Application Security Engineer
Responsibilities:
• Partner with software engineering and cybersecurity teams to build security into application design, coding practices, release processes, and production support.
• Perform in-depth security evaluations through code analysis, threat modeling, penetration testing, and vulnerability assessments to uncover and prioritize risk.
• Establish and uphold secure development standards, reusable patterns, and technical guidance that improve consistency across teams.
• Administer and enhance security controls within CI/CD workflows, including code scanning, infrastructure-as-code checks, and container security tooling.
• Contribute to architecture assessments for cloud-based systems, microservices, and containerized applications to ensure resilient and secure designs.
• Evaluate application risks and support formal security reviews to guide mitigation planning and informed technical decisions.
• Verify that application security activities align with applicable compliance obligations and recognized industry frameworks.
• Create and deliver training sessions that help developers strengthen secure coding habits and increase security awareness.
• Track emerging attack techniques and threat intelligence, then apply those insights to improve preventive and detective controls.
• Support the monitoring, investigation, and remediation of application security issues, while coordinating effectively with external vendors and consultants as needed.
Qualifications:
• Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or another related technical discipline.• At least 5 years of experience in information security, including 3 or more years dedicated to application security, secure software engineering, or DevSecOps.
• Proven success helping build, strengthen, or scale an application security program in a lead or highly influential capacity.
• Strong understanding of common application security risks, secure SDLC practices, and widely recognized vulnerability frameworks and standards.
• Hands-on experience with application security testing platforms such as Burp Suite, Fortify, Checkmarx, Veracode, or similar tools.
• Working knowledge of threat modeling, penetration testing, secure architecture review, and modern software security assessment techniques.
• Practical experience securing cloud environments such as AWS or Azure, along with familiarity with Kubernetes, container hardening, and runtime protection.
• Active passport required, with willingness and ability to travel internationally.
Compensation
$117,200.00-$146,600.00 YearlyAbout Us
Technology Doesn't Change the World, People Do.®
Robert Half is the world’s first and largest specialized talent solutions firm that connects highly qualified job seekers to opportunities at great companies. We offer contract, temporary and permanent placement solutions for finance and accounting, technology, marketing and creative, legal, and administrative and customer support roles.
Robert Half works to put you in the best position to succeed. We provide access to top jobs, competitive compensation and benefits, and free online training. Stay on top of every opportunity - whenever you choose - even on the go. Download the Robert Half app and get 1-tap apply, notifications of AI-matched jobs, and much more.
All applicants applying for U.S. job openings must be legally authorized to work in the United States. Benefits are available to contract/temporary professionals, including medical, vision, dental, and life and disability insurance. Hired contract/temporary professionals are also eligible to enroll in our company 401(k) plan. Visit roberthalf.gobenefits.net for more information.
© 2025 Robert Half. An Equal Opportunity Employer. M/F/Disability/Veterans. By clicking “Apply Now,” you’re agreeing to Robert Half’s Terms of Use and Privacy Notice.
