Senior Application Security Engineer
3 weeks ago
Penn Interactive (PI) is an interactive gaming company headquartered in Philadelphia. PI is the digital arm of PENN Entertainment (NASDAQ: PENN), the largest regional casino operator in the U.S.). Our mission is to challenge the norms of the gaming industry by building an immersive interactive gaming experience that is responsible, innovative, and fun. We are committed to helping our team members grow and succeed. We believe that hiring talented individuals that love what they do will help us win
About the Role & TeamAs part of the theScore team, you will be working with a team of smart, friendly, and dedicated Engineers, Product Managers and Designers determined to deliver some of the best apps the market has to offer. We want you to be challenged and to get the full experience of what it's like to work at theScore We are looking for an Application Security Engineer to join our Application Security team, to work cross-functionally across engineering. They are also a sister team to the Site Reliability Engineering team. This role will be responsible for designing, servicing, and implementing security measures to secure theScore's software systems, applications, code, and any related components.
About the Work
- Collaborate with release and change management, SRE, Engineering, and compliance teams
- Work with security/internal/external/state auditors to demonstrate compliance
- Maintain a working knowledge of OWASP top 10 and MITRE top 25 CWE
- Develop standards for security tooling focused on the application layer (SAST, DAST, SCA, MAST, RASP)
- Build/implement secure artifact workflows in the SDLC to ensure governance and compliance standards are being met
- Create technical approaches to implementing Application Security control technologies
- Contribute to theScore's Application Security program to support our continued growth
- Define and report on security metrics, their delivery, and improvements
- Work with service teams to conduct threat models of theScore's internal and customer facing applications
- Assist service teams in understanding and remediating security findings (code bashing)
- Other duties as required.
- 3+ years of Application Security or DevSecOps experience
- 2+ years of GCP or AWS experience
- Experience with software supply chain security (SBOMs, Artifact Signing, Attestations)
- Programming experience in Python or Go
- Experience with implementing security tooling in CI/CD
- Experience supporting RESTful APIs and securing containerized workloads (GKE, EKS)
- Experience working in regulated environments (PCI-DSS, SOC 2, etc)
#LI-HYBRID
Check out our LinkedIn page
Recently being recognized as a top workplace in the United States, we believe people work their best when they can be themselves. We are looking for hungry, innovative thinkers to help us challenge the status quo of the gaming industry. Diversity, equity, and inclusion are vital to all of our processes, programs, and structures. Your story, who you are, and your experience matter here.
-
Senior Application Security Engineer
2 weeks ago
Philadelphia, United States Penn Interactive Full timePenn Interactive (PI) is an interactive gaming company headquartered in Philadelphia. PI is the digital arm of PENN Entertainment (NASDAQ: PENN), the largest regional casino operator in the U.S.). Our mission is to challenge the norms of the gaming industry by building an immersive interactive gaming experience that is responsible, innovative, and fun. We...
-
Senior Security Engineer
2 days ago
Philadelphia, United States Unisys Full timeReference #: REQ531956 We Believe in Better! We are a global information technology company that builds high-performance, security-centric solutions that can help change the world. Enhancing people's lives through secure, reliable advanced technology is our vision. At Unisys, we believe in better! Here, you have the opportunity to learn new skills, apply...
-
Senior Information Security Engineer
1 week ago
Philadelphia, United States Yoh, A Day & Zimmermann Company Full timeJob Title: Senior Information Security Engineer Location: Remote, United States Position Type: Full-time US Citizenship required - Must be able to obtain a Security ClearanceJob Description: As part of our dedication to excellence, we prioritize the security and integrity of our systems and data, and we are seeking a talented Information Security Engineer to...
-
Senior Information Security Engineer
1 week ago
Philadelphia, United States Yoh, A Day & Zimmermann Company Full timeJob Title: Senior Information Security Engineer Location: Remote, United States Position Type: Full-time US Citizenship required - Must be able to obtain a Security ClearanceJob Description: As part of our dedication to excellence, we prioritize the security and integrity of our systems and data, and we are seeking a talented Information Security Engineer to...
-
Senior Project Engineer
4 days ago
Philadelphia, United States Insight Global Full timeCompensation: $112,000 to $135,000 per year annual salary. Exact compensation may vary based on several factors, including skills, experience, and education. "Benefit packages for this role may include healthcare insurance offerings and paid leave as provided by applicable law." Required Skills and Experience * Bachelor of Science degree in civil or...
-
Threat Backend Engineer
2 weeks ago
Philadelphia, United States Obsidian Security Full timeAbout Us: Obsidian Security was founded in 2017 to solve the unaddressed blindspot of SaaS Security. SaaS applications provide the tools employees need to succeed and hold the business’ most critical information. If those tools become unavailable or that data is jeopardized, there is a detrimental impact on the organization. Obsidian proudly offers the...
-
Threat Backend Engineer
3 days ago
Philadelphia, United States Obsidian Security Full timeAbout Us: Obsidian Security was founded in 2017 to solve the unaddressed blindspot of SaaS Security. SaaS applications provide the tools employees need to succeed and hold the business’ most critical information. If those tools become unavailable or that data is jeopardized, there is a detrimental impact on the organization. Obsidian proudly offers the...
