Sr. Application Security Engineer

Job Description

Insight Global is looking for a Senior Application Security Engineer to support a government-focused vulnerability remediation program. This resource plays a critical role in helping our engineering teams design and build secure, resilient applications. In addition to hands-on product security, you'll support and influence our FedRAMP Moderate compliance efforts, ensuring our systems meet regulatory and security requirements while enabling fast, secure delivery. Candidates must be able to hit the ground running with little to no ramp up time.

Please Note: We may use artificial intelligence tools to assist with the screening, assessment, or selection of potential applicants for this position.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

Skills and Requirements

• 7-10+ years experience working in application or product security with a background in software development

• Strong technical knowledge of modern programming languages such as C#, Java, or Python

• Strong cloud security knowledge (Azure or AWS), including implementation of compliance-aligned controls

• Experience Supporting or implementing FedRAMP moderate or similar frameworks (NIST, ISO, etc) in a cloud environment

• Familiarity with security control implementation, documentation (SSPs) and audit processes

• Knowledge of continuous monitoring, vulnerability management, and evidence collection in compliance environments

• Excellent communication skills, with the ability to clearly articulate risk and security trade-offs to technical and non-technical stakeholders

• Experience with static and dynamic analysis tools, Atlassian suite and pentesting tools (Burp, sqlmap) - CISSP, CEH/OSCP certififcations