Job description

Summary We are seeking a highly skilled Security & Application Security Engineer to lead and support enterprise-wide cybersecurity initiatives, with a strong focus on application security, vulnerability management, and secure SDLC practices. This role partners closely with development, infrastructure, and security teams to ensure robust security controls across applications, APIs, and cloud/on-premise environments. The ideal candidate will bring expertise in static and dynamic application testing, penetration testing, API security, and container security while contributing to compliance, incident response, and continuous security improvements. Key Responsibilities • Act as a liaison between Security and Development teams, driving secure coding practices and remediation efforts. • Perform static/dynamic application security testing (SAST/DAST), API security testing, and penetration testing. • Integrate threat modeling and secure design principles into the software development lifecycle (SDLC). • Support incident response, security architecture reviews, and remediation planning. • Manage vulnerability assessments, patch management, and security hygiene across hybrid environments. • Collaborate with IT leadership and the CISO to address security exposures and manage incident reporting. • Contribute to compliance programs (PCI-DSS, SOX, NIST) by ensuring adherence to required controls. • Secure infrastructure spanning AWS, Azure, on-premises data centers, and colocation sites. • Leverage security tools and frameworks, including Kali Linux, Burp, Postman, and OWASP best practices. Required Skills & Qualifications • 5+ years of Information Security experience, with at least 2 years focused on application security. • Strong knowledge of secure coding practices, application penetration testing, and API security testing. • Proficiency with SAST/DAST tools, vulnerability management, and OWASP-based frameworks. • Experience with container and orchestration security (Kubernetes, Docker, GitHub, Octopus). • Familiarity with cloud security for AWS and/or Azure environments. • Hands-on experience with Linux, Windows, VMware, and enterprise application stacks. • Knowledge of threat hunting, malware analysis, red/blue teaming, and risk management methodologies. • Strong understanding of network security, firewalls/DMZs, encryption, and hybrid on-prem/cloud infrastructures. • Excellent communication skills for documenting security requirements and collaborating with cross-functional teams. Preferred Qualifications • Bachelor’s degree in Information Technology, Cybersecurity, or a related field. • Industry certifications such as CISSP, CISM, CEH, or OSCP. Job Type: Contract Pay: $58.78 - $70.00 per hour Expected hours: 40 per week Benefits: • 401(k) • Dental insurance • Health insurance • Vision insurance Experience: • Information security: 5 years (Required) Ability to Commute: • Las Vegas, NV 89119 (Required) Ability to Relocate: • Las Vegas, NV 89119: Relocate before starting work (Required) Work Location: Hybrid remote in Las Vegas, NV 89119

Requirements