Senior Application Security Engineer

Secure Onit's SaaS applications, APIs, and AI capabilities.

• •Onit is looking for an Application Security Engineer to secure our SaaS applications, APIs, and emerging AI capabilities.
• •Key Responsibilities Lead security reviews for application architecture and system design Evaluate designs for authentication & authorization models, data access patterns, API exposure, and trust boundaries Conduct pre-production / go-live security assessments Determine whether a feature is safe to launch and what risks must be mitigated vs accepted Act as a security approver / advisor for production releases Requirements Strong understanding of security architecture and design Experience with OAuth, JWT, SAML, and other security protocols Knowledge of penetration testing and vulnerability assessment Familiarity with SOC 2, GDPR, HIPAA, and other compliance standards Ability to work closely with engineering and product teams