CrawlJobs Logo

Application Security Engineer II

haeaus.com Logo

Hyundai AutoEver America

Location Icon

Location:
United States , Irvine

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

120000.00 - 170000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

The Application Security Engineer II plays a key role in strengthening application security across the software development lifecycle. This role sits within the Cyber Defense organization and is responsible for defining and documenting Secure SDLC requirements, developing and managing a hardened cloud container image repository, and embedding automated security testing into CI/CD pipelines. The role requires hands-on technical capability combined with the ability to define standards, influence development teams, and ensure vulnerabilities are identified and remediated before final build and release, in alignment with agreed remediation timelines.

Job Responsibility:

  • Define, document, and maintain Secure SDLC policies, standards, and procedures covering secure design and coding expectations, security testing requirements, build, release, and deployment security controls
  • Partner with Engineering, Platform, and AppDev teams to ensure Secure SDLC requirements are practical and scalable, integrated into existing development workflows, and clearly communicated and understood
  • Utilizing the standardized Risk Operation processes, support governance activities, including reviews, exceptions, and continuous improvement of SDLC security requirements
  • Develop, manage, and maintain a hardened cloud container image repository for application workloads
  • Define baseline security requirements for container images, including base image selection and hardening, patch and dependency management, and runtime security considerations
  • Partner with platform and application teams to drive adoption of approved images and patterns
  • Ensure container images are scanned, updated, and versioned in alignment with security standards
  • Define and implement automated security testing within CI/CD pipelines, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Open-source and dependency vulnerability scanning
  • Tune tools and rules to balance coverage, accuracy, and developer experience
  • Ensure security testing is integrated early in the pipeline to enable remediation prior to final build and deployment
  • Partner with engineering and application teams to ensure findings from SAST, DAST, and open-source scans are incorporated into the Risk Operation function
  • Clearly triaged and prioritized findings
  • Assigned appropriate ownership
  • Remediated within agreed SLAs and timelines
  • Track remediation progress and escalate systemic or repeated issues
  • Validate remediation and support secure release decisions
  • Act as a trusted security partner to development and other relevant teams
  • Provide guidance on secure coding practices, vulnerability remediation, and threat patterns
  • Support application security reviews, threat modeling, and design discussions as needed
  • Contribute to continuous improvement of application security tooling, processes, and metrics

Requirements:

  • 5+ years of experience in Application Security, Product Security, or Secure Software Engineering with hands-on experience defining and implementing Secure SDLC requirements
  • Experience integrating SAST, DAST, and open-source vulnerability scanning into CI/CD pipelines
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer science or a related field
  • Practical experience securing containerized applications and managing hardened container images
  • Strong understanding of common application vulnerabilities (e.g., OWASP Top 10), modern CI/CD workflows and DevOps practices and secure coding and build processes
  • Strong troubleshooting and collaboration skills
  • Excellent stakeholder management and communication skills
  • Proficient in English for effective communication and coordination

Nice to have:

  • Hands on experience with industry leading Application Security tools for SAST, DAST and Opensource scanning
  • Experience with container platforms and registries (e.g., Docker, Kubernetes)
  • Working in cloud-native application environments
  • Working knowledge of application threat modeling techniques is a plus
  • Masters degree in Cybersecurity, Information Technology, Computer Science or a related discipline is preferred
  • Industry-recognized credentials such as CISSP, CISM, or Application Security specific certifications (CSSLP, GWAPT, etc) are highly desirable
  • Bi-lingual in English and Korean language proficiency is preferred to support global coordination and communication

Additional Information:

Job Posted:
February 04, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
Hyundai AutoEver America - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Application Security Engineer II

Security Engineer II

The Security Engineer II is an individual contributor who will participate and m...
Location
Location
United States , Fountain Valley
Salary
Salary:
83940.00 - 120032.00 USD / Year
haeaus.com Logo
Hyundai AutoEver America
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s Degree in Computer Science, Information Systems, or related field, or equivalent experience
  • Minimum 3 years of IT relevant experience or equivalent combination of experience plus at least 1 year of experience performing Security Engineering/Planning/Operations, preferably with SIEM or vulnerability management
  • Experience in medium to complex computing environments, with advanced knowledge in security technologies and services
  • Hands-on experience with at least two or more of the following Enterprise Security Technologies: Network Intrusion Prevention/Detection
  • Virtual Private Networks
  • SSL, IPSec, and Site-to-Site
  • Enterprise-Class Stateful Inspection Firewalls
  • Network Access Controls in context to Identity Management
  • Windows Server OS & Desktop OS
  • Network Packet Inspection
Job Responsibility
Job Responsibility
  • Design, build, test, and deploy new security technologies, which include the development of the operational manual and run books
  • Provides technical security operations engineering services to support and update existing security systems and works to automate processes related to security implementations, monitoring, and enforcement
  • Investigates, recommends, evaluates, deploys, and integrates operational security tools (e.g., SIEM, vulnerability scanning) and techniques to enhance protection of corporate assets and infrastructure
  • Participate in technical risk assessments and security exposure analyses of systems, networks, and business applications
  • Analyzes network security elements and overall network security architectural designs to ensure secure and optimal system and network performance and cost-effectiveness
  • Oversees the installation, configuration, and supportive processes of security technologies
  • Participate in or lead the Incident Response activities
  • Interacts with internal and external clients on security operations requirements, identifies security processes, and develops strategies/solutions to security issues
  • Keeps fully abreast of trends and changing technologies as they relate to IT, Network Engineering, and Information Security fields
  • Lead or assist in periodic or ad-hoc security reports that provide relevant situational awareness to our senior stakeholders
  • Fulltime
Read More
Arrow Right

