Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy
Jobs / Job page
Application Security Engineer II image - Rise Careers
Job details

Application Security Engineer II

About Us

Data Analysis Incorporated (DAI) is the controlling entity of the O’Neil family of businesses. DAI and its subsidiaries operate in diverse industries worldwide, including global equity markets, health care, financial services, digital news, and insurance. Our global footprint allows our teams to be responsive to customer needs in a timely and efficient manner. We are dedicated to using technology and innovation to bring change and growth to our businesses. We believe in a dynamic workplace, creating engaging, informative products and services that help our customers succeed. Integrity is an essential characteristic for our firms and our associates 

Summary

The Application Security Engineer II plays a key role within the infrastructure team, working on 30% operational and 70% planned project work. This position requires a more advanced understanding of application security, with an emphasis on running and being responsible for ongoing security programs such as vulnerability management. You will work closely with other teams to ensure a strong security posture by implementing proactive security measures and remediating issues. You will also support and mentor junior engineers while contributing to the development and management of security policies and procedures.

Duties and Responsibilities

  • Lead the execution of security scans on applications and infrastructure, ensuring timely identification of vulnerabilities.
  • Take ownership of the vulnerability management program, ensuring continuous monitoring, reporting, and remediation of security risks.
  • Run static code analysis tools (e.g., Checkmarx) and collaborate with development teams to address security findings.
  • Manage and enhance application security tools and processes, integrating them into CI/CD pipelines and broader infrastructure operations.
  • Monitor web technologies, such as REST API services, for security vulnerabilities, and apply mitigations as needed.
  • Write and maintain scripts (Python, C#, JavaScript) to automate security checks and enhance security controls.
  • Serve as the point of contact for security incidents, managing detection, response, and post-incident analysis.
  • Regularly review and update security policies, standards, and documentation.
  • Collaborate with cross-functional teams to ensure security best practices are embedded throughout the software development lifecycle.
  • Stay informed about the latest security trends, vulnerabilities, and threats, and apply this knowledge to improve security processes.
  • Mentor and support junior engineers (Level 1) in day-to-day security tasks.

Qualifications & Requirements

  • Minimum 3-5 years of experience in application security or related roles.
  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent work experience).
  • Strong experience with vulnerability management tools and processes.In-depth knowledge of web technologies, including REST API services, and related security vulnerabilities.
  • Proficient in running static code analysis tools such as Checkmarx or equivalent.
  • Strong scripting abilities in Python, C#, and JavaScript, with an emphasis on automation and security tasking.
  • Advanced understanding of security monitoring, incident response, and risk management.
  • Strong organizational and multitasking abilities in a fast-paced, dynamic environment.
  • Industry certifications such as CISSP, CEH, or similar are preferred

Working Conditions

Must be able to perform the essential job duties.  Work is performed primarily in an office environment. Typically requires the ability to sit for extended periods of time (66%+ each work day), ability to hear the telephone, ability to enter data on a computer and may also require the ability to lift up to 10 pounds.

Equal Opportunity Employer


Data Analysis Inc is an equal opportunity employer. All aspects of employment including the decision to hire, promote, discipline, or discharge, will be based on merit, competence, performance, and business needs. We do not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law.

#LI-AW1

Average salary estimate

$95000 / YEARLY (est.)
min
max
$80000K
$110000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Application Security Engineer II, Data Analysis Incorporated

Are you ready to take your application security skills to the next level? Data Analysis Incorporated (DAI) is looking for an enthusiastic Application Security Engineer II to join our dynamic infrastructure team in the United States. In this crucial role, you'll spend 30% of your time on operational security tasks and a substantial 70% on exciting planned projects. Drawing from your advanced knowledge of application security, you will spearhead ongoing security programs like vulnerability management and collaborate with cross-functional teams to instill a robust security posture. Your mission includes executing detailed security scans, managing our vulnerability management program, and running static code analysis tools such as Checkmarx. Not only will you enhance application security processes, but you will also mentor junior engineers, ensuring they have the support and skills they need to succeed. You’ll engage with today's latest security challenges, analyze threats, and proactively develop security policies that elevate our operational integrity. If you're excited about automating security controls through scripting in Python, C#, or JavaScript and want to innovate in a workplace that values agility and integrity, then joining DAI as an Application Security Engineer II is the perfect opportunity for you to shine and truly make an impact!

