Posted May 4, 2026
As an Application Security Engineer at Quest Global, you will play a crucial role in driving our application security efforts to ensure the development of projects in various domains like IoT, Intralogistics, Control, Cloud, and Edge systems. You will be part of a dynamic team of engineers focused on transforming the industry through innovation and technology. Your responsibilities will include:
Applying coding and testing standards, utilizing security testing tools such as SAST/DAST scanning tools, and conducting code reviews. Implementing Secure Software Development Lifecycle (SSLDC) methodologies across the organization. - Identifying common coding flaws, performing penetration testing, and integrated quality assurance testing for security functionality and resiliency attack. - Conducting risk analysis for applications and systems undergoing significant changes, and performing regular vulnerability assessments and penetration tests to identify security weaknesses. - Analyzing vulnerability scan results and security assessment reports, prioritizing and remediating security vulnerabilities promptly. - Developing and implementing vulnerability management processes and collaborating with development teams to integrate security controls into the software development lifecycle (SDLC). - Providing guidance on secure coding practices, vulnerability remediation techniques, and threat mitigation strategies to development teams. - Monitoring and tracking vulnerability remediation efforts, directing the remediation of security findings, and capturing security controls during the requirements phase. Qualifications:
5+ years of SAST/DAST scanning experience or 4+ years of penetration testing experience or 5 years of application security experience. - Experience with security tools such as Qualys, Nessus, Sonarqube, Veracode, Burp Suite, Nexpose, Snort, or Metasploit. - Strong knowledge of security architecture, system, and network security, as well as security standards and best practices like OWASP, SANS 25, etc. - Experience in analyzing security of Java applications or cloud-based applications, and ability to read and write common programming languages. - Solid knowledge of Linux and Windows OS, experience with cloud computing platforms and containerization technologies. - Knowledge of secure software development practices and DevSecOps principles. Qualifications:
5+ years of SAST/DAST scanning experience or 4+ years of penetration testing experience or 5 years of application security experience. - Experience with security tools such as Qualys, Nessus, Sonarqube, Veracode, Burp Suite, Nexpose, Snort, or Metasploit. - Strong knowledge of security architecture, system, and network security, as well as security standards and best practices like OWASP, SANS 25, etc. - Experience in analyzing security of Java applications or cloud-based applications, and ability to read and write common programming languages. - Solid knowledge of Linux and Windows OS, experience with cloud computi
Don't want to apply yourself?
Our team writes your resume, applies for you, preps you for interviews, and negotiates your offer.
Browse Jobs
By Role
By City