AgileEngine

Python Engineer (AppSec) ID71670

AgileEngine · Port Charlotte, Florida, United States

Software Development · 1,001-5,000 employees

Yesterday
Remote Mid (2-5 yrs) Full-time United States
Log in to apply, save this posting, or score it against your profile with AI.

About the role

Integrate security gates like SAST, DAST, and SCA into CI/CD pipelines using Python scripts. Tune scanning tools to reduce false positives and provide code-level remediation guidance to development teams.

What they look for

Python CI/CD SAST DAST SCA DevSecOps Application Security Java Automation Scripting Vulnerability Scoring Frameworks CNAPP ASPM Wiz Threat Modeling

Requirements

Requires 3-5 years of software engineering experience with strong Python proficiency and CI/CD knowledge. Must be authorized to work in the US without sponsorship and possess upper-intermediate English skills.

Benefits

Mentorship TechTalks Personalized Growth Roadmaps Education Budget Fitness Budget Team Activity Budgets Flexible Schedule

Full description

AgileEngine is an Inc. 5000 company that creates award-winning software for Fortune 500 brands and trailblazing startups across 17+ industries. We rank among the leaders in areas like application development and AI/ML, and our people-first culture has earned us multiple Best Place to Work awards.

WHY JOIN US

If you're looking for a place to grow, make an impact, and work with people who care, we'd love to meet you!

ABOUT THE ROLE

We are looking for a Python Engineer to contribute hands-on to a follow-the-sun DevSecOps pod, writing Python scripts to integrate SAST, DAST, and SCA security gates into CI/CD pipelines and tuning scanning tools to reduce false positives. You will deploy automated hardened baselines and provide code-level remediation guidance to development teams, operating with minimal supervision on complex scripting and integration tasks. The role requires 3–5 years of software engineering experience with strong Python proficiency and CI/CD familiarity.

WHAT YOU WILL DO

- Write and maintain the scripts necessary to integrate security gates (SAST, DAST, SCA) seamlessly into the CI/CD pipeline;

- Continuously tune and configure existing security scanning tools to eliminate false positives and deliver high-confidence alerts;

- Assist in coding and deploying automated hardened baselines and secure coding patterns;

- Work directly with product development teams to provide actionable, code-level remediation guidance in Java and Python.

MUST HAVES

- You must be authorized to work for ANY employer in the US (e.g., Green card holders, TN visa holders, GC EAD, H4 EAD, U4U with EAD), as we are unable to sponsor or take over employment visa sponsorship at this time;

- 3–5 years of commercial experience in software engineering;

- Solid coding proficiency in Python for automation and scripting;

- Working knowledge of modern CI/CD orchestration tools and practical experience interacting with vulnerability scoring frameworks;

- Ability to operate with minimal supervision on day-to-day execution and reliably complete complex scripting and integration tasks;

- Upper-intermediate English level.

NICE TO HAVES

- Experience in DevSecOps or Application Security;

- Ability to comfortably read and navigate Java source code;

- Hands-on experience with CNAPP or ASPM platforms such as Wiz;

- Basic understanding of application threat modeling.

PERKS AND BENEFITS

- Professional growth: Mentorship, TechTalks, and personalized growth roadmaps.

- Competitive compensation: USD-based pay with education, fitness, and team activity budgets.

- Exciting projects: Modern solutions with Fortune 500 and top product companies.

- Flextime: Flexible schedule with remote and office options.