Frequently Asked Questions (FAQs) for Application Security Engineer II Role at Data Analysis Incorporated
What are the key responsibilities of an Application Security Engineer II at Data Analysis Incorporated?

As an Application Security Engineer II at Data Analysis Incorporated, your primary responsibilities include executing application and infrastructure security scans, managing the vulnerability management program, and collaborating with development teams to remediate security findings. You'll also be involved in integrating application security tools within our CI/CD pipelines, mentoring junior engineers, and continuously monitoring for security vulnerabilities, ensuring that DAI maintains a strong security posture.

Join Rise to see the full answer
What qualifications are needed to become an Application Security Engineer II at DAI?

To qualify for the position of Application Security Engineer II at Data Analysis Incorporated, candidates need a minimum of 3-5 years of experience in application security or a related field, along with a Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or equivalent experience. Strong familiarity with vulnerability management tools, static code analysis, web technologies, and scripting languages like Python, C#, and JavaScript is essential for success in this role.

Join Rise to see the full answer
How does Application Security Engineer II contribute to overall security at DAI?

The Application Security Engineer II plays a vital role in protecting Data Analysis Incorporated's digital assets by executing security scans, managing vulnerabilities, and mentoring junior staff. By integrating security best practices into the software development lifecycle and collaborating with various teams, this role ensures vulnerabilities are promptly identified and mitigated, thus enhancing the organization's security posture and safeguarding sensitive customer data.

Join Rise to see the full answer
What tools and technologies are important for an Application Security Engineer II at DAI?

An Application Security Engineer II at Data Analysis Incorporated should be skilled with vulnerability management tools and static code analysis tools like Checkmarx. In addition, proficiency in scripting languages such as Python, C#, and JavaScript is crucial for automating security checks. Familiarity with web technologies, especially REST API services, is also necessary to identify and manage potential security vulnerabilities effectively.

Join Rise to see the full answer
What is the work environment like for an Application Security Engineer II at DAI?

The work environment for an Application Security Engineer II at Data Analysis Incorporated is primarily an office setting where you'll collaborate with teams across various projects. It's a fast-paced and dynamic atmosphere, requiring strong organizational skills as you manage multiple tasks. You will have the opportunity to engage regularly with peers, contributing to an engaging workplace aimed at innovation and security excellence.

Join Rise to see the full answer
Common Interview Questions for Application Security Engineer II
What experience do you have with vulnerability management in application security?

In this response, you should outline specific experiences where you have managed vulnerabilities, including tools you've used, processes you've implemented, and how you've collaborated with development teams to remediate issues. Highlight your organizational skills and any metrics that demonstrate your success in reducing vulnerabilities over time.

Join Rise to see the full answer
Can you explain the process of running a static code analysis?

When answering this question, explain the steps you take to run static code analysis tools, like setting up the environment, selecting the relevant code base, and interpreting the results. Mention any specific tools you've used, like Checkmarx, and how you ensure developers act upon the findings to improve security.

Join Rise to see the full answer
How do you stay updated on the latest security threats and vulnerabilities?

A good answer includes resources like industry publications, forums, and communities relevant to application security. You can also mention any certification updates or regular training you undertake to enhance your skills and knowledge. This shows that you are proactive about staying informed in the ever-evolving security landscape.

Join Rise to see the full answer
Describe a successful security project you've led in the past.

Highlight a project where you played a significant role in enhancing application security, detailing your objectives, the strategies you implemented, the challenges faced, and the measurable outcomes. Make sure to express how your leadership contributed to the project's overall success.

Join Rise to see the full answer
What scripting languages are you proficient in, and how have you used them for automation?

