Application Security Engineer – DevSecOps

About the Role

We are seeking an Application Security Engineer - DevSecOps with strong experience securing modern CI/CD pipelines and cloud-based applications. This role sits at the intersection of security engineering, DevOps, and software development, focusing on embedding security directly into automated build and deployment processes.

This is a hands-on role for someone who enjoys working closely with engineering teams to identify, automate, and remediate application security risks — not a policy-only or audit-focused position.

What You’ll Do

• Integrate and maintain application security controls within CI/CD pipelines
• Support and enhance SAST, SCA, and DAST tooling (e.g., Fortify, Sonatype, or similar platforms)
• Analyze application code and dependencies to identify security vulnerabilities
• Partner with development teams to triage findings and drive effective remediation
• Troubleshoot and resolve security scanning issues within automated pipelines
• Automate security tooling and workflows using PowerShell
• Conduct application security assessments and provide actionable remediation guidance
• Promote secure coding practices and contribute to developer security enablement
• Deliver security awareness and training sessions to technical teams as needed

Required Qualifications

• 3+ years of experience in Application Security, Security Engineering, or DevSecOps roles
• Hands-on experience integrating security tooling into CI/CD pipelines
• Working knowledge of SAST, SCA, and DAST tools
• Experience supporting or developing .NET applications with secure coding practices
• Solid understanding of CI/CD concepts, automation, and pipeline troubleshooting
• Experience automating tooling and workflows using PowerShell
• Familiarity with Azure cloud environments and services
• Knowledge of common application security risks, including the OWASP Top 10
• Ability to work independently in a fast-paced, collaborative environment

Preferred Qualifications

• Bachelor’s degree in Computer Science or a related technical field
• Experience working in cloud-native or DevOps-driven environments
• Strong analytical and problem-solving skills
• Clear verbal and written communication skills
• Ability to manage priorities and meet deadlines
• Passion for automation and building security into software delivery processes

Why Join Us

• Security is embedded into engineering workflows — not treated as an afterthought
• Strong collaboration with DevOps and development teams
• Opportunity to influence how applications are built, deployed, and secured
• Focus on practical, engineering-driven security solutions