Application Security/Web Protection Engineer

Application Security/Web Protection Engineer

6+ month contract

100% remote

*NO C2C PLEASE*

Job Summary

The Appsec/Web Protection Engineer supports the design, configuration, and operation of enterprise web and application security solutions. This role partners closely with application teams and developers to integrate identity-based security controls into cloud-hosted and enterprise applications. The position focuses heavily on Microsoft Azure, Entra, Ping Identity technologies, and SAML-based integrations to protect applications across production and non-production environments.

Essential Functions

• Partner with project teams and developers to integrate security requirements into application initiatives
• Configure and support enterprise web application protection using Microsoft Azure, Entra, and PingAM
• Implement and support SAML integrations for enterprise and affiliate applications
• Support production and non-production release schedules
• Coordinate with vendors and service providers supporting security technologies
• Manage system and application configuration, policies, and operational activities for assigned security solutions
• Monitor, report on, and enhance performance of security technologies
• Provide incident response, troubleshooting, and remediation for assigned security solutions
• Track and follow up on security work requests to ensure timely completion and approvals
• Support escalations, known issues, and out-of-cycle requests across multiple security platforms
• Develop and maintain operational documentation including procedures, diagrams, and knowledgebase content
• Analyze and present security metrics and operational data to peers and leadership
• Assist with migration, upgrade, and decommissioning of security solutions
• Support disaster recovery planning, testing, and execution for security technologies
• Assist with remediation efforts resulting from audits, threat assessments, or vulnerability findings
• Provide training and knowledge transfer on security tools and processes

Required Experience

• 4 years of related work experience
• 2 years of cybersecurity experience
• 2 years of IT infrastructure experience
• Hands-on experience configuring Microsoft Azure and Entra
• Experience implementing and supporting SAML integrations
• Exposure to application security concepts and controls

Education

• Bachelor's degree in an IT-related field or equivalent professional experience

Required Certifications

• One of the following:
• CISSP
• SSCP
• CEH
• Contractors without a relevant certification will be expected to obtain one within 6 months, as defined by the hiring manager

Additional Required Qualifications

• Experience configuring conditional access policies
• Scripting experience using Python, PowerShell, or similar
• Familiarity with Agile, Waterfall, Lean, or SAFe methodologies
• Ability to work independently while knowing when to seek guidance
• Strong troubleshooting and analytical skills
• Understanding of network, application, and operating system security controls
• Strong documentation and communication skills
• Professional demeanor with a strong work ethic
• Ownership mindset and ability to drive work to completion

Preferred Qualifications

• Ping Identity or ForgeRock experience, specifically PingAM
• Application development or scripting background
• LDAP and Active Directory knowledge
• Azure privileged and non-privileged access concepts
• Strong working knowledge of OWASP Top 10