Application Security Engineer

Benefits

Additional Information

Thank you for your interest in joining Solventum. Solventum is a new healthcare company with a long legacy of solving big challenges that improve lives and help healthcare professionals perform at their best. At Solventum, people are at the heart of every innovation we pursue. Guided by empathy, insight, and clinical intelligence, we collaborate with the best minds in healthcare to address our customers' toughest challenges. While we continue updating the Solventum Careers Page and applicant materials, some documents may still reflect legacy branding. Please note that all listed roles are Solventum positions, and our Privacy Policy: https://www.solventum.com/en-us/home/legal/website-privacy-statement/applicant-privacy/ applies to any personal information you submit. As it was with 3M, at Solventum all qualified applicants will receive consideration for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Job Description: Application Security Engineer (Solventum) 3M Health Care is now Solventum At Solventum, we enable better, smarter, safer healthcare to improve lives. As a new company with a long legacy of creating breakthrough solutions for our customers' toughest challenges, we pioneer game-changing innovations at the intersection of health, material and data science that change patients' lives for the better while enabling healthcare professionals to perform at their best. Because people, and their wellbeing, are at the heart of every scientific advancement we pursue. We partner closely with the brightest minds in healthcare to ensure that every solution we create melds the latest technology with compassion and empathy. Because at Solventum, we never stop solving for you. The Impact You'll Make in this Role Joining a team of cybersecurity professionals motivated to secure Solventum's healthcare information systems and the personal health information of our clients and their patients. Operating and enhancing application security tool environments. Authoring automation scripts for reoccurring tasks (Python preferred) Setup and execute authenticated and unauthenticated dynamic application security testing (DAST) scans against web applications and APIs using approved tools. Manage scan scheduling, configuration, and coverage across application security tool environments. Tune scanning profiles to reduce false positives and improve detection accuracy. Ensure DAST scanning aligns with release cycles and risk-based scanning requirements Validate DAST findings to confirm exploitability and business impact. Categorize vulnerabilities using industry standards (e.g., OWASP Top 10). Prioritize findings based on risk, application criticality, and exposure. Eliminate false positives and duplicate findings prior to developer handoff. Partner with development and platform teams to explain DAST findings and remediation expectations. Track remediation progress and verify fixes through re‑scanning or targeted validation. Maintain accurate vulnerability records in enterprise tracking systems. Escalate overdue or high‑risk vulnerabilities in accordance with policy. Working with application teams to validate that software applications meet security guidelines and compliance standards such as HIPPA, SOC II, GDPR, NIST 800-53, FedRAMP, etc. Building solutions that collect and present vulnerability and compliance data to Solventum's leadership. Your Skills and Expertise To set you up for success in this role from day one, Solventum requires (at a minimum) the following qualifications: Bachelor's Degree & 7 years of experience application security 3 years' experience administering, running, and analyzing DAST tools Knowledgeable with AWS or Azure cloud environments Familiarity with best practice software security requirements in industry standard compliance programs (NIST, HITRUST, FedRAMP, etc.) Experience developing or testing RESTful APIs with an understanding of Postman and/or Swagger files Ability to obtain and maintain a Public Trust clearance Additional qualifications that could help you succeed even further in this role include: Experience administering Qualys or Tenable vulnerability management and application security modules Experience in working across multiple teams and disciplines Strong attention to detail and analytical skills. Risk-based prioritization and sound judgment. Work location: Remote - US Only Travel: No travel required Relocation Assistance: Not authorized Must be legally authorized to work in country of employment without sponsorship for employment visa status (e.g., H1B status). Supporting Your Well-being Solventum offers many programs to help you live your best life - both physically and financially. To ensure competitive pay and benefits, Solventum regularly benchmarks with other companies that are comparable in size and scope. Onboarding Requirement: To

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Solventum (3M Healthcare)? Share your experience