CrawlJobs Logo

Application Security Engineer

United States, Boulder 96000.00 - 146000.00 USD / Year · Job Posted February 14, 2026
Apply Position
Job Link Share

Job Description

SciTec has an immediate opportunity for a talented engineer to support our programs delivering Next-Generation Missile Warning software. This is a unique opportunity to join a business delivering core capabilities for National defense. You will work within a fast-paced team delivering end-to-end software processing of Overhead Persistent InfraRed (OPIR) sensor data for Missile Warning, Missile Defense, Battlespace Awareness, and Technical Intelligence. We are seeking an Application Security Engineer to help secure mission-critical software systems by identifying, analyzing, and mitigating application-level vulnerabilities. This role focuses on hands-on security analysis, tooling integration, and working directly with software engineers to embed security into the development lifecycle. The ideal candidate combines strong technical security skills with the ability to collaborate effectively with developers in a DevSecOps environment.

Job Responsibility

  • Perform application security analysis using both automated and manual techniques, including: Static code analysis (SAST)
  • Software composition analysis (SCA)
  • Fuzzing
  • Manual code and design reviews
  • Identify, analyze, and help remediate application vulnerabilities
  • Support software engineers in integrating security considerations into system and application designs
  • Integrate and maintain application security tooling within CI/CD and DevSecOps pipelines
  • Design, implement, and improve continuous integration security analysis tooling
  • Tune and maintain security tools to reduce false positives and improve signal quality
  • Assist development teams in understanding findings and implementing effective fixes
  • Support threat modeling and secure design reviews
  • Stay current with emerging vulnerabilities, attack techniques, and mitigation strategies
  • Document findings, recommendations, and best practices
  • Perform other duties as assigned

Requirements

  • Bachelor’s degree plus 2+ years of professional experience in cybersecurity or software development, or equivalent experience
  • 2+ years of experience focused on application/software security
  • Experience analyzing source code for security flaws
  • Familiarity with secure software development practices
  • Strong analytical, problem-solving, and communication skills
  • Detail-oriented with strong written and verbal communication abilities
  • Ability to qualify for and maintain a DoD or DoE Secret security clearance
  • Ability to meet DoD 8140.01 Cyberspace Workforce Management requirements within six months of hire
  • Good verbal and written communication skills
  • Attention to detail

Nice to have

  • Active DoD Secret clearance or higher
  • Experience identifying, exploiting, and remediating application vulnerabilities
  • Credit for published CVEs is a strong plus
  • Proficiency in one or more programming languages such as C++, Python, JavaScript, Rust
  • Experience configuring and operating static analysis tools (e.g., Coverity, Klocwork, SonarQube)
  • Experience configuring and operating software composition analysis tools (e.g., Snyk, Sonatype, Anchore, JFrog Xray)
  • Experience with fuzzing frameworks (AFL, AFL++, honggfuzz, or similar)
  • Experience with debugging, runtime instrumentation, or reverse engineering, including tools such as: strace
  • eBPF
  • Ghidra or IDA Pro
  • Familiarity with threat modeling methodologies and frameworks such as MITRE ATT&CK
  • Experience working in DevSecOps or Agile development environments

What we offer

  • 4% Safe Harbor 401(k) match
  • 100% company paid HSA Medical insurance, with a choice of 2 buy-up options
  • 80% company paid Dental insurance
  • 100% company paid Vision insurance
  • 100% company paid Life insurance
  • 100% company paid Long-term Disability insurance
  • 100% company paid Hospital Indemnity insurance
  • Voluntary Accident and Critical Illness insurance
  • Short-term Disability insurance
  • Annual Profit-Sharing Plan
  • Discretionary Performance Bonus
  • Paid Parental Leave
  • Generous Paid Time Off, including Holiday, Vacation, and Sick Pay
  • Flexible Work Hours

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Application Security Engineer

8 matching positions

Application Security Engineer

Everyone is trying to “harness the cloud,” but not everyone knows how. As a clou...
Location
Location
United States , Fort Meade
Salary
Salary:
86900.00 - 198000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience supporting DoD enterprise architectures
  • 4+ years of experience designing, implementing, and administering F5 BIG-IP virtual edition and LTM
  • 4+ years of experience designing, implementing, and administering F5 BIG-IP APM and ASM
  • Experience working in DoD IL Clouds and on-premise private cloud environments
  • Experience working with VMware and NSX-T for micro‑segmentation, routing, and software‑defined networking
  • Experience working with SD-WAN technologies and topologies
  • Secret clearance
  • HS diploma or GED
What we offer
What we offer
  • Health
  • Life
  • Disability
  • Financial
  • Retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Everyone is trying to “harness the cloud,” but not everyone knows how. As a clou...
Location
Location
United States , Fort Meade
Salary
Salary:
86900.00 - 198000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience supporting DoD enterprise architectures
  • 1+ years of experience designing, implementing, and administering Palo Alto Next-Generation Firewalls to enable micro‑segmentation and identity‑aware access controls across complex enterprise environments
  • 1+ years of experience with Palo Alto Next‑Generation Firewalls (NGFW), including applying App‑ID, User‑ID, segmentation policies, and advanced security profiles
  • Experience working in on-premise private cloud environments
  • Experience working with VMware and NSX-T for micro‑segmentation, routing, and software‑defined networking
  • Experience working with SD-WAN technologies and topologies
  • Secret clearance
  • HS diploma or GED
What we offer
What we offer
  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program
Read More
Arrow Right