Application Security Engineer II

In this role, you will support Rackspace's application security program by imple...
Location
Location
India
Salary
Salary:
Not provided
rackspace.com Logo
Rackspace
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2-4 years in the information security field
  • Experience working with application security, security testing, or DevSecOps practices
  • Working knowledge of the SDLC, security concepts, and vulnerability assessment methodologies
  • Hands-on experience with or understanding of programming and scripting languages including one or more of the following: Python, Java, Node.js, Go, Ruby, PHP
  • databases such as SQL
  • and related tools such as Github, Gitlab, Jenkins, and CircleCI
  • Understanding of common vulnerabilities, remediation approaches, and industry-standard classification schemes (CVE, CWE, CVSS, OWASP Top 10)
  • Familiarity with relevant compliance regulations, such as PCI-DSS, ISO 27001, SOC 2, or HIPAA
  • Passion for security and eagerness to learn about new technologies and emerging security vulnerabilities
  • Strong communication skills with the ability to work collaboratively across teams
Job Responsibility
Job Responsibility
  • Execute application security testing using both automated tools and manual testing techniques on web applications, APIs, containers, and other software components
  • Configure, maintain, and operate SAST, DAST, and other application security testing tools
  • Analyze and triage security findings, documenting clear remediation guidance for development teams
  • Support the vulnerability reporting process and track findings through to resolution
  • Assist with triage and validation of external vulnerability disclosures and bug bounty reports
  • Contribute to the development and documentation of application security processes and standards
  • Participate in security code reviews and threat modeling exercises
  • Help track and report metrics for application security program health
  • Collaborate with development and DevOps teams to integrate security into CI/CD pipelines
  • Stay current with application security trends, tools, and best practices
  • Fulltime
Read More
Arrow Right

Senior Application Security Engineer II

As a Senior Application Security Engineer, you will drive security initiatives t...
Location
Location
United States , Seattle
Salary
Salary:
152850.00 - 244560.00 USD / Year
axon.com Logo
Axon
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proficiency in programming languages like Python, Java, Go, or C#
  • Strong experience with modern development workflows, including CI/CD pipelines and Git-based version control
  • In-depth understanding of vulnerabilities and secure coding practices
  • Hands-on experience with security tools like Snyk, Semgrep, or similar
  • Ability to simplify and communicate technical security concepts to diverse audiences
  • Demonstrated success in partnering with developers to integrate security without disrupting velocity
  • Experience performing secure code reviews and interpreting SAST/DAST results
  • Familiarity with cloud platforms (AWS, Azure, GCP) and containerization (Docker, Kubernetes)
Job Responsibility
Job Responsibility
  • Integrate Security into Development
  • Build and maintain security automation tools to seamlessly embed security checks into CI/CD pipelines
  • Partner with engineering teams to design secure-by-default architectures and workflows
  • Enable Developer Success
  • Act as a trusted advisor and partner for development teams, providing actionable guidance to address security
  • Deliver training and mentorship on secure coding practices, empowering teams to proactively prevent vulnerabilities
  • Proactively Identify Risks
  • Deploy and operationalize static (SAST), dynamic (DAST), and dependency (SCA) scanning tools
  • Lead vulnerability management efforts, ensuring critical vulnerabilities are identified, prioritized, and remediated
  • Advocate for a "security debt" reduction mindset to maintain long-term product integrity
What we offer
What we offer
  • Competitive salary and 401k with employer match
  • Discretionary paid time off
  • Paid parental leave for all
  • Medical, Dental, Vision plans
  • Fitness Programs
  • Emotional & Mental Wellness support
  • Learning & Development programs
  • Snacks in our offices
  • Fulltime
Read More
Arrow Right

