Application Security Engineer (Middle) ID71671

AgileEngine

$90K — $120K *
Jacksonville, FL 32210In-Person
Finance & Insurance
Less than 5 years of experience
Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • Authorization to work for any employer in the US without sponsorship.
  • 3-5 years of combined software engineering and AppSec/DevSecOps experience.
  • Strong coding skills in Python for scripting and automation.
  • Ability to read and understand Java source code.
  • Familiarity with modern CI/CD orchestration tools.
  • Experience with vulnerability scoring frameworks.
  • Capable of working independently with minimal supervision.

Responsibilities

  • Write and maintain scripts for integrating SAST, DAST, and SCA into CI/CD pipelines.
  • Tune security scanning tools to minimize false positives and deliver reliable alerts.
  • Code and deploy automated hardened baselines and secure coding standards.
  • Collaborate with development teams to provide actionable remediation guidance.
  • Integrate security practices throughout the development lifecycle.

Benefits

  • Professional growth opportunities including mentorship and personalized growth roadmaps.
  • Competitive compensation with additional budgets for education, fitness, and team activities.
  • Engagement in exciting projects with Fortune 500 and top product companies.
  • Flexibility in work schedule with remote and office options.
Full Job Description
Job Description
We are looking for a Middle Application Security Engineer to execute hands-on DevSecOps work across CI/CD pipeline security integration, vulnerability management tooling, and automated hardened baseline deployment within a large-scale financial services security program. You will write Python scripts to integrate SAST, DAST, and SCA gates into CI/CD pipelines, tune scanning tools to reduce false positives, and provide code-level remediation guidance to Java and Python development teams. The role requires 3-5 years of combined software engineering and AppSec experience.

WHAT YOU WILL DO

- Write and maintain the scripts necessary to integrate security gates such as SAST, DAST, and SCA into CI/CD pipelines;

- Continuously tune and configure existing security scanning tools to eliminate false positives and deliver high-confidence alerts;

- Assist in coding and deploying automated hardened baselines and secure coding patterns;

- Work directly with product development teams to provide actionable, code-level remediation guidance in Java and Python.

MUST HAVES

- You must be authorized to work for ANY employer in the US (e.g., Green card holders, TN visa holders, GC EAD, H4 EAD, U4U with EAD), as we are unable to sponsor or take over employment visa sponsorship at this time;

- 3-5 years of commercial experience blending software engineering and DevSecOps/AppSec;

- Solid coding proficiency in Python for automation and scripting;

- Ability to comfortably read and navigate Java source code;

- Working knowledge of modern CI/CD orchestration tools;

- Practical experience interacting with vulnerability scoring frameworks;

- Ability to operate with minimal supervision on day-to-day execution and reliably complete complex scripting and integration tasks;

- Upper-intermediate English level.

NICE TO HAVES

- Hands-on experience with CNAPP or ASPM platforms such as Wiz;

- Basic understanding of application threat modeling.

PERKS AND BENEFITS

- Professional growth: Mentorship, TechTalks, and personalized growth roadmaps.

- Competitive compensation: USD-based pay with education, fitness, and team activity budgets.

- Exciting projects: Modern solutions with Fortune 500 and top product companies.

- Flextime: Flexible schedule with remote and office options.
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at AgileEngine

More Finance & Insurance Jobs

Find similar Application Security Engineer (Middle) ID71671 jobs:

NationwideJacksonville, FL