Application Security Engineer

TL;DR

Application Security Engineer: Building software solutions that drive automation and security into the application development lifecycle with an accent on integrating Security and DevOps practices and enabling secure delivery for hirify.global Digital Applications. Focus on guiding software engineers on cybersecurity issues, influencing security decisions, and securely enabling, building, and deploying modern applications.

Location: This position requires the candidate to be based in either Chicago, IL or Dallas, TX

Salary: $97,530.00 - $158,480.00

Company

hirify.global Inc. is a global team that builds stronger, more sustainable communities through technology, digital, and data solutions.

What you will do

• Guide software engineers on cybersecurity issues and influence security and prioritization decisions at the bug or story level.
• Analyze, validate, and consult on security defects identified by automated and manual sources (e.g., CodeQL, Rapid7 Web Application Security, penetration testing, bug bounty).
• Serve as a partner to software engineers, architects, product owners, and leaders, providing contextually-aware guidance.
• Enable and monitor automated defect detection tooling (CodeQL, Rapid7) at the repository or application level.
• Collect and communicate required scope and access information for penetration testing and security assurance assessments.
• Consult with software engineers on practices to improve their application’s security maturity and author correction of error reports.

Requirements

• Knowledge of decision-making, critical thinking, effective communication, and Software Development Life Cycle.
• Understanding of Software Integration Engineering and Software Product Design/Architecture.
• Experience as a software engineer (in any language or framework), preferably with a focus on cybersecurity-related issues.
• Experience working on a major cloud platform (AWS, Azure, GCP, or Salesforce) as a software, cloud/DevOps, or security engineer, or architect.
• Experience analyzing and remediating security findings from automated and manual sources (SAST, DAST, penetration testing, SCA).
• Experience leveraging OWASP Top 10, MITRE Common Weakness Enumeration (CWE) Top 25, OWASP ASVS, or other industry-standard frameworks.
• Experience building or supporting web applications and RESTful APIs.
• Must be based in either Chicago, IL or Dallas, TX.
• Relocation assistance is NOT available for this position.

Culture & Benefits

• Medical, dental, and vision benefits.
• Paid time off plan (Vacation, Holidays, Volunteer).
• 401(k) savings plans, Health Savings Account (HSA), Flexible Spending Accounts (FSAs).
• Health Lifestyle Programs and Employee Assistance Program.
• Voluntary Benefits and Employee Discounts.
• Career Development and Incentive bonus.