Application Security Engineer

About Company,

Droisys is an innovation technology company focused on helping companies accelerate their digital initiatives from strategy and planning through execution. We leverage deep technical expertise, Agile methodologies, and data-driven intelligence to modernize systems of engagement and simplify human/tech interaction.

Amazing things happen when we work in environments where everyone feels a true sense of belonging and when candidates have the requisite skills and opportunities to succeed. At Droisys, we invest in our talent and support career growth, and we are always on the lookout for amazing talent who can contribute to our growth by delivering top results for our clients. Join us to challenge yourself and accomplish work that matters.

Application Security Developer

Sacramento, CA 95814-Onsite

Rate Range $70 to $75 hr C2C or $60 to $62 hr W2 All Inc but flexible

Required Skills: Application Security: Intermediate NIST Cyber Security Framework: Foundation Security And Privacy By Design: Foundation Threat modeling, security by design: Foundation

Role Description
: The candidate will drive secure practices for application security development, proactively identify and remediate vulnerabilities, and support the team in aligning with government and industry security standards. The ideal candidate should have robust background in cybersecurity delivery for government agencies and hands-on experience with leading security tools.

Key Responsibilities:

• Serve as the functional lead overseeing security design and assessment of application changes and cloud security solutions for client projects Evaluate, design, and implement security controls in alignment with government security requirements and best practices.
• Hands on experience with Fortify, Snyk, Invicti, and BurpSuite, ensuring comprehensive scanning, remediation, and reporting.
• Provide expert guidance on secure solution architecture within AWS, supporting large-scale deployments for regulated environments. Conduct risk assessments, code reviews, penetration testing, and ensure ongoing compliance with federal and state standards.
• Knowledge of secure coding in Java, C++, C, and JavaScript specifically for vulnerability identification and remediation.
• Strong cross-team communication: prior client-facing roles, stakeholder engagement, and direct SDLC integration.

Droisys is an equal opportunity employer. We do not discriminate based on race, religion, color, national origin, gender, gender expression, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by law. Droisys believes in diversity, inclusion, and belonging, and we are committed to fostering a diverse work environment.