Application Security Engineer, Sr.

Thank you for considering a career at Ensemble Health Partners! Ensemble Health Partners is a leading provider of technology-enabled revenue cycle management solutions for health systems, including hospitals and affiliated physician groups. They offer end-to-end revenue cycle solutions as well as a comprehensive suite of point solutions to clients across the country. Ensemble keeps communities healthy by keeping hospitals healthy. We recognize that healthcare requires a human touch, and we believe that every touch should be meaningful. This is why our people are the most important part of who we are. By empowering them to challenge the status quo, we know they will be the difference! O.N.E Purpose: • Customer Obsession: Consistently provide exceptional experiences for our clients, patients, and colleagues by understanding their needs and exceeding their expectations. • Embracing New Ideas: Continuously innovate by embracing emerging technology and fostering a culture of creativity and experimentation. • Striving for Excellence: Execute at a high level by demonstrating our “Best in KLAS” Ensemble Difference Principles and consistently delivering outstanding results. The Opportunity: The Senior Application Security Engineer, Cybersecurity will serve as a key member of the Cybersecurity Technical Assessments team, providing advanced expertise in secure software development practices and application tooling. This role is responsible for managing and optimizing the application security tool stack—including SAST, DAST, SCA, IaC scanning, and secret detection—and ensuring its effective integration into the software development lifecycle (SDLC). The Senior Application Security Engineer will collaborate with development, engineering, and product teams to identify, triage, and remediate vulnerabilities, while also mentoring junior engineers and contributing to the evolution of secure development practices across the organization. Job Competencies Technical Proficiency: • Deep expertise in application security tooling (SAST, DAST, SCA, IaC scanning, secret scanning) • Strong understanding of secure coding principles and SDLC integration • Proficiency in scripting and programing languages (e.g., .NET, Python, JavaScript) Analytical Skills: • Ability to analyze and validate security findings, prioritize risk, and guide remediation • Strong attention to detail in identifying false positives and systemic security gaps Communication Skills: • Ability to clearly communicate technical issues to both technical and non-technical stakeholders • Skilled in writing documentation, reports, and presenting findings to cross-functional teams Team Collaboration: • Experience working in Agile/DevOps environments with cross-functional teams • Ability to mentor junior engineers and lead small-scale security initiatives • Ability to work effectively with a remotely located team spanning multiple time zones Continuous Learning: • Commitment to staying current with evolving security tools, threats, and best practices • Active pursuit of professional development and relevant certifications Essential Job Functions • Manage and optimize application security tools (SAST, DAST, SCA, IaC, secret scanning) and ensure effective integration into CI/CD pipelines and the SDLC lifecycle • Analyze source code and infrastructure-as-code for security vulnerabilities and provide actionable remediation guidance • Validate and triage findings from security tools, removing false positives and ensuring accurate issue tracking • Create and manage remediation tickets (e.g., Aha! Ideas, ServiceNow Requests), ensuring vulnerabilities are prioritized, assigned, and tracked to resolution • Collaborate with development and engineering teams to validate remediation efforts and confirm closure of security issues • Participate in the risk management process by documenting, reviewing, and maintaining risk exceptions for unresolved or accepted vulnerabilities • Work with risk owners and business stakeholders to ensure appropriate compensating controls are in place and documented. • Lead secure code reviews and contribute to threat modeling and design discussions for high-risk applications • Mentor junior engineers and provide technical guidance on secure development practices • Contribute to the development and refinement of secure coding standards, policies, and procedures • Develop and maintain dashboards and reports that communicate application security posture, remediation progress, and risk trends to leadership • Identify recurring security issues and propose systemic improvements to reduce future risk • Lead efforts to evaluate, pilot, and implement new application security tools and integrations that enhance automation and coverage • Continuously refine scanning configurations and policies to improve signal-to-noise ratio in findings • Stay informed on emerging threats, vulnerabilities, and industry trends, and recommend improvements to tooling and proc

Back to blog

Data Entry Question and Answer

$150 $49

Remote Question and Answer

$150 $49

Virtual Assistant Question and Answer

$150 $49

Content Moderator Question and Answer

$150 $49

Customer Service Question and Answer

$150 $49

Video Game Tester Question and Answer

$150 $49

Other Jobs To Apply

No other job posts for this day.