Application Security Engineer (Remote)

Responsibilities:Provide application security support to development teams, including reviewing and explaining application security tools and processes, providing vulnerability explanations and remediation guidance, and performing basic configuration of scans.Experience with AppSec tools such as Static Application Security Tests (SAST), Dynamic Application Security Testing (DAST) and Software Composition Analysis (SCA).Working with the application teams to ensure that application security risks are effectively identified using market leading commercial and open-source tools (SAST, DAST, SCA etc.).Provide vulnerability remediation and mitigation guidance that maintains a balance between security and business objectives.Functional understanding in tooling integrations that support agile, CI/CD, and DevSecOps methodologies.Must have a mindset of continuous improvement of people, processes and technology.Engage with product owners, project managers and developers to conduct security reviews, identify risks and conform to organizational remediation/mitigation timelines.Mentor junior team members and act as a subject matter expert for application security issues.Support compliance programs - PCI, NIST CSF, ISO 27001, and SOX via the development, implementation and governance of common controls for products and infrastructure.Requirements:Bachelor’s Degree in Software Engineering, Computer Science, Cybersecurity, or related field is preferred.2+ years of relevant experience in Application Security or secure development.Experience with modern programming languages such as Java, JavaScript, C#, Swift, Kotlin, and/or Python.Working knowledge of cloud native security best practices (AWS, Azure, containers, Kubernetes, etc.)Able to work both independently as well with development teams and multi-task effectively.Excellent written and oral communication skills, as well as social skills including the ability to articulate to both technical and non-technical audiences.Relevant professional certifications preferred (e.g. CISSP, CSSLP, Security+, CASE, etc.)System One, and its subsidiaries including Joulé, ALTA IT Services, CM Access, TPGS, and MOUNTAIN, LTD., are leaders in delivering workforce solutions and integrated services across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible full-time employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.