Application Security Engineer - Expert
Description:
Application Security Engineer Expert
We are seeking a highly skilled and experienced Application Security Engineer, Expert to join our team. In this role, you will lead efforts to secure our applications throughout the software development lifecycle, working closely with engineering, product, DevOps, and SOC teams to identify and mitigate security risks.
Key Responsibilities
Design, implement, and maintain network security solutions at the application layer
Collaborate with developers and operations analysts to improve security posture
Lead incident response efforts related to application-level threats
Stay current with emerging threats, vulnerabilities, and security technologies
Mentor junior engineers and promote a security-first culture across the organization
Plan and execute product delivery within an Agile framework
Basic Qualifications
3 Years securing applications in AWS, Azure, or GCP
3 Years designing and implementing web application security
3 Years Experience in one or more of the following programming languages and formats: Python, JSON, XML, or HTML
Bachelor's Degree
Preferred Skills
Relevant certifications (e.g., Sec+, Net+, CISSP, CCSK) are a plus.
Experience with secure SDLC and DevSecOps practices.
Understand Risk Management: Identify, communicate, resolve, NIST RMF
Critical thinking and problem-solving skills with groups of people
Able to translate business and technical requirements into engineering solutions
Works well on teams by building trust through rapport, communication, and peer support
Service heart: eager to understand how our contributions impact overall business objectives
Can Do Attitude: mental and emotional fortitude; dedicated to delighting stakeholders
Forward Thinking: Thought leader able to identify emerging technological solutions
Experience with the following web application technologies (OWASP Top 10/API Top 10, WAFs, API protections, bot protections, DDoS defense, CDNs, DNS)
Experience with web security platforms like: Akamai, Google Cloud Armor, Terraform, Etc.
Exempt Status: Yes = not eligible for overtime pay
Workplace Type: Office
Our Approach to Office Workplace Type
Certain positions outside our branch network may be eligible for a flexible work arrangement. We're combining the best of both worlds: in-office and work from home. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. Remote roles will also have the opportunity to come together in our offices for moments that matter. Specific work arrangements will be provided by the hiring team.
Huntington is an Equal Opportunity Employer.
Tobacco-Free Hiring Practice: Visit Huntington's Career Web Site for more details.
Note to Agency Recruiters: Huntington Bank will not pay a fee for any placement resulting from the receipt of an unsolicited resume. All unsolicited resumes sent to any Huntington Bank colleagues, directly or indirectly, will be considered Huntington Bank property. Recruiting agencies must have a valid, written and fully executed Master Service Agreement and Statement of Work for consideration.
Full Time