Senior Application Security Engineer

Full-Time. Onsite in Pittsburgh, PA

Oxford Solutions is working with a client seeking a Senior Application Security Engineer with a positive mindset, adaptable nature, and strong technical skills in DevSecOps and application security. If you're someone who cares deeply about delivering secure, high-quality software and thrives in a fast-paced environment-this could be your next move.

Essential Functions

Define and implement application security policies, standards, and best practices across DevOps and cloud environments

Collaborate with development and DevOps teams to embed automated security testing (SAST, DAST, SCA, IaC scanning, etc.) into CI/CD pipelines

Identify and mitigate vulnerabilities in web applications, APIs, infrastructure-as-code, and containers

Lead security design reviews and threat modeling for new and existing applications

Stay current with emerging security threats, technologies, and trends Qualifications

Bachelor's degree or higher in Cybersecurity, Information Security, Computer Science, or related field OR 8+ years of relevant experience

5+ years of experience in application security, DevSecOps, or security engineering

Hands-on experience with security tools such as SAST, DAST, SCA, container security, and IaC security solutions

Strong knowledge of secure software development practices and common vulnerabilities (OWASP, etc.)

Experience working in Agile environments or supporting cloud-native applications preferred

Ability to wear multiple hats, pivot quickly, and solve problems creatively

A collaborative, positive attitude with a passion for building secure systems and mentoring others Senior Application Security Engineer - 25-00296