Software Security Engineer

Location:

Southlake, TX (On-site with 1 day remote). Alternative options:
Omaha, NE, or Orlando, FL.

Salary: $70.00 – $75.00 USD per hour
.

Description: Our client is currently seeking a Software Security Engineer to work for a 12‑month contract, with the possibility of extension, as part of the Cybersecurity Services division. The Application Security team operates under the Chief Information Security Officer (CISO) and is responsible for protecting enterprise information assets, establishing and evolving the Secure Software Development Program, and guiding development teams on secure coding practices.

• Strengthen the software development lifecycle (SDLC) by integrating security controls, frameworks, and best practices.
• Partner closely with development teams to provide security architecture guidance, triage vulnerabilities, and advise on effective remediation strategies.
• Utilize and scale enterprise application security tools, including SAST, SCA, threat modeling tools, and secrets management solutions.
• Analyze and interpret security data from distributed systems to provide engineering teams with clear, actionable insights.
• Conduct software security scanning, threat modeling, and architectural risk assessments to identify and mitigate defects prior to production deployment.
• Promote a culture of security by educating and mentoring developers and testers on secure coding practices and industry-standard security frameworks.

• Bachelor’s degree in Computer Science, Information Security, a related technical field, or equivalent practical experience.
• Prior engineering experience within a dedicated Software Security Assurance or Application Security team.
• Application engineering background with a strong understanding of secure software design principles, secure coding practices, code review processes, and security requirements analysis.
• Minimum of 2 years of hands‑on experience working with Static Application Security Testing (SAST) or threat modeling tools.
• Practical experience with a range of application security tools, including Software Composition Analysis (SCA) and secrets management solutions.
• Deep familiarity with common application vulnerabilities (e.g., OWASP Top 10), attack vectors, and remediation strategies.
• Familiarity with recognized industry security frameworks and standards such as OWASP, CIS, and NIST.

• Experience integrating application security testing tools directly into Agile development environments and modern CI/CD pipelines.
• Proven track record of implementing, managing, and scaling enterprise-level application security tools, services, and controls.
• Strong analytical skills, including the ability to interpret large volumes of distributed security data and translate it into clear, actionable insights for engineering teams.
• Experience performing architectural risk assessments and threat modeling on complex systems.
• Excellent collaboration and communication skills, with a proven ability to partner effectively with development teams to balance robust security requirements with engineering innovation.