Dahl ConsultingRemote
Senior Application Security Engineer (Remote)
United States of America
Contract
2 weeks ago
$67 USD
H1B Sponsor Likely
Key skills
Application securityCybersecurity engineeringSecure coding practicesSecure code reviewDynamic application security testing (DAST)Vulnerability assessment methodologiesCI/CD pipelinesOWASP Top 10API securitySecure software development lifecycle (SDLC)DevSecOpsAI security frameworksAdversarial testingSoftware composition analysis (SCA)Static application security testing (SAST)Runtime security toolsCloud securityAWSAzureGCPCISSPCSSLPOSCPGSECGIAC application security certificationsAIMLSDLCCI/CDOWASPCloud Security
About this role
Dahl Consulting is partnering with a leading enterprise retail and technology organization to hire a Senior Application Security Engineer. In this role, you will support enterprise AI security initiatives and strengthen the security posture of applications, APIs, and AI-enabled platforms by implementing secure development practices and scalable security controls.
Responsibilities:
- Partner with engineering and cybersecurity teams to implement application and AI security best practices, tools, and processes
- Conduct secure code reviews across applications, APIs, automation workflows, and AI-enabled services
- Evaluate and validate findings from dynamic application security testing (DAST), software composition analysis (SCA), and other vulnerability discovery tools
- Integrate security controls and automated testing into CI/CD pipelines to support DevSecOps practices
- Analyze application and infrastructure vulnerabilities, prioritize remediation efforts, and provide actionable recommendations
- Support threat modeling and security design reviews for applications, APIs, and AI/ML systems
- Research and assess emerging AI security tools, adversarial testing approaches, and vulnerability discovery techniques
- Collaborate with development teams to improve secure software development lifecycle (SDLC) practices
- Develop documentation, standards, and repeatable processes related to application and AI security
- Participate in proof-of-concept evaluations for new security technologies and capabilities
Requirements:
- 4+ years of experience in application security, cybersecurity engineering, software engineering, or related technical security roles
- Bachelor's degree in Computer Science, Cybersecurity, Information Systems, Engineering, or equivalent practical experience
- Strong understanding of secure coding practices and common application vulnerabilities
- Experience performing secure code reviews in one or more modern programming languages
- Experience analyzing and validating vulnerability findings from automated security tools
- Experience with dynamic application security testing (DAST) tools and vulnerability assessment methodologies
- Familiarity with CI/CD pipelines and integrating automated security testing
- Understanding of OWASP Top 10, API security risks, and secure software development lifecycle (SDLC) practices
- Strong analytical and problem-solving skills with the ability to communicate technical findings clearly
- Experience working in enterprise-scale DevSecOps environments
- Familiarity with AI security frameworks, adversarial testing concepts, or AI vulnerability discovery tooling
- Experience integrating security testing into cloud-native or containerized environments
- Knowledge of software composition analysis (SCA), static application security testing (SAST), and runtime security tools
- Familiarity with cloud security practices across AWS, Azure, or GCP
- Relevant certifications such as CISSP, CSSLP, OSCP, GSEC, or GIAC application security certifications