Job Description
Overview
We are seeking a DevSecOps Engineer / Application Security Specialist to join our Enterprise Application Security team. This group is responsible for securing internally developed and vendor-based web and mobile applications across the organization.
This role is a mix of hands-on development and application security—partnering closely with engineering teams to identify vulnerabilities, review code, and drive secure remediation practices.
Key Responsibilities
• Perform security assessments of web and mobile applications
• Review source code and identify vulnerabilities
• Partner directly with developers to remediate security issues
• Analyze and prioritize findings from security tools
• Provide guidance on secure coding best practices
• Support API, runtime application, and mobile security initiatives
• Contribute to development efforts (~30–40% hands-on coding)
Additional Details
• Reason for opening: Backfill positions
• Interview process:
○ 1.5-hour panel interview (4 interviewers)
Focus on coding and application security concepts
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Required Skills & Experience
Required Qualifications
• 3+ years of experience in application security and/or software development
• Strong programming skills in Java, Python (preferred), or similar languages
• Hands-on experience with:
○ Secure coding practices
○ Application security (AppSec)
○ API security, mobile security, or runtime security
• Proven ability to communicate and collaborate with developers on vulnerability remediation
Nice to Have Skills & Experience
Preferred Qualifications
• Experience with security tools such as:
○ Checkmarx
○ SonarQube
○ Nexus IQ
○ Black Duck
○ Noname Security
• Experience working within DevSecOps environments
Experience Levels
• Senior role: 6+ years of experience (primary opening)
• Mid-level role: 3+ years of experience (second opening)
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.