Application Security Engineer
About The Position
Hi, I'm Dave Dowe, Senior Manager of Security Engineering at Jane. I've been here for two years, and I lead the team that keeps our platform secure - from incident response to cloud security to the operations that hold it all together. Security Operations is the frontline of our security program. We're the first point of contact when teams have questions, the ones monitoring alerts and triaging incidents, and the people on-call when things go sideways. This role matters because security doesn't work if it feels like an obstacle. It only works when engineering and security teams trust each other, communicate openly, and solve problems together. You'll also experiment with AI and automation to reduce toil and amplify your impact. That's what I'm looking for in this hire - someone who sees security as partnership, not gatekeeping. Someone who can own a security service desk, monitor and action alerts across our tooling stack, and participate in on-call rotations while genuinely caring about the teams they're supporting. You'll work with clarity and empathy, build trust through follow-through, and help make security feel like something teams want to engage with. This is an L2 role - you'll own defined security operations tasks independently while collaborating closely with our Enterprise Security and Cloud Security engineers.
Requirements
- 2 - 4 years in security operations, SOC analyst, incident response, or similar hands-on security role, with a track record of taking ownership and growing your skills.
- Hands-on experience writing detection rules, investigating alerts, and tuning for signal over noise - you know how to distinguish a real threat from alert fatigue.
- Security fundamentals including attack patterns, MITRE ATT&CK framework, incident response procedures, and log analysis.
- Basic cloud security understanding with hands-on experience in AWS, Azure, or GCP - you understand IAM, security groups, logging, and basic cloud security posture.
- Strong written and verbal communication skills, plus genuine collaboration skills that build trust, deliver challenging findings constructively, and make people want to work with you on security.
Responsibilities
- Reduce operational toil by experimenting with AI and automation in security workflows, building simple tools that make your team's work easier, and sharing what you learn - wins and failures alike - so the whole team gets better.
- Build trust across engineering and cloud teams by responding to security requests with genuine care, clear communication, and reliable follow-through - so teams come to you early because they know you'll listen and help.
- Own alert triage and incident response with thoroughness and accuracy, ensuring security findings are investigated quickly, escalated at the right time to the right people, and documented clearly for the whole team to learn from.
- Keep our security tools healthy and tuned by maintaining configurations, updating runbooks based on real experience, and proactively identifying issues before they create alert fatigue or miss real threats.
- Collaborate in incident response by managing on-call shifts smoothly, resolving what you can independently, escalating thoughtfully, and treating every incident as a chance to learn and improve how we work together.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
