Middle Application Security Engineer

AgileEngine, LLC
West Palm Beach, United States of America
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

West Palm Beach, United States of America

Tech stack

Java
Computer Programming
Continuous Integration
Python
Secure Coding
Software Engineering
Software Vulnerability Management
Scripting (Bash/Python/Go/Ruby)
Software Security
Tenable Nessus
Devsecops
Static Application Security Testing
Dynamic Application Security Testing

Job description

We are looking for a Middle Application Security Engineer to execute hands-on DevSecOps work across CI/CD pipeline security integration, vulnerability management tooling, and automated hardened baseline deployment within a large-scale financial services security program. You will write Python scripts to integrate SAST, DAST, and SCA gates into CI/CD pipelines, tune scanning tools to reduce false positives, and provide code-level remediation guidance to Java and Python development teams. The role requires 3-5 years of combined software engineering and AppSec experience.

WHAT YOU WILL DO

  • Write and maintain the scripts necessary to integrate security gates such as SAST, DAST, and SCA into CI/CD pipelines;

  • Continuously tune and configure existing security scanning tools to eliminate false positives and deliver high-confidence alerts;

  • Assist in coding and deploying automated hardened baselines and secure coding patterns;

  • Work directly with product development teams to provide actionable, code-level remediation guidance in Java and Python.

Requirements

If you're looking for a place to grow, make an impact, and work with people who care, we'd love to meet you!, You must be authorized to work for ANY employer in the US (e.g., s, TN visa holders, U4U with EAD), as we are unable to sponsor or take over employment visa sponsorship at this time;

  • 3-5 years of commercial experience blending software engineering and DevSecOps/AppSec;

  • Solid coding proficiency in Python for automation and scripting;

  • Ability to comfortably read and navigate Java source code;

  • Working knowledge of modern CI/CD orchestration tools;

  • Practical experience interacting with vulnerability scoring frameworks;

  • Ability to operate with minimal supervision on day-to-day execution and reliably complete complex scripting and integration tasks;

  • Upper-intermediate English level.

NICE TO HAVES

  • Hands-on experience with CNAPP or ASPM platforms such as Wiz;

  • Basic understanding of application threat modeling.

Benefits & conditions

Competitive compensation: USD-based pay with education, fitness, and team activity budgets.

  • Exciting projects: Modern solutions with Fortune 500 and top product companies.

About the company

AgileEngine is an Inc. 5000 company that creates award-winning software for Fortune 500 brands and trailblazing startups across 17+ industries. We rank among the leaders in areas like application development and AI/ML, and our people-first culture has earned us multiple Best Place to Work awards.

Apply for this position