Job description

Application Security Developer - Hybrid The AppSec Developer is responsible for developing software applications to protect company systems from cyber threats. This role involves identifying and mitigating vulnerabilities, integrating secure coding practices, and implementing security solutions. The ideal candidate will work closely with development teams, conduct threat assessments, and embed security into CI/CD pipelines and the software development lifecycle (SDLC). Strong expertise in application security tools, cloud security, and secure development practices is essential. Target salary range is $80,000-115,000. This is a direct hire W2 position which will be hybrid with 1-2 days per week onsite. Candidates must be local to the Minneapolis-St. Paul, MN area and must be eligible to work in the U.S. without sponsorship both now and in the future. Responsibilities • Promote and enforce secure coding standards across development teams. • Collaborate with developers to integrate security throughout the SDLC. • Conduct threat modeling and security assessments to identify risks. • Design and implement application security solutions. • Monitor emerging threats and technologies (e.g., AI, Model Context Protocol). • Integrate security tools into CI/CD pipelines for automated scanning. • Respond to security incidents and support remediation efforts. • Develop and maintain web applications using Python and Django. • Integrate third-party APIs and services. Qualifications • Associate degree or technical certificate required; Bachelor's in Computer Science preferred. • 3-5 years of experience in application development with a focus on security; Python development experience ideal. • Familiarity with Microsoft Azure and cloud security. • Solid understanding of secure coding principles and application security best practices. • Security certifications (e.g., CISSP, CEH) preferred. • Strong problem-solving and troubleshooting skills. • Proficiency with GitHub, CI/CD tools, security testing (e.g., Veracode), and vulnerability management (e.g., Qualys). • Experience with threat modeling and risk analysis preferred. All qualified applicants will receive consideration for employment without regard to race, color, national origin, age, ancestry, religion, sex, sexual orientation, gender identity, gender expression, marital status, disability, medical condition, genetic information, pregnancy, or military or veteran status. We consider all qualified applicants, including those with criminal histories, in a manner consistent with state and local laws, including the California Fair Chance Act, City of Los Angeles' Fair Chance Initiative for Hiring Ordinance, and Los Angeles County Fair Chance Ordinance. For unincorporated Los Angeles county, to the extent our customers require a background check for certain positions, the Company faces a significant risk to its business operations and business reputation unless a review of criminal history is conducted for those specific job positions.

Requirements