$126k–$173k/yrFull-time

About the role

Joining a team of cybersecurity professionals motivated to secure Solventum's healthcare information systems and the personal health information of our clients and their patients. Operating and enhancing application security tool environments.

Responsibilities

  • Authoring automation scripts for reoccurring tasks (Python preferred)
  • Setup and execute authenticated and unauthenticated dynamic application security testing (DAST) scans against web applications and APIs using approved tools.
  • Manage scan scheduling, configuration, and coverage across application security tool environments.
  • Tune scanning profiles to reduce false positives and improve detection accuracy.
  • Ensure DAST scanning aligns with release cycles and risk-based scanning requirements.
  • Validate DAST findings to confirm exploitability and business impact.
  • Categorize vulnerabilities using industry standards (e.g., OWASP Top 10).
  • Prioritize findings based on risk, application criticality, and exposure.
  • Eliminate false positives and duplicate findings prior to developer handoff.
  • Partner with development and platform teams to explain DAST findings and remediation expectations.
  • Track remediation progress and verify fixes through re-scanning or targeted validation.
  • Maintain accurate vulnerability records in enterprise tracking systems.
  • Escalate overdue or high-risk vulnerabilities in accordance with policy.
  • Build solutions that collect and present vulnerability and compliance data to Solventum’s leadership.

Requirements

  • Bachelor’s Degree & 7 years of experience application security
  • 3 years' experience administering, running, and analyzing DAST tools
  • Knowledgeable with AWS or Azure cloud environments
  • Familiarity with best practice software security requirements in industry standard compliance programs (NIST, HITRUST, FedRAMP, etc.)
  • Experience developing or testing RESTful APIs with an understanding of Postman and/or Swagger files

Qualifications

  • Experience administering Qualys or Tenable vulnerability management and application security modules
  • Experience in working across multiple teams and disciplines
  • Strong attention to detail and analytical skills
  • Risk-based prioritization and sound judgment

Benefits

Supporting Your Well-being
Solventum offers many programs to help you live your best life – both physically and financially. To ensure competitive pay and benefits, Solventum regularly benchmarks with other companies that are comparable in size and scope. Onboarding Requirement: To improve the onboarding experience, you will have an opportunity to meet with your manager and other new employees as part of the Solventum new employee orientation. As a result, new employees hired for this position will be required to travel to a designated company location for on-site onboarding during their initial days of employment. Travel arrangements and related expenses will be coordinated and paid for by the company in accordance with its travel policy.

Pay

The specific compensation offered to a candidate may vary based on factors including, but not limited to, the candidate’s relevant knowledge, training, skills, work location, and/or experience. In addition, this position may be eligible for a range of benefits (e.g., Medical, Dental & Vision, Health Savings Accounts, Health Care & Dependent Care Flexible Spending Accounts, Disability Benefits, Life Insurance, Voluntary Benefits, Paid Absences and Retirement Benefits, etc.).

Schedule

Remote – US Only

Benefits

Additional information is available at: https://www.solventum.com/en-us/home/our-company/careers/#Total-Rewards

Corporate Policies

Corporate policies, procedures and security standards are complied with while performing assigned duties.

Equal Opportunity Employer

Solventum is an equal opportunity employer. Solventum will not discriminate against any applicant for employment on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or veteran status.

Similar jobs

Application Security Engineer

Purpose Brands, LLCSeattle, WA· 3 wk ago
Information Technology$120k–$140k/yrapply on purposebrands.wd503.myworkdayjobs.com

Application Security Engineer

HarbourVest PartnersBoston, MA· 6 days ago
Information Technology$145k–$155k/yrapply on harbourvest.wd5.myworkdayjobs.com