AI Summary
We are seeking a highly experienced Application Security Engineer to join our security team in Little Rock, Arkansas. The ideal candidate will bring deep expertise in securing enterprise applications, conducting advanced security assessments, and implementing strong security controls throughout the software development lifecycle.
Key Highlights
Design, implement, and maintain application security frameworks, standards, and best practices across enterprise systems
Conduct application security testing, including Static (SAST), Dynamic (DAST), Interactive (IAST), and penetration testing
Develop threat models and perform risk assessments for new and existing applications
Technical Skills Required
Benefits & Perks
Remote work
W2-Contract Only
Visa sponsorship (GC, GC-EAD, USC, H4-EAD)
Job Description
Job Category: Cyber Security Security Engineer
Job Type: Remote
Job Location: Arkansas Little Rock
Compensation: Depends on Experience
W2: W2-Contract Only; Kindly note that applications on a C2C basis will not be considered for this role.
C2C: Contract - W2
Job Description
NOTE (Visa Requirement):
We are considering candidates who are authorized to work in the United States under the following visa categories only: GC, GC-EAD, USC, H4-EAD.
Job Description:
We are seeking a highly experienced Application Security Engineer / Cyber Security Engineer to join our security team in Little Rock, Arkansas. The ideal candidate will bring deep expertise in securing enterprise applications, conducting advanced security assessments, and implementing strong security controls throughout the software development lifecycle.
Key Responsibilities:
- Design, implement, and maintain application security frameworks, standards, and best practices across enterprise systems.
- Perform secure code reviews and identify vulnerabilities in web, mobile, and API-based applications
- Conduct application security testing, including Static (SAST), Dynamic (DAST), Interactive (IAST), and penetration testing.
- Integrate security controls into CI/CD pipelines and support DevSecOps initiatives.
- Identify, assess, and remediate application security risks based on severity and business impact.
- Develop threat models and perform risk assessments for new and existing applications.
- Ensure compliance with industry standards and regulatory frameworks such as OWASP Top 10, NIST, ISO 27001, PCI-DSS, HIPAA, and SOC 2.
- Monitor and respond to application-level security incidents and support incident response efforts.
- Provide technical guidance and mentorship to development teams and junior security engineers.
- Collaborate with infrastructure, cloud, and network security teams to ensure end-to-end security coverage.
- Create and maintain security documentation, policies, and audit-ready reports for leadership and compliance reviews.
- 12+ years of experience in application security, cybersecurity, or information security.
- Strong hands-on experience with application security tools such as Fortify, Checkmarx, Veracode, Burp Suite, OWASP ZAP, or similar tools.
- In-depth understanding of secure coding practices and common vulnerabilities across Java, .NET, Python, JavaScript, and modern web technologies.
- Extensive experience with OWASP Top 10 and Secure SDLC methodologies.
- Strong knowledge of authentication, authorization, encryption, and key management concepts.
- Proven experience securing RESTful APIs, microservices, and cloud-native applications.
- Hands-on experience with cloud platforms such as AWS, Azure, or Google Cloud and their security controls.
- Ability to analyze complex security issues and clearly communicate risks and remediation strategies to technical and non-technical stakeholders.
- Experience working in large enterprise or government environments.
- Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent professional experience.
- Security certifications such as CISSP, CISM, CEH, GWAPT, OSCP, or CSSLP.
- Experience with DevSecOps tools and CI/CD platforms including Jenkins, GitHub Actions, GitLab CI, or Azure DevOps.
- Knowledge of container and Kubernetes security practices.
- Experience with SIEM tools and security monitoring platforms.
- Familiarity with Zero Trust security architecture.
- Prior experience supporting regulatory audits and compliance initiatives.
- Strong leadership, documentation, and stakeholder communication skills.
Your Name *
Your Phone Number *
Your Email Address *
Job id *
JPS-5190 / Application Security Engineer / Cyber Security Engineer
What is your current U.S. visa or immigration status? *
Select
Where are you currently located at? *
W2 or C2C *
Select
How many years of total experience do you have? *
How many years of relevant experience you have? *
Do you require H1B sponsorship? *
Select
Upload Resume *
Choose a file
No file chosen.
Facebook X LinkedIn WhatsApp
Similar Jobs
Explore other opportunities that match your interests
Visa Sponsorship
Relocation
Remote
Job Type
Full-time
Experience Level
Mid-Senior level
Bright Vision Technologies
United State
Associate Cybersecurity Engineer
••••••
••••••
••••••
Job Type
••••••
Experience Level
••••••
TEKsystems
United State
Senior Security Engineer - Red Team
••••••
••••••
••••••
Job Type
••••••
Experience Level
••••••
anthropic
United State