Application Security Engineer

The Opportunity: Everyone is trying to harness the cloud, but not everyone knows...
Location
Location
United States , Fort Meade
Salary
Salary:
86900.00 - 198000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience supporting DoD enterprise architectures
  • 4+ years of experience designing, implementing, and administering Palo Alto Next-Generation Firewalls to enable micro‑segmentation and identity‑aware access controls across complex enterprise environments
  • 4+ years of experience with Palo Alto Next‑Generation Firewalls (NGFW), including applying App‑ID, User‑ID, segmentation policies, and advanced security profiles
  • Experience working in DoD IL Clouds and on-premise private cloud environments
  • Experience working with VMware and NSX-T for micro‑segmentation, routing, and software‑defined networking
  • Experience working with SD-WAN technologies and topologies
  • Secret clearance
  • HS diploma or GED
What we offer
What we offer
  • Health
  • Life
  • Disability
  • Financial
  • Retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Fulltime
Read More
Arrow Right

Application Security Engineer

We are looking for an Application Security Engineer to strengthen secure softwar...
Location
Location
United States , Reading
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or another related technical discipline
  • At least 5 years of experience in information security, including 3 or more years dedicated to application security, secure software engineering, or DevSecOps
  • Proven success helping build, strengthen, or scale an application security program in a lead or highly influential capacity
  • Strong understanding of common application security risks, secure SDLC practices, and widely recognized vulnerability frameworks and standards
  • Hands-on experience with application security testing platforms such as Burp Suite, Fortify, Checkmarx, Veracode, or similar tools
  • Working knowledge of threat modeling, penetration testing, secure architecture review, and modern software security assessment techniques
  • Practical experience securing cloud environments such as AWS or Azure, along with familiarity with Kubernetes, container hardening, and runtime protection
  • Active passport required, with willingness and ability to travel internationally
Job Responsibility
Job Responsibility
  • Partner with software engineering and cybersecurity teams to build security into application design, coding practices, release processes, and production support
  • Perform in-depth security evaluations through code analysis, threat modeling, penetration testing, and vulnerability assessments to uncover and prioritize risk
  • Establish and uphold secure development standards, reusable patterns, and technical guidance that improve consistency across teams
  • Administer and enhance security controls within CI/CD workflows, including code scanning, infrastructure-as-code checks, and container security tooling
  • Contribute to architecture assessments for cloud-based systems, microservices, and containerized applications to ensure resilient and secure designs
  • Evaluate application risks and support formal security reviews to guide mitigation planning and informed technical decisions
  • Verify that application security activities align with applicable compliance obligations and recognized industry frameworks
  • Create and deliver training sessions that help developers strengthen secure coding habits and increase security awareness
  • Track emerging attack techniques and threat intelligence, then apply those insights to improve preventive and detective controls
  • Support the monitoring, investigation, and remediation of application security issues, while coordinating effectively with external vendors and consultants as needed
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • Eligibility to enroll in company 401(k) plan
Read More
Arrow Right

