Applications Security Engineer

Описание вакансии

*PLEASE NOTE: We are not able to offer sponsorship for this position, now or in the future. Candidates who can work a hybrid schedule (Tues-Thurs in-office) in one of our offices (Charlotte, NC; Seattle, WA; Denver, CO) are preferred.*

The Position

LendingTree is seeking an Applications Security Engineer to join our security team with a primary focus on edge security and externally facing application protections. This role centers on supporting critical InfoSec programs, including SaaS Security Posture Management (SSPM), web application firewall (WAF) engineering, and remediation of findings from external security scanning tools.

The Application Security Engineer will serve as a subject matter expert for web-edge controls, particularly Cloudflare, while partnering with internal teams to triage alerts, drive remediation efforts, and maintain the security posture of LendingTree’s web-facing applications and cloud services.

Success in this role requires strong technical depth in application-layer defenses, the ability to manage and operationalize security tooling, and clear communication with both technical and non-technical stakeholders.

KeyResponsibilities

Web Application Firewall (WAF) Subject Matter Expert

Serve as the Application Security program’s primary authority on web application firewall technologies, with deep expertise in Cloudflare. Partner with engineering and security teams to design, implement, tune, and maintain WAF rules to protect web-facing applications.

Cloud Compliance & External Scanning Remediation

As an extension of the AppSec program, this role will continuously monitor and assess the effectiveness of our cloud compliance and security tools, such as our SaaS security posture management platform, and use those insights to drive measurable improvements to our overall cloud security posture.

Fraud Program Support

Support the Fraud Program by providing research assistance to identify and model anomalous patterns, with the goal of using those models to improve automated defenses.

Collaboration & Communication

Work closely with internal and external stakeholders across engineering, product, and security teams. Translate complex security findings and recommendations into clear, actionable guidance for non-technical audiences.

This role is ideal for someone who thrives at the intersection of application security, cloud security, and collaboration—and who enjoys taking ownership of critical security programs that protect the business at scale.

RequiredSkills

• Strong foundational knowledge of application security principles, with an emphasis on protecting web-facing and edge-exposed applications.
• Hands-on experience with Web Application Firewall (WAF) technologies, including rule creation, tuning, alert triage, and false-positive reduction; Cloudflare and Azure Front Door experience strongly preferred.
• Working knowledge of SaaS Security Posture Management (SSPM) concepts and platforms, including alert review, access posture validation, and remediation workflows.
• Experience supporting or operating security monitoring and remediation programs, such as fraud detection, abuse prevention, or incident-driven security initiatives.
• Familiarity with external security scanning tools (e.g., DAST, cloud posture scanners, or web exposure scanning) and the ability to manage findings through remediation and closure.
• Understanding of cloud security and compliance fundamentals, including shared responsibility models and common cloud risk patterns.
• Ability to prioritize, track, and coordinate remediation efforts across multiple teams and security programs.
• Strong analytical and troubleshooting skills, with the ability to investigate security findings and recommend practical, risk-based solutions.
• Excellent written and verbal communication skills, with demonstrated ability to translate technical security issues into clear, actionable guidance for non-technical stakeholders.
• Proven ability to collaborate effectively with engineering, product, and security teams.

Why Join Us

By joining our team, you’ll have the unique opportunity to work in a dynamic fintech environment, collaborating with talented professionals while playing a pivotal role in ensuring compliance excellence. If you’re passionate about combining regulatory expertise with creative problem-solving and enjoy working in a fast-paced innovation-driven industry, this position is for you.

ABOUT LENDINGTREE

LendingTree is the nation’s leading online lending marketplace. We connect consumers with multiple lenders so they can easily compare options and find the right fit — from mortgages and personal loans to credit, savings, and insurance products. 

Our founder, Doug Lebda, started LendingTree in 1996 after his own frustrating house-hunting experience. What began as a simple idea to make loan shopping easier has grown into a platform that empowers millions of people to make smarter financial decisions every day.

What else you should know:

• We’re a publicly traded company (NASDAQ: TREE).
• We’ve welcomed several other companies into the LendingTree family to expand our reach and capabilities.
• We’ve built the LendingTree app and My LendingTree dashboard to give consumers tools to manage and monitor their financial health.
• We’re also committed to giving back — through philanthropic programs, volunteer opportunities, and partnerships that strengthen the communities where we live and work.

Compensation:

• Base salary: $100,000-$110,000 (base pay offered may vary depending on location, internal factors, job-related knowledge, and experience.)
• Additional: Annual performance-based bonus
• Benefits: Medical, dental, vision insurance, and 401(k) matching

OUR CULTURE

We’re a collaborative, entrepreneurial team that values curiosity, creativity, and getting things done together. Our teammates are some of the brightest, most driven people you’ll meet — and we celebrate innovation, inclusion, and ownership. At LendingTree, you’ll find an inclusive culture where diverse perspectives make us stronger. We believe in working hard and supporting one another — with the flexibility and trust that help you thrive both personally and professionally.

We’re proud to offer generous benefits, wellness programs, and time-off policies designed to help you recharge, stay healthy, and bring your best self to work every day. And yes — we still have fun doing it (our “GSD – Get Stuff Done” award is a fan favorite!)

Come grow with us, make an impact, and be part of a company that truly cares about its people and its community.

*LendingTree is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate based on race, color, religion (or creed), gender, gender expression, age, national origin, disability, marital status, sexual orientation, or military status.*

https://www.lendingtree.com/legal/privacy-notice-for-lendingtree-job-applicants-and-employees-who-are-california-residents/