Cybersecurity Engineer | Application Security | Hybrid | Local to Chicago/Peoria/Dallas Only

Overview

On Site
Depends on Experience
Contract - Independent
Contract - W2
Contract - 24 Month(s)
25% Travel
Able to Provide Sponsorship

Skills

.NET
Amazon Web Services
Application Development
CISSP
Cisco Certifications
Collaboration
Computer Science
Cyber Security
Defect Management
Documentation
Information Security
Java
JavaScript
Management
Microsoft Azure
OWASP
Penetration Testing
Python
SANS
Scripting
Security Engineering
Security QA
Software Security

Job Details

We are seeking a Cybersecurity Engineer to support ongoing application security initiatives across multiple development teams. The candidate will partner with engineering teams to help identify vulnerabilities, recommend remediation strategies, and guide teams through secure development lifecycle processes.

Responsibilities

Security Defect Management

  • Analyze and validate security vulnerabilities identified via CodeQL, Rapid7, penetration testing, bug bounty programs, etc.

  • Explain vulnerabilities, risks, and remediation actions to engineering teams.

Engineering Consulting

  • Act as a security advisor to software engineers, architects, and product owners.

  • Provide context-aware guidance on secure architecture decisions and documentation.

  • Support teams in implementing new features securely and remediating vulnerabilities.

Tool Enablement

  • Set up and monitor security tooling at the repository/application level (CodeQL, Rapid7, etc.).

  • Ensure proper automation and integration according to security processes.

Security Testing & Onboarding

  • Coordinate security testing efforts (penetration tests, security assurance assessments).

  • Manage resulting findings through the defect management process.

Team Interaction

  • Work directly with application development teams as their dedicated security engineer.

  • Collaborate with the larger security engineering team to align on standards and processes.

Required Qualifications

  • Bachelor’s in Computer Science or related field with 8+ years of Information Security experience
    OR Master’s degree with 6+ years of experience.

  • Application Security expertise — understanding of vulnerabilities and remediation (OWASP, CWE/CVE, SANS 25).

  • Knowledge of security processes including:

    • Enterprise security architecture

    • Threat modeling

    • Vulnerability assessment

    • Risk analysis

    • Identity & Access Management

    • Defense in depth

    • SDLC processes

    • API security

    • SCA / SAST / DAST

  • Cloud security experience (Azure or AWS).

  • Professional certifications preferred (CISSP, CCSP, GWAPT, GWEB, AWS Security, etc.).

  • Development background in Java, Python, .NET, JavaScript, or similar.

  • Experience with automation and scripting.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.