Application Security Engineer - Expert

Description

This employer will not sponsor applicants for the following work visas: F-1 student, H-1B worker, O-1 worker, TN worker, E-3 worker. Applicants must be currently authorized to work in the United States on a full-time basis.

###### HYBRID ROLE 4 days in office ###############

About the Role

We are seeking a highly skilled and experienced Application Security Engineer, Expert to join our team. In this role, you will lead efforts to secure our applications throughout the software development lifecycle, working closely with engineering, product, DevOps, and SOC teams to identify and mitigate security risks.

Key Responsibilities

• Design, implement, and maintain network security solutions at the application layer
• Collaborate with developers and operations analysts to improve security posture.
• Lead incident response efforts related to application-level threats.
• Stay current with emerging threats, vulnerabilities, and security technologies.
• Mentor junior engineers and promote a security-first culture across the organization.
• Plan and execute product delivery within an Agile framework

Basic Qualifications

• 3 Years securing applications in AWS, Azure, or Google Cloud Platform.

• 3 Years designing and implementing web application security
• 3 Years Experience in one or more of the following programming languages and formats: Python, JSON, XML, or HTML.
• Bachelor's Degree

Preferred Skills

• Relevant certifications (e.g., Sec+, Net+, CISSP, CCSK) are a plus.
• Experience with secure SDLC and DevSecOps practices.
• Understand Risk management: identify, communicate, resolve, NIST RMF
• Critical thinking and problem-solving skills with groups of people
• Able to translate business and technical requirements into engineering solutions
• Works well on teams by building trust through rapport, communication, and peer support
• Service heart: eager to understand how our contributions impact overall business objectives
• Can Do Attitude: mental and emotional fortitude; dedicated to delighting stakeholders
• Forward Thinking: Thought leader able to identify emerging technological solutions

• Experience with the following web application technologies (OWASP Top 10/API Top 10, WAFs, API protections, bot protections, DDoS defense, CDNs, DNS).
• Experience with web security platforms like: Akamai, Google Cloud Armor, Terraform, Etc.

#Hybrid

#LI-SG1

#LI-BM1

Exempt Status: (Yes = not eligible for overtime pay) (No = eligible for overtime pay)
Yes

Workplace Type:
Office

Our Approach to Office Workplace Type

Certain positions outside our branch network may be eligible for a flexible work arrangement. We're combining the best of both worlds: in-office and work from home. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. Remote roles will also have the opportunity to come together in our offices for moments that matter. Specific work arrangements will be provided by the hiring team.

Huntington is an Equal Opportunity Employer.

Tobacco-Free Hiring Practice: Visit Huntington's Career Web Site for more details.

Note to Agency Recruiters: Huntington Bank will not pay a fee for any placement resulting from the receipt of an unsolicited resume. All unsolicited resumes sent to any Huntington Bank colleagues, directly or indirectly, will be considered Huntington Bank property. Recruiting agencies must have a valid, written and fully executed Master Service Agreement and Statement of Work for consideration.