Application Security Engineer

Insulet

Multiple Locations
Secure software development lifecycle implementation
Automated application security testing in ci/cd
Hands-on experience with sast, dast, sca tools
Insulet is dedicated to improving patient lives through innovative wearable medical technology and values hiring motivated individuals who exceed customer expectations

Job Summary

  • Insulet is dedicated to improving patient lives through innovative wearable medical technology and values hiring motivated individuals who exceed customer expectations.
  • The role involves scaling and maturing application security and DevSecOps capabilities by embedding security into the software development lifecycle and automating security testing.
  • Candidates will collaborate with multiple teams to ensure security is integrated throughout product development and support regulatory compliance in a fast-paced environment.

Matching Summary

Insulet is dedicated to improving patient lives through innovative wearable medical technology and values hiring motivated individuals who exceed customer expectations.

Skills & Requirements

Must-have

  • Secure Software Development Lifecycle implementation
  • Automated application security testing in CI/CD
  • Hands-on experience with SAST, DAST, SCA tools
  • Threat modeling and secure design reviews
  • Integration of security testing into development workflows
  • Familiarity with OWASP Top 10 and CWE Top 25 vulnerabilities

Nice-to-have

  • Collaboration with cross-functional teams
  • Security awareness and training development
  • Experience with vulnerability disclosure programs
  • Strong communication skills for technical and non-technical audiences
  • Research on emerging security technologies
  • Working knowledge of MITRE ATT&CK framework

Key Requirements

  • Bachelor’s degree in information security or computer science or equivalent experience
  • 3–5 years cybersecurity experience focused on application or product security
  • Hands-on experience with security tooling such as Checkmarx, Snyk, ZAP, Dependency-Track
  • Ability to identify and explain OWASP Top 10 and CWE Top 25 vulnerabilities
  • Experience integrating security testing into CI/CD pipelines
  • Familiarity with vulnerability disclosure and bug bounty programs
  • Working knowledge of at least one programming language
  • Strong written and verbal communication skills

Work Rights

Not specified

Tailored Resume

Cover Letter