Security Engineer II

PagerDuty is seeking an Enterprise Security Engineer to join its global IT Opera...
Location
Location
Canada , Toronto
Salary
Salary:
122000.00 - 185000.00 CAD / Year
https://www.pagerduty.com Logo
PagerDuty
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 3 years of experience in the information security industry, with 2+ years in network security or zero-trust, and 2+ years in security architecture or solution experience
  • Knowledge of Information Security concepts, especially in the areas of security threats, analyzing security logs and driving Incident response
  • Knowledge and practical experience in network security and zero-trust
  • Understanding of the IAM cybersecurity landscape, including identity stores, authentication/authorization, strong authentication, and privileged access management capabilities and methodologies
  • Understanding of security technologies and concepts, including SIEM, MDR/XDR, EDR and vulnerability management
  • Understanding of security best practices and frameworks (e.g., MITRE ATT&CK, NIST Cybersecurity Framework)
  • Knowledge of incident response processes
Job Responsibility
Job Responsibility
  • Partner closely with CISO organization to design and implement enterprise IT security architectures and solutions
  • Tracking the evolution of cutting-edge security technologies, and keeping up to date of the latest security threats and trends
  • Focus on enterprise security and zero-trust technology, serving as the principal technical expert in this area within the Enterprise Security department
  • Monitors security alerts and leads the team in identifying and responding to security threats
  • Monitors systems for vulnerabilities, provides prioritization, and drives remediation efforts
  • Working cross-functionally to triage suspicious activity and drive remediation (performing L2-L3 duties as needed)
  • Analyzing threat intelligence feeds to develop metrics, alerts, and techniques to protect against new and emerging attack vectors
  • Develop metrics, thresholds, alerts, dashboards, and incident response playbooks
  • Drive the design and development of automated security response and maintenance solutions
  • Oversee our workstation vulnerability management & endpoint compliance program
What we offer
What we offer
  • Competitive salary
  • Comprehensive benefits package
  • Flexible work arrangements
  • Company equity
  • ESPP (Employee Stock Purchase Program)
  • Retirement or pension plan
  • Generous paid vacation time
  • Paid holidays and sick leave
  • Dutonian Wellness Days & HibernationDuty - companywide paid days off in addition to PTO
  • Paid parental leave: 22 weeks for pregnant parent, 12 weeks for non-pregnant parent
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

Senior Security Engineer – Remote (US) – Competitive Salary Opportunity to work ...
Location
Location
United States
Salary
Salary:
Not provided
weareorbis.com Logo
Orbis Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or related technical field
  • 5+ years of hands-on experience in security engineering or related roles
  • Expertise in secure software development, architecture design, threat modeling, CI/CD pipelines, and risk assessment
  • Deep knowledge of network, system, database, and application layer attack patterns and mitigation methods
  • Ability to clearly communicate complex concepts appropriately to multiple audience types
  • Coding skills necessary to discover and patch issues Node, TypeScript/React, Python
  • Solid understanding and experience with AWS, Heroku, Netlify, and Snowflake, including policy, configurations, and security management tooling
  • Proven track record with SOC 2, PCI DSS, or similar compliance frameworks and reporting
  • Experience working in startup or high-growth environments, fintech, and/or highly regulated industries preferred
  • Cloud security certifications with evidence of continued education in the area of security are a plus
Job Responsibility
Job Responsibility
  • Vulnerability Management: Conduct regular vulnerability assessments, penetration testing, and security audits to identify and remediate security gaps across our cloud infrastructure and applications
  • Security Monitoring: Monitor systems for security threats, suspicious behavior, and anomalies using SIEM tools and security monitoring and vulnerability platforms like CrowdStrike and Nessus
  • Incident Response: Lead security incident response efforts, investigate suspicious reports, and implement preventative measures that may be warranted
  • Code Security Reviews: Review and approve code (Node, React, Python) that accesses to data, authentication, or integrations, ensuring secure development practices are followed
  • Cross-functional Collaboration: Work closely with engineering and operations teams, including executive stakeholders and occasionally third-party service providers, to integrate security best practices into development and deployment processes
  • Architecture Review: Evaluate and provide security recommendations for system architecture changes (e.g. network segmentation, microservices, virtual environments, data warehousing, etc) and new feature implementations, including the evaluation of AI enablement opportunities
  • Cloud Security: Secure cloud deployments (AWS/Heroku/Netlify), including configuration of firewalls, IAM policies, VPCs, databases/data warehouses (PostgreSQL, Snowflake), API security, container security, and network monitoring
  • Access Controls: Manage and maintain access controls across server environments, implementing principle of least privilege
  • Data Classification: Advise and audit the proper handling of data in accordance with privacy and security requirements and data classification policies
  • Integration Security: Review and assess security implications of all third-party integrations and vendor relationships
  • Fulltime
Read More
Arrow Right

