Security Engineer Jobs in Pittsburgh, PA
Security Engineer jobs in Pittsburgh are concentrated in the Downtown Golden Triangle, Oakland, and the Southside Works corridor, with strong demand across finance, healthcare, and defense contracting. Employers actively hiring include Aurora Innovation, Aurora, and Citizens. See the openings below and apply to the ones that match your experience.
Find Security Engineer JobsOverview
Showing 5 of 20+ Security Engineer jobs









Description
About Wolfe
Recognized among Pittsburgh's 2024 Top Workplaces and Fastest-Growing Companies, Wolfe has been a leader in the Gift Card and FinTech sectors for over 25 years. We partner with national brands such as Pizza Hut, KFC, Pandora Jewelry, Kendra Scott, Wawa, Journeys and others to manage their gift card programs. Our flagship consumer brand, PerfectGift.com, enables customers to create customized gift cards. We are a fast-paced environment, like kayaking down a white-water river, not canoeing on a lake.
About The Role
Wolfe is a Pittsburgh-based FinTech company building the next generation of financial products, and we are actively embedding AI across our product, our internal processes, and the way our teams work day-to-day. As an Application Security Engineer, you'll work hands-on alongside developers and DevOps engineers to build security into how we ship software — reviewing code, improving AI agent behaviors, hardening CI/CD pipelines, and helping teams find and fix vulnerabilities across application code, containers, and cloud infrastructure. This role is built for growth: whether you're a developer moving into security or an early-career security engineer expanding into application security, you'll learn enterprise security tooling — including AI/ML and LLM-powered tools — with support to earn certifications and grow alongside a security team that mentors in person.
Responsibilities
- Perform code reviews, SAST/DAST testing, basic penetration tests, and basic threat modeling, and work with developers to remediate vulnerabilities across application code, libraries, containers, and infrastructure as code.
- Integrate and run automated security tooling (such as Snyk, SemGrep, or Cycode) within CI/CD pipelines across code repositories (such as GitHub, GitLab, Jenkins, or AWS DevOps), and help automate findings triage and reporting.
- Manage a vulnerability management program, vulnerability scanning tools and the enterprise Bug Bounty program, tracking and prioritizing remediation against defined SLAs.
- Help operate and improve Bot Management, WAF, secrets management, and API security controls across Wolfe's applications.
- Apply and promote secure coding standards aligned to OWASP and SANS CWE Top 25, and contribute to measuring DevSecOps maturity using a framework such as DSOMM or BSIMM.
- Partner with developers, security operations, product management, and incident response teams, sharing secure-coding and vulnerability-management practices as you grow your own expertise.
For more clarity on the role, below are the success metrics and measurements for this role in the first 90 to 120 days.:
- Update existing Application Security Strategy and make improvements on monitoring and reporting on KPI’s
- Make a significant improvement to least one automated security tool (DAST, SAST, SCA, or container scanning) in the production CI/CD pipeline, with results feeding a documented triage workflow.
- Driving additional Bug Bounty submissions and improve bot management turning & protections prior to end of Q3.
- Provide product and technology advisement and testing for new application and AI functionality
- Develop and plan a purposeful Application and AI development training program
Qualifications
- 2+ years of experience in application security, DevSecOps, or software development with security exposure — including developers looking to move into a dedicated security role — plus a Bachelor's in Information Security, Cybersecurity, Computer Science, or a related field (equivalent experience accepted in lieu of a degree).
- A real coding background and working knowledge of secure coding principles (OWASP Top 10, SANS CWE Top 25).
- Some hands-on exposure to CI/CD pipelines (GitHub, GitLab, Jenkins, or AWS DevOps) and an interest in integrating security tooling into them.
- Strong verbal and written communication skills, with the ability to explain security concepts to both technical and non-technical teammates.
- Eagerness to learn enterprise security tooling (vulnerability scanners, Bot Management, SAST/DAST/SCA) and maturity frameworks like DSOMM or BSIMM — deep prior experience with these is a plus, not a requirement.
- No certifications required; experience with CISSP, OSCP, GCSA, AWS Security Specialty, or CSSLP is a plus, and we'll support you in earning them.
Compensation, Benefits, and Perks
Wolfe is committed to providing a comprehensive benefits package to support your well-being, along with competitive compensation. Our benefits and perks include but not limited to:
- Restricted Stock Units (RSUs)
- Profit Share and/or Incentive Bonus
- Medical, Prescription, Vision, and Dental insurance for employees and dependents (Wolfe pays 80% of premium)
- Short-Term Disability Insurance (Wolfe pays 100% of premium)
- Voluntary Long-Term Disability Insurance, Life Insurance, Critical Illness Insurance, Accident Insurance, and Hospital Indemnity coverage
- PTO (vacation and sick time)
- Corporate Holidays and Floating Holidays
- 401(k)
- Employee recognition program
- Charitable Donation to a charity of your choice yearly
- Employee Referral Bonus
- Tuition Reimbursement
- Internal Training and Information sessions
- Family Picnic, Holiday Party, and other outings
- Internal Culture Club
About Wolfe, LLC
At the heart of our success are our Core Values: Teamwork, Drive, Integrity, Caring, and Excellence. These principles guide us as we innovate and expand our portfolio with platforms and brands like PerfectGift, Gift Card Granny, GiftYa, Reaf Marketing, and Give InKind, setting new standards in the gifting experience.
Some of the Company and Executive Team Recognitions:
2023 Inc. 5000 list of fastest-growing private companies (ranked no. 382)
2022 - 1st place - Fastest 50 Growing Companies in Pittsburgh, Pittsburgh Business Times
2020 The Best Places to Work, Pittsburgh Business Times
2019 - Winner Carnegie Science Award, Entrepreneur Category
2017 - Winner of Outstanding Entrepreneur, Pittsburgh Venture Capital Association
2015 - Winner of Business Times Diamond Award, Business Ethics Award, Create Award
2015 CEO of the Year, Pittsburgh Technology Council
And more…
See All 20 Security Engineer Jobs in Pittsburgh
Find roles in Pittsburgh that match your experience and apply in just a few clicks.
Find Security Engineer JobsSecurity Engineer Job Market in Pittsburgh
Who's Hiring



Top Industries Hiring
- Technology & Software
- Artificial Intelligence
- Science & Research
- Automotive
- Banking & Financial Services
Security Engineer Jobs in Pittsburgh: Frequently Asked Questions
How do I get a security engineer job in Pittsburgh?
Focus your search on Pittsburgh's strongest hiring sectors: financial services firms anchored Downtown, health systems based in Oakland and Shadyside, and defense and government contractors clustered in the broader region. Candidates with hands-on experience in cloud security, SIEM platforms, or OT/ICS security stand out locally. Networking through Pittsburgh Technology Council events and engaging directly with employers in these sectors gives you a concrete edge in this market.
Which companies hire security engineers in Pittsburgh?
Companies currently hiring security engineers in Pittsburgh include Aurora Innovation, Aurora, and Citizens, per current listings on Migrate Mate as of July 2026. Pittsburgh's mix of large financial institutions, major health systems, and federal contractors creates consistent, year-round demand for security engineering talent across experience levels.
Are there remote security engineer jobs in Pittsburgh?
Yes, though availability depends heavily on the role. Positions focused on cloud security, security architecture, threat intelligence, and vulnerability management tend to be remote-friendly, while roles requiring on-site access to physical infrastructure or classified environments are almost always in-person. About 54% of security engineer openings tied to Pittsburgh are remote or hybrid as of July 2026, with the strongest remote share in software and financial services roles.
How can I get a security engineer job in Pittsburgh with little or no experience?
The most realistic entry path in Pittsburgh is through a SOC analyst or IT security analyst role, which local health systems, banks, and managed security service providers regularly hire at the junior level. Carnegie Mellon University and the University of Pittsburgh both produce security-focused talent that local employers recognize, and CyberCorps or similar pipeline programs have local ties worth exploring. Earning a CompTIA Security+ or equivalent certification before applying significantly strengthens your candidacy with Pittsburgh's risk-conscious employer base.
Which industries hire the most security engineers in Pittsburgh?
The sectors hiring the most security engineers in Pittsburgh are Technology & Software, Artificial Intelligence, and Science & Research, based on current listings on Migrate Mate as of July 2026. Pittsburgh's deep roots in banking, its world-class medical corridor in Oakland, and its long-standing defense and government contracting presence make these sectors the city's most consistent source of security engineering demand.
Related Jobs in Pennsylvania
See All 20 Security Engineer Jobs in Pittsburgh
Find roles in Pittsburgh that match your experience and apply in just a few clicks.
Find Security Engineer Jobs