Apply on Employer Site

Soni · 1 week ago

Application Cybersecurity Engineer

United States

Contract

Remote

Senior Level

7+ years exp

Soni is seeking a senior-level Application Cybersecurity Engineer to design, implement, and maintain security programs that protect their software applications, data, and systems from cyber threats. This role involves collaborating with technology leadership, leading application security operations, and managing security testing across the SDLC.

Human ResourcesRecruiting

Growth Opportunities

H1B Sponsor Likely

Responsibilities

Collaborate with technology leadership to define and execute application security strategy

Provide security guidance and consultation for new and existing application development initiatives

Lead application security operations, incident response, and investigations; communicate risks and findings to senior leadership

Serve as the primary liaison to the Managed Security Operations Center (SOC)

Identify, assess, and remediate application vulnerabilities using SAST, DAST, SCA, penetration testing, and threat modeling

Define and enforce secure development practices aligned with OWASP and NIST SSDF

Oversee security tooling for source code scanning, secrets detection, containers, Infrastructure-as-Code, runtime protection, and APIs

Conduct security assessments, audits, and compliance activities

Educate engineering teams on secure coding and application security best practices

Stay current on emerging threats, trends, and technologies and recommend improvements to security posture

Qualification

Application SecurityOWASPNIST SSDFCloud SecurityAWSAzureKubernetesCISSPCISMGIACAnalytical SkillsProblem-Solving SkillsCommunication Skills

Required

Bachelor's degree in Cybersecurity, Computer Science, or a related field

Proven experience as a Security Engineer utilizing OWASP and NIST SSDF frameworks

Strong knowledge of application, operating system, database, network, and cloud security

Ability to identify and explain vulnerabilities in modern application stacks including Java/Spring Boot, React, Node.js, .NET Core, Python, messaging platforms (e.g., Kafka), and relational databases

Hands-on experience with AWS, Azure, Windows Server, and Linux security

Strong experience supporting containerized applications, preferably Kubernetes within AWS (EKS)

Demonstrated experience securing APIs and modern web applications

Industry certifications such as CISSP, CISM, or GIAC

Excellent analytical, problem-solving, and communication skills

Preferred

Master's degree in Cybersecurity, Computer Science, or a related field

Advanced certifications such as CEH, OSCP, or CHFI

7–10+ years of total experience with 3–5+ years focused on Application Security or platform security

Experience with security tools such as Fortify, Burp Suite, SonarCloud, and Datadog

Familiarity with DevOps environments and CI/CD pipeline security (SAST/DAST integration)

Experience with IAM solutions (Okta) and eCommerce platforms (Magento preferred)

Knowledge of regulatory and compliance frameworks (e.g., GDPR, SOX)

Strong leadership, mentoring, project coordination, and vendor management skills

Experience with secure design patterns, threat modeling (STRIDE), and risk assessments

Company

Soni

Soni is a premier staffing & recruitment company that is disrupting the human capital management space.

New York, New York, USA

201-500 employees

https://soniresources.com

H1B Sponsorship

Soni has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2023 (1)

Funding

Current Stage

Growth Stage

Leadership Team

Sid Soni

Founder and CEO

Company data provided by crunchbase