Pearl Consulting Group
Application Security Engineer
Pearl Consulting Group, Chicago, Illinois, United States, 60290
Job Title:
Application Security Engineer
Location:
Chicago - Remote
About UsAt Pearl Consulting Group, we are committed to doing what’s right by focusing on People, Culture, and Technology. Our diverse, multi-generational team collaborates closely with clients to create tailored, transformative solutions. Specializing in Organizational Change Management, Program/Project Management, Cloud Collaboration, and Solution Design and Delivery, we address unique organizational challenges with meticulous attention to detail and personalized service. Join us to be part of a team that values excellence, innovation, and collaboration in every project, helping businesses navigate digital transformation and achieve sustainable growth.
Job Description:We are seeking a skilled and motivated Application Security Engineer to join our dynamic team. In this role, you will be responsible for ensuring the security and integrity of our clients' applications. You will work closely with development and DevOps teams to integrate security into the software development lifecycle, manage vulnerabilities, and respond to security incidents. The ideal candidate will have a strong background in DevOps, offensive security, and incident response.
Key Responsibilities:
Develop and maintain a comprehensive vulnerability management program.Conduct regular vulnerability assessments and penetration tests on applications.Identify, document, and prioritize vulnerabilities, and work with development teams to remediate them.Collaborate with DevOps teams to integrate security tools and practices into CI/CD pipelines.Implement automated security testing and monitoring solutions.Provide guidance on secure coding practices and assist in code reviews.Perform threat modeling and security assessments of applications and infrastructure.Simulate and execute offensive security techniques to identify potential security weaknesses.Stay current with the latest attack techniques and security trends.Respond to security incidents, conduct root cause analysis, and implement corrective actions.Develop and maintain incident response plans and playbooks.Coordinate with internal and external stakeholders during security incidents.Conduct security training sessions for developers and other staff.Promote security awareness and best practices within the organization.
Qualifications:
Bachelors degree in Computer Science, Information Security, or related field. Significant experience will be considered in lieu of a degree.Proven experience in application security, vulnerability management, and incident response.Strong background in DevOps and familiarity with CI/CD pipelines and tools, (e.g., Jenkins, GitLab, Docker).Experience with offensive security techniques, including penetration testing and red teaming.Knowledge of security frameworks and standards, (e.g., OWASP, NIST, ISO 27001).Proficiency in scripting and programming languages, (e.g., Python, JavaScript, Java).Strong analytical and problem-solving skills.Excellent communication and collaboration skills.
Bonus Qualifications:
Relevant certifications such as OSCP, CISSP, CEH, or similar.Experience with cloud security, (e.g., AWS, Azure, Google Cloud).Familiarity with container security and orchestration tools, (e.g., Kubernetes).Interest or experience in applying AI within application security.
Benefits of Working at Pearl Consulting Group:
Competitive salary and full benefits.Flexible working hours and remote work options.Professional development opportunities.Collaborative and supportive work environment.
Application Security Engineer
Location:
Chicago - Remote
About UsAt Pearl Consulting Group, we are committed to doing what’s right by focusing on People, Culture, and Technology. Our diverse, multi-generational team collaborates closely with clients to create tailored, transformative solutions. Specializing in Organizational Change Management, Program/Project Management, Cloud Collaboration, and Solution Design and Delivery, we address unique organizational challenges with meticulous attention to detail and personalized service. Join us to be part of a team that values excellence, innovation, and collaboration in every project, helping businesses navigate digital transformation and achieve sustainable growth.
Job Description:We are seeking a skilled and motivated Application Security Engineer to join our dynamic team. In this role, you will be responsible for ensuring the security and integrity of our clients' applications. You will work closely with development and DevOps teams to integrate security into the software development lifecycle, manage vulnerabilities, and respond to security incidents. The ideal candidate will have a strong background in DevOps, offensive security, and incident response.
Key Responsibilities:
Develop and maintain a comprehensive vulnerability management program.Conduct regular vulnerability assessments and penetration tests on applications.Identify, document, and prioritize vulnerabilities, and work with development teams to remediate them.Collaborate with DevOps teams to integrate security tools and practices into CI/CD pipelines.Implement automated security testing and monitoring solutions.Provide guidance on secure coding practices and assist in code reviews.Perform threat modeling and security assessments of applications and infrastructure.Simulate and execute offensive security techniques to identify potential security weaknesses.Stay current with the latest attack techniques and security trends.Respond to security incidents, conduct root cause analysis, and implement corrective actions.Develop and maintain incident response plans and playbooks.Coordinate with internal and external stakeholders during security incidents.Conduct security training sessions for developers and other staff.Promote security awareness and best practices within the organization.
Qualifications:
Bachelors degree in Computer Science, Information Security, or related field. Significant experience will be considered in lieu of a degree.Proven experience in application security, vulnerability management, and incident response.Strong background in DevOps and familiarity with CI/CD pipelines and tools, (e.g., Jenkins, GitLab, Docker).Experience with offensive security techniques, including penetration testing and red teaming.Knowledge of security frameworks and standards, (e.g., OWASP, NIST, ISO 27001).Proficiency in scripting and programming languages, (e.g., Python, JavaScript, Java).Strong analytical and problem-solving skills.Excellent communication and collaboration skills.
Bonus Qualifications:
Relevant certifications such as OSCP, CISSP, CEH, or similar.Experience with cloud security, (e.g., AWS, Azure, Google Cloud).Familiarity with container security and orchestration tools, (e.g., Kubernetes).Interest or experience in applying AI within application security.
Benefits of Working at Pearl Consulting Group:
Competitive salary and full benefits.Flexible working hours and remote work options.Professional development opportunities.Collaborative and supportive work environment.