Software Security Engineer

• The Application Security team, operating under the Chief Information Security Officer (CISO) organization, is responsible for protecting enterprise information assets in alignment with business objectives and corporate policies. As part of the broader Cybersecurity Services function, the team leads the development, implementation, and continuous improvement of the Secure Software Development Program.
• This program encompasses the creation and enforcement of software security policies and best practices, delivery of security architecture guidance, execution of application security testing (including scanning and penetration testing), and education of development teams on secure coding principles.
• The Software Security Engineer plays a critical role in strengthening the software development lifecycle by enhancing security controls, reducing vulnerabilities, and improving the overall security posture of production environments., * Contribute to the design, implementation, and evolution of a Secure Software Development Program
• Develop and enforce software security policies, standards, and best practices
• Provide security architecture guidance to engineering and product teams
• Perform application security testing, including static and dynamic analysis, software composition analysis, and penetration testing
• Partner with development teams to integrate security into the software development lifecycle (SDLC)
• Identify, analyze, and remediate vulnerabilities and security defects in applications
• Interpret large and complex datasets related to application security and translate findings into actionable insights
• Support and enhance secure coding practices through training, documentation, and code review processes
• Assist in threat modeling, risk assessments, and security requirements definition
• Implement and scale application security tools, services, and controls across the organization

• Prior experience in Software Security Assurance or Application Security
• Strong collaboration skills with the ability to balance security requirements with development innovation
• Experience working with application security tools, including:

• Static Application Security Testing (SAST)
• Software Composition Analysis (SCA)
• Secrets management solutions

• Solid application development or engineering background
• Strong understanding of:

• Common application vulnerabilities and attack vectors
• Secure coding practices and remediation strategies
• Secure software design principles

Technical Skills & Experience

• Experience integrating security practices into agile development environments
• Familiarity with industry standards and frameworks such as:

• OWASP
• NIST
• CIS

• Hands-on experience with static analysis tools, threat modeling, or similar technologies (minimum of 2 years preferred)
• Experience implementing and scaling enterprise-grade application security tools and controls
• Proficiency in:

• Code review processes
• Threat modeling
• Security requirements analysis
• Architectural risk assessment

Key Competencies

• Strong analytical and problem-solving skills
• Ability to interpret and synthesize complex security data
• Effective communication and stakeholder collaboration
• Continuous improvement mindset focused on evolving security capabilities
• ilities.

Pay Rate Range: $60.00/hour to $75.00/hour. A benefits package may be available to eligible employees.

Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRateds Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Everforth Apex uses a virtual recruiter as part of the application process. Click for more details. By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Everforth Apex and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at