Security Application Engineer II

About Us

Founded in 1973, O’Neil Digital Solutions (ODS) is a leading IT consulting firm specializing in the optimization of complex end-to-end business process systems for a multitude of business verticals including Financial Services, Digital Media, Healthcare, and Transportation industries. ODS provides high-touch bespoke software engineering, systems integration, and infrastructure management services to clients of all sizes and industries. From large scale mass communication projects to highly secure and confidential data analytics using Big Data frameworks like Hadoop and AWS Redshift, ODS has a broad set of proven technical capabilities that help companies make complex digital transformations. ODS offers state of the art publishing solutions through our customer-centric applications and services include electronic document delivery, web applications, high-speed digital printing (color and black & white), automated composition, offset printing, warehousing and fulfillment services. ODS is headquartered in Los Angeles, CA and also has offices/plants in Texas and North Carolina centrally located to serve clients across the country.

Summary

The Application Security Engineer II plays a key role within the infrastructure team, working on 30% operational and 70% planned project work. This position requires a more advanced understanding of application security, with an emphasis on running and being responsible for ongoing security programs such as vulnerability management. You will work closely with other teams to ensure a strong security posture by implementing proactive security measures and remediating issues. You will also support and mentor junior engineers while contributing to the development and management of security policies and procedures.

Duties and Responsibilities

• Lead the execution of security scans on applications and infrastructure, ensuring timely identification of vulnerabilities.
• Take ownership of the vulnerability management program, ensuring continuous monitoring, reporting, and remediation of security risks.
• Run static code analysis tools (e.g., Checkmarx) and collaborate with development teams to address security findings.
• Manage and enhance application security tools and processes, integrating them into CI/CD pipelines and broader infrastructure operations.
• Monitor web technologies, such as REST API services, for security vulnerabilities, and apply mitigations as needed.
• Write and maintain scripts (Python, C#, JavaScript) to automate security checks and enhance security controls.
• Serve as the point of contact for security incidents, managing detection, response, and post-incident analysis.
• Regularly review and update security policies, standards, and documentation.
• Collaborate with cross-functional teams to ensure security best practices are embedded throughout the software development lifecycle.
• Stay informed about the latest security trends, vulnerabilities, and threats, and apply this knowledge to improve security processes.
• Mentor and support junior engineers (Level 1) in day-to-day security tasks.

Qualifications & Requirements

• Minimum 3-5 years of experience in application security or related roles.
• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent work experience).
• Strong experience with vulnerability management tools and processes.In-depth knowledge of web technologies, including REST API services, and related security vulnerabilities.
• Proficient in running static code analysis tools such as Checkmarx or equivalent.
• Strong scripting abilities in Python, C#, and JavaScript, with an emphasis on automation and security tasking.
• Advanced understanding of security monitoring, incident response, and risk management.
• Strong organizational and multitasking abilities in a fast-paced, dynamic environment.
• Industry certifications such as CISSP, CEH, or similar are preferred

Working Conditions

Must be able to perform the essential job duties.  Work is performed primarily in an office environment. Typically requires the ability to sit for extended periods of time (66%+ each work day), ability to hear the telephone, ability to enter data on a computer and may also require the ability to lift up to 10 pounds.

Equal Opportunity Employer

O'Neil Global Advisors is an equal opportunity employer. All aspects of employment including the decision to hire, promote, discipline, or discharge, will be based on merit, competence, performance, and business needs. We do not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law.