-
Threat Backend Engineer
3 weeks ago
Philadelphia, United States Obsidian Security Full timeJob DescriptionJob DescriptionAbout Us:Obsidian Security was founded in 2017 to solve the unaddressed blindspot of SaaS Security. SaaS applications provide the tools employees need to succeed and hold the business’ most critical information. If those tools become unavailable or that data is jeopardized, there is a detrimental impact on the...
-
Senior Project Engineer
5 days ago
Philadelphia, United States Insight Global Full timeCompensation:$112,000 to $135,000 per year annual salary.Exact compensation may vary based on several factors, including skills, experience, and education."Benefit packages for this role may include healthcare insurance offerings and paid leave as provided by applicable law." Required Skills and Experience *Bachelor of Science degree in civil or mechanical...
-
Senior Project Engineer
5 days ago
Philadelphia, United States Insight Global Full timeCompensation:$112,000 to $135,000 per year annual salary.Exact compensation may vary based on several factors, including skills, experience, and education."Benefit packages for this role may include healthcare insurance offerings and paid leave as provided by applicable law." Required Skills and Experience *Bachelor of Science degree in civil or mechanical...
-
Network Security Engineer
4 weeks ago
Philadelphia, United States Yoh, A Day & Zimmermann Company Full timeJob Title: Network Security EngineerUS Citizens only (need to be able to obtain a security clearance)6 month + contract to perm We are seeking a Network / Security Engineer, in Remote, US. This position will be responsible for on-going maintenance and management of our network, firewall and related hardware and software that secures the organization's...
-
Network Security Engineer
4 weeks ago
Philadelphia, United States Yoh, A Day & Zimmermann Company Full timeJob Title: Network Security EngineerUS Citizens only (need to be able to obtain a security clearance)6 month + contract to perm We are seeking a Network / Security Engineer, in Remote, US. This position will be responsible for on-going maintenance and management of our network, firewall and related hardware and software that secures the organization's...
-
Network Security Engineer
4 weeks ago
Philadelphia, United States Yoh, A Day & Zimmermann Company Full timeJob Title: Network Security EngineerUS Citizens only (need to be able to obtain a security clearance)6 month + contract to perm We are seeking a Network / Security Engineer, in Remote, US. This position will be responsible for on-going maintenance and management of our network, firewall and related hardware and software that secures the organization's...
-
Cyber Security Engineer
6 days ago
Philadelphia, United States Insight Global Full timeInsight Global Health is searching for a Cyber Security Engineer to work hybrid on site in Philadelphia, PA! Must-haves - Well-rounded cybersecurity experience in any of the following areas: IR, IDS, IPS, threat hunting, vulnerability assessments, GRC, engineering, security awareness, etc. - Experience supporting multiple platforms, applications, and LOBs ...
-
Cyber Security Engineer
2 weeks ago
Philadelphia, United States Insight Global Full timeInsight Global Health is searching for a Cyber Security Engineer to work hybrid on site in Philadelphia, PA! Must-haves - Well-rounded cybersecurity experience in any of the following areas: IR, IDS, IPS, threat hunting, vulnerability assessments, GRC, engineering, security awareness, etc. - Experience supporting multiple platforms, applications, and LOBs ...
-
Cyber Security Engineer
2 weeks ago
Philadelphia, United States Insight Global Full timeInsight Global Health is searching for a Cyber Security Engineer to work hybrid on site in Philadelphia, PA! Must-haves - Well-rounded cybersecurity experience in any of the following areas: IR, IDS, IPS, threat hunting, vulnerability assessments, GRC, engineering, security awareness, etc. - Experience supporting multiple platforms, applications, and LOBs ...
-
Principal Backend Engineer Threat
4 weeks ago
Philadelphia, United States Obsidian Security Full timeJob DescriptionJob DescriptionAbout Us:Obsidian Security was founded in 2017 to solve the unaddressed blindspot of SaaS Security. SaaS applications provide the tools employees need to succeed and hold the business' most critical information. If those tools become unavailable or that data is jeopardized, there is a detrimental impact on the organization....
-
Information Security Engineer
2 days ago
Philadelphia, United States Insight Global Full timeDay-to-Day:A large healthcare system is looking to hire an Info Security Engineer in the North Philadelphia location. The role is hybrid Monday/Friday WFH and Tuesday-Thursday in the office. This person is on a small team responsible for mitigating the risk of the health systems' vulnerability to cybersecurity attacks through the management of the SIEM tool....
-
Information Security Engineer
2 days ago
Philadelphia, United States Insight Global Full timeDay-to-Day:A large healthcare system is looking to hire an Info Security Engineer in the North Philadelphia location. The role is hybrid Monday/Friday WFH and Tuesday-Thursday in the office. This person is on a small team responsible for mitigating the risk of the health systems' vulnerability to cybersecurity attacks through the management of the SIEM tool....
-
Senior System Engineer
4 days ago
Philadelphia, United States Insight Global Full timeLocation: Hybrid in Philadelphia, PA Salary: $125-135k/yr - DIRECT HIRE (Benefits/PTO) The Senior Enterprise Systems Engineer will be a senior member of the firms Enterprise Systems team which is responsible for the firms enterprise applications and endpoint management. This role will have a focus on enterprise applications, including the firms document...