Application Security Engineer
About The Position
As a family company, we serve people and communities. When you work at Meijer, you’re provided with career and community opportunities centered around leadership, personal growth and development. Consider joining our family – take care of your career and your community! Meijer Rewards Weekly pay Scheduling flexibility Paid parental leave Paid education assistance Team member discount Development programs for advancement and career growth Please review the job profile below and apply today! The IT Application Security Engineer is adept at secure application design, threat modeling, and secure coding practices. The position assists software development teams in designing, creating, and implementing secure solutions by ensuring security checks are followed at each step of the software development life cycle (SDLC). This role will define and communicate application security standards to relevant stakeholders. Additionally, this role will identify security knowledge gaps and provide curated security training content to address these gaps. This job profile is not meant to be all inclusive of the responsibilities of this position. May perform other duties as assigned or required.
Requirements
- Bachelor’s or 4 years' experience (or comparable combination of education and related experience).
- Familiarity with application development, scripting, or secure coding.
- Knowledge of common application architectures and the relative risks associated with them (e.g. single page apps, client-server, native mobile, microservices).
- Foundational knowledge of security practices in one or more applied contexts, e.g. networking, cloud infrastructure, containerization, operations, audit, or governance.
- Knowledge of relevant technology, tools, databases, and development techniques.
- Strong focus on team dynamics and interpersonal relationships.
- Strong sense of task ownership with consistent follow-through.
- Ability to anticipate risks and devise solutions with limited information or context.
- Excellent project management, organization, and team collaboration skills.
- Curiosity to learn.
- Capable of defining and measuring key performance indicators
- Able to work cross-functionally with IT and business partners across all areas of Meijer and vendor partners.
- Adaptive, flexible, and responsive to challenges.
- Awareness of how security controls influence both internal stakeholders and Meijer customers.
Nice To Haves
- Agile/Scrum, SAFe, or Lean certification preferred.
- SANS/GIAC, CompTIA, ISC2 or other applicable industry certifications are a plus.
Responsibilities
- Develop and provide presentations on application security topics to both technical and non-technical audiences, including leadership.
- Facilitate third-party penetration tests, triage findings, and create remediation plans with development teams.
- Provide tailored remediation guidance to software developers to address security findings.
- Provide architectural and security guidance for third-party platforms and services as they integrate into Meijer environments and/or code.
- Review the security of third-party/open-source software used by Meijer.
- Provide risk-based analysis of security posture to drive business decisions.
- Foster relationships with key business partners to create a culture of security and achieve prioritization of security initiatives.
Benefits
- Weekly pay
- Scheduling flexibility
- Paid parental leave
- Paid education assistance
- Team member discount
- Development programs for advancement and career growth
- medical
- dental
- vision
- life insurance
- a 401(k) plan with employer match
- disability leave
- paid time off (PTO)
- paid parental leave
- paid education assistance (including free education)
- a childcare subsidy
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
