Application Security Engineer
Company: Epsilon Strategy & Insights
Location: Schiller Park
Posted on: January 7, 2026
|
|
|
Job Description:
You will help to ensure the secure delivery of Epsilon’s
software applications by crafting and implementing secure coding
practices, conducting advanced security testing through application
security platforms, and collaborating with development teams to
ensure security is integrated throughout the development lifecycle.
You will be a core member of the application security team as a
contributor in the areas of secure software architecture and
design, web application vulnerability and remediation, and a
variety of tools used in secure development and testing. You will
provide support, guiding and advising multiple development teams to
develop secure applications and services in accordance with the
established application security policies and standards. Finally,
you will be responsible for recommending and guiding implementation
of modifications and enhancements to ensure the organization is
evolving with the threat landscape. By continuously improving and
expanding our security platforms and fostering strong collaborative
relationships, you will create a more secure, efficient, and
proactive development environment, ultimately ensuring the
integrity and safety of Epsilons software applications. What you’ll
Achieve • Perform code analysis of applications, manually and
through application security testing solutions, to identify
vulnerabilities. • Provide context and rationalization for
identified vulnerabilities. • Review and recommend remediation
actions for identified vulnerabilities. • Support security
architecture design reviews and threat modeling of our products. •
Improve the accessibility of security through automation,
vulnerability exception processing, embedding secure practices
within continuous integration pipelines, and other related
activities. • Build trust relationships with teams to effectively
achieve security goals. • Drive cross-disciplinary initiatives to
improve the security of our engineering ecosystem and products. •
Contribute to relevant security standards, processes, and other
formal documentation. • Collaborate with teams to ensure
understanding and compliance with relevant security policies,
standards and best practices. • Assist in onboarding new teams and
applications to security platforms. Who you Are • What you’ll bring
with you: o Minimum of 3 years of experience in related fields o
Direct experience in software development o Direct experience with
at least one CI/CD platform o Direct experience with application
testing (e.g., SAST, DAST, MAST, RAST, IAST) o Direct experience in
application vulnerability management processes o Working knowledge
of current software development methodologies o Working knowledge
of OWASP Top 10 and CWE 25 o Working knowledge of programming
languages and scripting o Working knowledge of software design
lifecycle o Working knowledge of web and app security stack (e.g.,
API security) o Working knowledge of cloud security concepts and
technologies o Working knowledge of authentication and
authorization flows in web applications o Basic understanding of
threat modeling o Basic understanding of network security (e.g ,
WAF, Micro-segmentation) o Basic understanding of cryptography
topics • Why you might stand out from other talent o Strong
collaboration o interpersonal, collaboration, written and verbal
communication skills o Excellent problem solving, critical thinking
skills o Ability to work independently and self-motivate
Keywords: Epsilon Strategy & Insights, Arlington Heights , Application Security Engineer, IT / Software / Systems , Schiller Park, Illinois
