Application Security Engineer Id70123
Role details
Job location
Tech stack
Job description
Job DescriptionAgileEngine is an Inc. **** company that creates award-winning software for Fortune 500 brands and trailblazing startups across 17+ industries. We rank among the leaders in areas such as application development and AI/ML, and our people-first culture has earned us multiple Best Place to Work awards.WHY JOIN USIf you're looking for a place to grow, make an impact, and work with people who care, we'd love to meet you!ABOUT THE ROLEWe are looking for aMiddle Application Security Engineerto execute hands?on DevSecOps work across CI/CD pipeline security integration, vulnerability management tooling, and automated hardened baseline deployment within a large?scale financial services security program. You will write Python scripts to integrate SAST, DAST, and SCA gates into CI/CD pipelines, tune scanning tools to reduce false positives, and provide code?level remediation guidance to Java and Python development teams. The role requires 3-5 years of combined software engineering and AppSec experience.WHAT YOU WILL DOWrite and maintain the scripts necessary to integrate security gates (SAST, DAST, SCA) seamlessly into the CI/CD pipeline;Continuously tune and configure existing security scanning tools to eliminate false positives and deliver high?confidence alerts;Assist in coding and deploying automated hardened baselines and secure coding patterns;Work directly with product development teams to provide actionable, code-level remediation guidance in Java and Python.MUST HAVES3-5 years of commercial experience blending software engineering and DevSecOps/AppSec;Solid coding proficiency inPythonfor automation and scripting;Working knowledge of modern CI/CD orchestration tools and practical experience interacting with vulnerability scoring frameworks;Ability to operate with minimal supervision on day-to-day execution, reliably completing complex scripting and integration tasks;Upper-intermediate English level.NICE TO HAVESAbility to comfortably read and navigate Java source code;Hands?on experience with specific CNAPP or ASPM platforms (e.g., Wiz);Basic understanding of application threat modeling.PERKS AND BENEFITSProfessional growth:Mentorship, TechTalks, and personalized growth roadmaps.Competitive compensation:USD-based pay with education, fitness, and team activity budgets.Exciting projects:Modern solutions with Fortune 500 and top product companies.Flextime:Flexible schedule with remote and office options.Meet Our Recruitment ProcessApplication ? Coding Challenge ? Video Interview ? Technical Interview or Hiring Manager Interview. Each step helps us understand your skills and overall fit. If it's a match, you'll receive an offer.#J-*****-Ljbffr
Requirements
3-5 years of commercial experience blending software engineering and DevSecOps/AppSec; Solid coding proficiency in Python for automation and scripting; Working knowledge of modern CI/CD orchestration tools and practical experience interacting with vulnerability scoring frameworks; Ability to operate with minimal supervision on day-to-day execution, reliably completing complex scripting and integration tasks; Upper-intermediate English level. NICE TO HAVES Ability to comfortably read and navigate Java source code; Hands?on experience with specific CNAPP or ASPM platforms (e.g., Wiz); Basic understanding of application threat modeling.
Benefits & conditions
Professional growth: Mentorship, TechTalks, and personalized growth roadmaps. Competitive compensation: USD-based pay with education, fitness, and team activity budgets. Exciting projects: Modern solutions with Fortune 500 and top product companies. Flextime: Flexible schedule with remote and office options. Meet Our Recruitment Process Application ? Coding Challenge ? Video Interview ? Technical Interview or Hiring Manager Interview. Each step helps us understand your skills and overall fit. If it's a match, you'll receive an offer. #J-*****-Ljbffr