Application Security​/DevSecOps Engineer

Position Overview

Our client is looking to build out their Dev Sec Ops  team and will focus on a 3‑5 year roadmap. They need an engineer who can come onsite in a hybrid capacity, max 2 days onsite in downtown Chicago, IL per week. The role is a long‑term contract and candidates are actively being reviewed. The client will migrate from Azure ADO to Git Hub for CI/CD, so experience with a similar migration would be ideal.

• SAST / SCA technologies:
  Checkmarx is in the environment (not mandated)
• Deploying Security controls and frameworks for secure pipelines (Azure Dev Ops or Git Hub preferred)
• Apply OWASP (e.g., Top 10, ASVS) and MITRE ATT&CK/CWE frameworks to evaluate and communicate threats and control gaps

The client is revamping their Dev Ops practice and building a future state 3‑5 year roadmap. Within this roadmap they will migrate from Azure ADO to Git Hub for CI/CD. During this maturity program they are hiring a Dev Sec Ops  Engineer to ensure a security‑first mindset. This resource will work under the Security Team assisting in building the framework and self‑service model for Dev Ops Engineers.

This includes but is not limited to:

• Champion Secure‑by‑Design and Defense‑in‑Depth principles throughout the software development lifecycle
• Apply OWASP (e.g., Top 10, ASVS) and MITRE ATT&CK/CWE frameworks to evaluate and communicate threats and control gaps
• Code review
• SAST and SCA auditing
• CNAPP auditing
• Integration of scanning tools into the CI/CD pipeline
• Act as SME in various cross‑functional team calls
• Prioritize backlog and sprint selection for security items

The Application Security Engineer plays a crucial role in overseeing the security of development operations (Dev Sec Ops ) for the organization. Reporting directly to the Deputy CISO and maintaining key relationships with the Development Operations and IT Operations teams, this role provides engineering, analytical and operational expertise across a range of AWS and Azure services and other cloud‑based security solutions.

• Security oversight of the continuous delivery, continuous integration (CI/CD) pipeline
• Combination of static and dynamic application security testing (SAST/DAST) to identify code bugs and application issues
• Software composition analysis (SCA) to track all open‑source components in the developer's code base
• Threat modeling to identify architectural design faults and potentially exposed targets of attack
• Evaluate and advise on service deployment into a microservices architecture (Kubernetes), and operational functions relative to security best practices and compliance requirements
• Maintain security issue tracking and reporting using Azure Dev Ops (ADO) currently prior to moving to Git Hub
• Develop and maintain documentation of target state designs and security roadmaps

Application security, penetration testing

• Prefer experience in reading/reviewing .NET / C#, JavaScript / Type Script
• Azure or AWS Cloud
• Azure Dev Ops or similar SCM / bug tracking
• SAST / SCA technologies
• CNAPP or other cloud posture tools (CSPM)
• Manual security testing (pen testing) of web applications (burp suite)

• Checkmarx (largely going through and auditing, not as much configuration; preferred but not mandatory)
• CNAPP or CSPM tools in place:
  Prisma (e.g., Prisma Cloud)
• Common AWS services: EKS, Kubernetes experience is a bonus

Expert Level

This is a contract position based out of Chicago, IL.

• $10.00 - $10.00/hr
• Benefits include medical, dental & vision; critical illness, accident, and hospital; 401(k) retirement plan before/after tax; life insurance; short and long‑term disability; health spending account (HSA); transportation benefits; employee assistance program; time off/leave (PTO, vacation or sick leave)

Hybrid position in Chicago, IL.

The position is anticipated to close on Feb 16, 2026.

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in full‑stack technology services, talent services, and real‑world application, we work with progressive leaders to drive change.

That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.