Job Description

Energy Solutions is seeking a Senior Application Security Engineer to manage security and risk on internally developed applications. The role focuses on execution and consulting, recommending and validating controls, and leading projects to secure platforms, with a strong emphasis on secure Django/Python patterns.

Responsibilities

• Contribute to application security roadmap
• Consult with engineers on security requirements
• Conduct pull request reviews
• Manage SAST/scanning and triage findings
• Build reference implementations in Django/Python
• Map SOC 2/NIST to engineering work
• Perform threat modeling and architecture documentation
• Oversee security tasks in SDLC
• Collaborate with developers
• Act as a liaison between business and development teams
• Participate in security architecture design reviews
• Recommend application security improvements
• Review code changes for security impact
• Ensure compliance with security policies
• Manage security related tickets

Requirements

• 5+ years of application security experience
• Django/Python experience with application security focus
• Engineering background with code review and PoC building skills
• Experience with GitHub security and static code scans
• Experience embedding secure SDLC into Git-based workflows
• Knowledge of SOC 2 and NIST 800-53
• Ability to operate across code, app, and DevOps
• Strong communication and prioritization skills
• Excellent time management and interpersonal skills

Benefits

• No benefits