System Security Engineer

As a system security engineer, you play a pivotal role in securing our hardware ...
Location
Location
United States , Annapolis Junction
Salary
Salary:
99000.00 - 225000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience as a systems security engineer in programs that encompass systems security architecture development, requirements analysis, design, production, integration, test, and transition into operations
  • 4+ years of experience performing Information Systems Security Officer functions in support of USCYBERCOM or IC projects and offices
  • 4+ years of experience working with the Risk Management Framework (RMF) process
  • Experience assessing security vulnerabilities in software or systems and implementing mitigations
  • Experience working on teams using Agile technologies, including Atlassian Suite
  • Experience working with Amazon Web Services (AWS) cloud technology
  • Top Secret clearance
  • Bachelor’s degree in CS, Computer Engineering, or Information Systems
  • DoD 8570 compliant IAT Level II Certification
Job Responsibility
Job Responsibility
  • Guide your team of professionals as they maintain existing applications and keep systems working in sustainment mode
  • Use programming and scripting languages, including Python and Bash, to continuously enhance and maintain the application, troubleshoot any issues that arise operationally, and upgrade the system to meet security requirements
  • Advise our government clients on the best ways to improve and modernize the existing systems
What we offer
What we offer
  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program
Read More
Arrow Right

Cloud Engineer II - SRE

Cloud Engineer II - SRE role at Hewlett Packard Enterprise, part of the 24X7 ope...
Location
Location
India
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in computer science, engineering, information systems, or closely related quantitative discipline
  • Master's desirable
  • Typically 3-5 years' experience
  • Strong Experience in Ubuntu & K8s platforms
  • Experience in programming skills in Scripting / Python / Golang/ Ansible/ Terraform
  • Strong experience in DevOps practices like continuous integration/continuous deployment (CI/CD)
  • Knowledge on Git Ops model
  • Working experience in cloud platforms, especially AWS
  • Ability to quickly learn new skills and technologies
  • Strong system debugging skills
Job Responsibility
Job Responsibility
  • Part of the 24X7 operations group working in shifts managing an application or multiple applications
  • Monitor & remediate alerts and maintain uptime
  • Develops and maintains automated systems to improve operational efficiency and ensure compliance with security policies
  • Executes automation and debugs issues as required
  • Leverage CI/CD & Git Ops for managing the application platform
  • Patching security vulnerabilities
  • Manage public cloud infrastructure
  • Shares and reviews innovative technical ideas with peers
  • Analyses incidents / problems to develop and implement solutions to complex application problems
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

Data Engineer - II

The Data Engineer will design, develop, and maintain scalable data pipelines and...
Location
Location
India , Pune
Salary
Salary:
Not provided
aticaglobal.com Logo
Atica Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science, Engineering, Mathematics, a related field, or equivalent practical experience
  • 3-5 years of experience in data engineering or a similar mid-level role
  • Proficiency in Python and SQL
  • experience with Java is a plus
  • Hands-on experience with AWS, Airbyte, DBT, PostgreSQL, MongoDB, Airflow, and Spark
  • Familiarity with data storage solutions such as PostgreSQL, MongoDB
  • Experience with BigQuery (setup, management and scaling)
  • Strong understanding of data modeling, ETL/ELT processes, and database systems
  • Experience with data extraction, batch processing and data warehousing
  • Excellent problem-solving skills and a keen attention to detail
Job Responsibility
Job Responsibility
  • Design, develop, and maintain scalable data pipelines and ETL/ELT processes using tools like Airflow, Airbyte and PySpark
  • Collaborate with software engineers and analysts to ensure data availability and integrity for various applications
  • Design and implement robust data pipelines to extract, transform, and load (ETL) data from various sources
  • Utilize Airflow for orchestrating complex workflows and managing data pipelines
  • Implement batch processing techniques using Airflow/PySpark to handle large volumes of data efficiently
  • Develop ELT processes to optimize data extraction and transformation within the target data warehouse
  • Leverage AWS services (e.g., S3, RDS, Lambda) for data storage, processing, and orchestration
  • Ensure data security, reliability, and performance when utilizing AWS resources
  • Work closely with developers, analysts, and other stakeholders to understand data requirements and provide the necessary data infrastructure
  • Assist in troubleshooting and optimizing existing data workflows and queries
What we offer
What we offer
  • Competitive salary and benefits package
  • Comprehensive Health Care benefits (best in the country, includes IPD+OPD, covers Employee, Spouse and two children)
  • Growth and advancement opportunities within a rapidly expanding company
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy