Application Security Engineer Jobs in San Jose, CA

JOB TITLE: Senior Security Engineer

TOP 3 SKILLS:

- 9+ years experience in Cybersecurity/Security Engineering
- Must be hands conducting red team activity
- CISSP certified

LOCATION: San Jose, CA (100% onsite)

DURATION: 6+ months (possibility for long term)

RATE RANGE: $65.00/hour to $80.00/hour

Position Summary:

We are seeking a Senior Security Engineer with strong hands-on experience across modern enterprise security platforms and architectures. This role will be responsible for designing, implementing, and continuously improving security controls to strengthen both internal and external security posture, with a focus on SaaS integrations and third-party risk.

Key Responsibilities

Security Engineering & Architecture:

- Design and implement security solutions across enterprise environments, including endpoint, identity, data protection, and vulnerability management
- Evaluate and integrate security controls for third-party SaaS platforms
- Partner with IT, infrastructure, and application teams to embed security into system design and deployment
- Drive improvements aligned to Zero Trust and least privilege principles

Security Operations & Threat Management:

- Independently review and analyze security logs across multiple platforms
- Perform alert triage, investigation, and escalation as needed
- Conduct proactive threat hunting activities to identify suspicious or malicious behavior
- Identify, validate, and respond to security incidents with minimal oversight

Offensive Security / Red Teaming:

- Perform red team / adversary simulation exercises to test detection and response capabilities
- Identify gaps in controls, detections, and processes
- Experience monitoring and analyzing dark web and underground forums for threat intelligence, including credential exposure, data leaks, and targeting of critical infrastructure or enterprise assets
- Provide actionable recommendations to strengthen defenses based on findings

Platform Ownership & Operations:

- Administer and optimize:
- CrowdStrike (EDR/XDR)
- Okta (Identity & Access Management)
- Varonis (Data Security / Governance)
- Nessus (Vulnerability Management)
- AlienVault
- Palo Alto Firewall / Zscaler
- Monitor, analyze, and remediate vulnerabilities and security findings
- Maintain secure configurations and operational procedures

Automation & Scripting:

- Develop scripts and automation to streamline security operations
- Integrate workflows across security tools to improve efficiency and response times

Collaboration & Communication:

- Communicate risks, findings, and recommendations clearly to technical and non-technical stakeholders
- Provide guidance to internal teams on secure design and implementation
- Support audits, compliance efforts, and security assessments

Required Qualifications

- 9+ years of experience in cybersecurity or security engineering
- Strong hands-on experience with:
- CrowdStrike
- Okta
- Varonis
- Nessus
- AlienVault
- Palo Alto
- Zscaler
- Proven ability to independently monitor, triage, and investigate security events
- Experience performing threat hunting and incident response
- Experience conducting red team or offensive security activities
- Strong scripting and automation skills (e.g., Python, PowerShell)
- Excellent analytical and problem-solving skills
- Strong written and verbal communication skills
- CISSP certification (required)

Preferred Qualifications

- Experience in regulated environments (e.g., utilities / critical infrastructure)
- Familiarity with NIST CSF, NIST 800-171, and Zero Trust Architecture
- Experience with SaaS and cloud security environments

BENEFITS SUMMARY:

Individual compensation is determined by skills, qualifications, experience, and location. Compensation details listed in this posting reflect the base hourly rate or annual salary only, unless otherwise stated. In addition to base compensation, full-time roles are eligible for Medical, Dental, Vision, Commuter and 401K benefits with company matching.

IND123