Application Security Engineer

Job Expired

Full Job Description

Job Description
Information Security is looking for people who understand or want to grow their career in information security and are dissatisfied with state of the art. We are building a team of people who are pragmatic and visionary at the same time: who can take strong executive support and a strategic commitment to transformation and run with that to build something better and smarter.

The Application Security Engineer is responsible for ensuring that source code and other services are free from vulnerabilities. The Engineer will work closely with other senior Security staff and Application Owners in IT, to identify, assess, prioritize, and assist with the remediation of vulnerabilities within source code or other services.

The Application Security Engineer will be able to collaborate with internal AAP team members to enhance knowledge of application security. The role will be analyzing applications from a security perspective; examining vulnerabilities and externally reported bugs to help AAP development teams remediate them.

A successful candidate will be comfortable with helping to define security requirements with managers and developers, incorporating feedback, and identifying potential problems before they become real problems.


Responsibilities include:

  • Performing application security assessments
  • Working closely with developers to prioritize remediation of identified vulnerabilities
  • Conducting research as needed
  • Assisting with security training and outreach to internal development teams
  • Documenting security guidance and standards
  • Participating in specials projects

We are seeking the following qualifications:

  • Bachelor’s degree in Computer Science or equivalent experience
  • 1 to 2-years’ experience in software development or similar related position. Ability to maintain efficiency and positive attitude in the face of challenging and competing deadlines
  • Ability to operate in an Agile based environment where Daily Standups, Sprint Planning, Sprint Review, backlog grooming and Sprint Retrospective are held
  • Strong communication, documentation, and collaboration skills
  • Highly organized, great attention to detail and ‘hands on’ work style
  • Knowledge of design, development, testing and support of critical enterprise-level systems in a cross-platform environment
  • Able to work independently with strong critical thinking, decision making, troubleshooting and problem-solving skills
  • Ability to seek out help and guidance when something is no clear
  • Strong work ethic and internal drive for results
  • Familiarity with implementing security solutions at the product/service level
  • An understanding of messaging, web services, REST and Lambda applications
  • Familiarity with application security assessment and review methodologies
  • Knowledge of frameworks that assist the delivery of security solutions

More Information

  • This job has expired!

13th Anniversary Global InfoSec Awards for 2025 now open for early bird packages! Winners Announced during RSAC 2025...

X