Oxford Solutions
Full-Time. Onsite in Pittsburgh, PA
Oxford Solutions is working with a client seeking a
Senior Application Security Engineer
with a positive mindset, adaptable nature, and strong technical skills in DevSecOps and application security. If you're someone who cares deeply about delivering secure, high-quality software and thrives in a fast-paced environment-this could be your next move.
Essential Functions
Define and implement application security policies, standards, and best practices across DevOps and cloud environments Collaborate with development and DevOps teams to embed automated security testing (SAST, DAST, SCA, IaC scanning, etc.) into CI/CD pipelines Identify and mitigate vulnerabilities in web applications, APIs, infrastructure-as-code, and containers Lead security design reviews and threat modeling for new and existing applications Stay current with emerging security threats, technologies, and trends Qualifications
Bachelor's degree or higher in Cybersecurity, Information Security, Computer Science, or related field OR 8+ years of relevant experience 5+ years of experience in application security, DevSecOps, or security engineering Hands-on experience with security tools such as SAST, DAST, SCA, container security, and IaC security solutions Strong knowledge of secure software development practices and common vulnerabilities (OWASP, etc.) Experience working in Agile environments or supporting cloud-native applications preferred Ability to wear multiple hats, pivot quickly, and solve problems creatively A collaborative, positive attitude with a passion for building secure systems and mentoring others Senior Application Security Engineer - 25-00296
Oxford Solutions is working with a client seeking a
Senior Application Security Engineer
with a positive mindset, adaptable nature, and strong technical skills in DevSecOps and application security. If you're someone who cares deeply about delivering secure, high-quality software and thrives in a fast-paced environment-this could be your next move.
Essential Functions
Define and implement application security policies, standards, and best practices across DevOps and cloud environments Collaborate with development and DevOps teams to embed automated security testing (SAST, DAST, SCA, IaC scanning, etc.) into CI/CD pipelines Identify and mitigate vulnerabilities in web applications, APIs, infrastructure-as-code, and containers Lead security design reviews and threat modeling for new and existing applications Stay current with emerging security threats, technologies, and trends Qualifications
Bachelor's degree or higher in Cybersecurity, Information Security, Computer Science, or related field OR 8+ years of relevant experience 5+ years of experience in application security, DevSecOps, or security engineering Hands-on experience with security tools such as SAST, DAST, SCA, container security, and IaC security solutions Strong knowledge of secure software development practices and common vulnerabilities (OWASP, etc.) Experience working in Agile environments or supporting cloud-native applications preferred Ability to wear multiple hats, pivot quickly, and solve problems creatively A collaborative, positive attitude with a passion for building secure systems and mentoring others Senior Application Security Engineer - 25-00296