Application Security Engineer

We are seeking an Application Security Engineer to join a growing Cybersecurity team focused on securing applications, cloud platforms, and development processes. This role will partner closely with software engineering, DevOps, and IT teams to integrate security throughout the SDLC and ensure compliance with cybersecurity frameworks and best practices.

Responsibilities include conducting application security assessments, code reviews, API testing, threat modeling, and penetration testing; implementing security tools within CI/CD pipelines (SAST, DAST, SCA, IaC, container security); supporting secure cloud and containerized architectures; monitoring vulnerabilities and security incidents; and helping drive security awareness and compliance initiatives.

Qualified candidates should have: • 5+ years of Information Security experience with 3+ years focused on Application Security or DevSecOps • Strong knowledge of OWASP, secure SDLC methodologies, and application security testing tools such as Burp Suite, Fortify, Checkmarx, Veracode, or ZAP • Experience securing AWS or Azure cloud environments, Kubernetes, and containerized applications • Strong communication and collaboration skills

Bachelor’s degree in a technical field required. Relevant certifications such as CISSP, CSSLP, OSCP, CEH, or GIAC are preferred. International travel may be required.