Share the scripting languages you are comfortable with, such as Python, C#, or JavaScript, and give specific examples of how you've used scripting to automate security checks or improve security processes. Discuss any scripts you've developed that have solved significant security challenges.

Join Rise to see the full answer
How do you handle security incidents when they occur?

In your response, describe your approach to incident management, emphasizing the importance of a well-defined process. Detail how you assess the situation, respond to threats, communicate with stakeholders, and conduct post-incident analysis to prevent future occurrences.

Join Rise to see the full answer
What strategies do you use to collaborate with development teams on security practices?

Discuss your approach to building strong relationships with development teams, including open communication, regular training sessions on security best practices, and integrating security tools into their workflows. Highlight the importance of collaboration and educating developers about secure coding practices.

Join Rise to see the full answer
Explain your experience with web technologies and associated security vulnerabilities.

Focus on your knowledge of web technologies like REST APIs and common vulnerabilities such as SQL Injection or Cross-Site Scripting (XSS). Provide examples of how you've identified and mitigated these vulnerabilities in previous roles.

Join Rise to see the full answer
How do you organize your tasks and manage time effectively in a fast-paced environment?

Share your time management strategies, such as utilizing task lists, prioritizing tasks based on urgency and impact, and reviewing your progress regularly. Emphasize the importance of flexibility and being adaptable to changing priorities.

Join Rise to see the full answer
What role does mentoring play in your work as an Application Security Engineer II?

Explain how you view mentoring as part of your responsibilities, discussing how sharing knowledge and supporting junior engineers not only aids their development but also strengthens the overall team's capabilities. Provide examples of successful mentoring experiences you've had.

Join Rise to see the full answer
Similar Jobs
Photo of the Rise User
Boeing Hybrid USA - Seattle, WA
VIEW
Posted 8 days ago
Photo of the Rise User
Visa Remote Ashburn
VIEW
Posted 5 days ago
Photo of the Rise User
Aston Carter Remote Boulder, Colorado, United States
VIEW
Posted 6 days ago
Photo of the Rise User
Salesforce Remote New York - New York City Metro - Remote
VIEW
Posted 4 days ago
Inclusive & Diverse
Rise from Within
Mission Driven
Diversity of Opinions
Work/Life Harmony
Feedback Forward
Take Risks
Collaboration over Competition
Medical Insurance
Dental Insurance
Vision Insurance
Paid Time-Off
Maternity Leave
Paternity Leave
Mental Health Resources
Life insurance
Disability Insurance
Health Savings Account (HSA)
Flexible Spending Account (FSA)
Employee Resource Groups

Join Salesforce as a Technical Architect Director to lead strategic initiatives and support enterprise customers in leveraging the Salesforce platform.

Photo of the Rise User
Finalis Remote No location specified
VIEW
Posted 11 days ago
G
General Dynamics Mission Systems, Inc Hybrid CO-Schriever AFB
VIEW
Posted 13 days ago
Photo of the Rise User
Noblis Remote San Diego
VIEW
Posted 3 days ago

Noblis is looking for a Configuration Management Specialist to provide essential support in shipboard technology integration for the US Navy.

Photo of the Rise User
Visa Remote Foster City
VIEW
Posted 5 days ago
Photo of the Rise User Data Analysis Incorporated

1 jobs
MATCH
Calculating your matching score...
FUNDING
DEPARTMENTS
SENIORITY LEVEL REQUIREMENT
INDUSTRY
TEAM SIZE
HQ LOCATION
EMPLOYMENT TYPE
Full-time, on-site
DATE POSTED
March 31, 2025

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!
Show me relevant jobs ASK RISA ✨
ABOUT RISE
FOR COMPANIES
REMOTE JOBS & MORE
LOOKING FOR A JOB?
FIND A JOB NEAR ME
POPULAR JOBS
Rise logo
Privacy Policy and Terms of Service
© 2021 Work Rise LLC. All rights reserved.
Proudly made in NYC.
CONNECT
Facebook Instagram LinkedIn Tiktok