Application Security Engineer

Everyone is trying to “harness the cloud,” but not everyone knows how. As a clou...
Location
Location
United States , Fort Meade
Salary
Salary:
86900.00 - 198000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience supporting DoD enterprise architectures
  • 4+ years of experience designing, implementing, and administering Palo Alto Next-Generation Firewalls to enable micro‑segmentation and identity‑aware access controls across complex enterprise environments
  • 4+ years of experience with Palo Alto Next‑Generation Firewalls (NGFW), including applying App‑ID, User‑ID, segmentation policies, and advanced security profiles
  • Experience working in DoD IL Clouds and on-premise private cloud environments
  • Experience working with VMware and NSX-T for micro‑segmentation, routing, and software‑defined networking
  • Experience working with SD-WAN technologies and topologies
  • Secret clearance
  • HS diploma or GED
What we offer
What we offer
  • health, life, disability, financial, and retirement benefits
  • paid leave
  • professional development
  • tuition assistance
  • work-life programs
  • dependent care
  • recognition awards program
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Location
Location
India , Chennai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2-5 years of experience in technology development
  • Expertise and hands on in one or more of the core areas of – Java Tech Stack (Java, JDK, JSP, Spring Boot/Angular)
  • Explore automation opportunities to reduce manual errors
  • Ability to work independently with minimal supervision
  • Take ownership, drive strategy
  • Quickly adopt the changes
Job Responsibility
Job Responsibility
  • Analyze current vulnerabilities in system and propose and establish common coding standards to avoid similar issues in future
  • Liaise with QA, support and other teams involved with testing, deploying, and maintaining environment applications, infrastructure and releases
  • Capable of working flexible hours to collaborate with team across the globe
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Security Risk Assessment Security Policies, Standards, Guidelines, And Procedure...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 3 years of experience in application security or software development with security focus
  • Strong experience in DevSecOps with a solid foundation in cybersecurity and risk assessment
  • Hands-on knowledge of secure software development lifecycle (SSDLC) principles and tools
  • Familiarity with integrating security testing tools and practices within CI/CD environments
  • Experience with secure coding and vulnerability assessments across common web and mobile technologies
  • Ability to work with and guide development teams without being directly involved in implementation
  • Excellent communication skills and the ability to translate complex security requirements into practical advice
Job Responsibility
Job Responsibility
  • Perform comprehensive risk assessments of development environments, DevOps workflows, and CI/CD processes
  • Perform security assessments, threat modelling, and code reviews to identify vulnerabilities in applications
  • Review and recommend improvements in areas such as identity and access management, network security, secure SDLC practices, source code management, cryptographic key handling, and data protection
  • Guide application teams on adopting secure development practices and integrating security tools such as SAST, DAST, and VAPT into their workflows
  • Review existing CI/CD pipelines from a security perspective and provide expert recommendations to align with DevSecOps principles
  • Mentor and advise internal teams on secure coding practices across various platforms and languages (e.g., JavaScript, Node.js, Java, C#, Python, etc.)
  • Develop and maintain secure coding guidelines and security standards
  • Collaborate with development teams to remediate security issues and provide guidance on secure coding practices
What we offer
What we offer
  • Hybrid working mode
  • 18 days of Annual leave
  • Comprehensive coverage including General Practitioner, hospitalization, dental, and optical
  • Annual bonus based on individual performance
  • Training programs, certification opportunities, and training incentives to support career growth
  • Regular team-building activities and social events
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Performing regular penetration testing and vulnerability assessments on internal...
Location
Location
Türkiye , İstanbul
Salary
Salary:
Not provided
paribu.com Logo
Paribu
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Software Engineering, or a related field
  • Minimum 5 years of hands-on experience in web and mobile (iOS & Android) application security
  • Deep understanding of security standards and methodologies such as OWASP Top 10, OWASP Mobile Top 10, and SANS 25
  • Proficiency with application security testing and vulnerability analysis tools such as Burp Suite, Nessus, Acunetix, Fortify, Checkmarx, and MobSF
  • Strong knowledge of mobile application architectures, reverse engineering concepts, and secure coding principles
  • Experience contributing to SSDLC and integrating security into modern engineering and release processes
  • Familiarity with AI-assisted analysis and research workflows, and awareness of how AI can be applied in application security use cases
  • Excellent written and verbal communication skills in English
  • Strong analytical thinking, problem-solving capabilities, and a team-oriented mindset
  • Relevant certifications such as OSCP, OSWE, CEH, GWAPT, GMOB, eWPT, or eMAPT are highly preferred
Job Responsibility
Job Responsibility
  • Performing regular penetration testing and vulnerability assessments on internally developed and third-party web, iOS, and Android applications
  • Managing and integrating SAST, DAST, and IAST tooling into application security processes and engineering workflows
  • Contributing to the continuous improvement of the Secure Software Development Life Cycle (SSDLC) and DevSecOps pipelines
  • Conducting secure code reviews in close collaboration with software development teams
  • Producing clear and actionable security findings, providing remediation guidance, and tracking vulnerabilities through resolution
  • Monitoring the latest cybersecurity threats, zero-day vulnerabilities, and attack vectors to help strengthen proactive defense mechanisms
  • Collaborating with engineering and product teams to improve the security posture of applications across development, testing, and production environments
  • Applying AI-supported approaches in security research, vulnerability analysis, and workflow efficiency, while maintaining a strong understanding of secure and responsible AI usage in cybersecurity contexts
What we offer
What we offer
  • Meal allowance
  • Private health insurance
  • Commuting support
  • S.O.S. leave (10 days)
  • Birthday leave
  • Language learning support
  • Personal development support
  • Well-being & health platform
  • Relocation allowance
  • Top-tier work equipment
  • Fulltime
Read More
Arrow Right