Applications Security Contractor

Hired by Matrix

Parsippany, NJ

Apply

JOB DETAILS

SALARY

$85.70–$85.70 Per Hour

SKILLS

AWS Lambda, Agile Programming Methodologies, Amazon Simple Storage Service (S3), Amazon Web Services (AWS), Analysis Skills, Application Programming Interface (API), Applications Security, Architectural Services, Business Solutions, Change Management, Cloud Applications, Cloud Computing, Code Reviews, Communication Skills, Computer Security, Continuous Deployment/Delivery, Continuous Integration, Cross-Functional, Customer Experience, Embedded Systems, Enterprise Protection, Hospitality and Tourism, Identify Issues, Information/Data Security (InfoSec), Internet Security, Java, JavaScript, Mobile Web Programming, Node.js, Operational Improvement, Operations Processes, Operations Security (OPSEC), Penetration Testing, Process Development, Production Control, Production Schedule, Production Systems, Project Planning, Project/Program Management, Python Programming/Scripting Language, Release Management/Engineering, Reliability Engineering, Risk, Risk Analysis, Secure Coding, Security Analysis, Security Architecture, Security Attacks, Security Design, Security Infrastructure, Security Monitoring, Software Administration, Software Design, Test Automation, Time Management

LOCATION

Parsippany, NJ

POSTED

2 days ago

At-a-Glance:
Are you ready to build your career by joining a global hospitality company? If so, our client is hiring an Applications Security Contractor.

Position Type:

Contract
On-Site

Required:

3+ years of offense and defense application security experience with demonstrated hands-on expertise in SAST and SCA tools such as Checkmarx and Synk, including findings triage, ruleset tuning, and managing vulnerability lifecycle across enterprise environments.
Strong understanding of OWASP Top Ten and broader web and API vulnerabilities, including practical remediation techniques within enterprise environments.
Knowledge of web and mobile application development and deployment methodologies.
Hands-on experience securing AWS cloud environments, including Lambda, API Gateway, IAM, and S3, with experience operating cloud-native security platforms such as Orca Security, Wiz, or Prisma Cloud to surface and remediate risk across workloads and infrastructure.
Ability to read and reason about code in languages such as Node.js, JavaScript, Java, or Python.
Ability to sufficiently perform meaningful secure code review, validate SAST/SCA findings, and collaborate credibly with engineering teams on remediation.
Experience working with change management and release governance processes within production environments.
Strong project management and communication skills with the ability to represent cybersecurity requirements across technical and business stakeholders.
Solid understanding of agile methodologies, DevSecOps practices, and CI/CD pipeline integration.
Familiarity with security threat intelligence sources and how they inform application-layer defenses.
Experience partnering with development teams to drive security remediation by running working sessions, building runbooks, and supporting secure coding adoption through a developer-first engagement model.

Responsibilities:

Join the greater Information Security Team and help advance enterprise application security program.
Play a critical part in the design, build, and operation of security capabilities that protect web, mobile, and cloud-native applications.
Requires broad application security experience across secure development practices, code analysis, cloud security, and production protection technologies.
As a member of the Cybersecurity Team, will execute and mature the application security architecture and framework across development, cloud, and production environments.
Work directly with business application teams on secure design, code review oversight, release coordination, and production resilience.
Role will formally represent the application security team in discussions involving new projects, architectures, and security control design, ensuring cybersecurity requirements are embedded early and consistently.
Regular interaction with both technical and business personnel will be required to provide risk-based security analysis and recommendations that balance protection, performance, and delivery timelines.
Administer and optimize static code scanning solutions such as Checkmarx, ensure vulnerabilities are identified and remediated in alignment with OWASP Top Ten and broader industry risks, and collaborate closely with AWS engineering teams to secure Lambda functions and runtime resources.
Partner with change and release management to coordinate production code deployments from both security and reliability perspectives, while maintaining operational oversight of application-layer protection technologies.

Responsibility:

Lead application security design and implementation across web, mobile, and AWS cloud-native services, including secure architecture reviews, AWS Lambda and runtime resource protection, and integration of security controls into CI/CD pipelines.
Administer and optimize static code scanning solutions such as Checkmarx, conduct vulnerability triage and remediation guidance aligned with OWASP Top Ten and broader application security risks, and validate security readiness prior to production release.
Manage and enhance application-layer protection technologies, including policy tuning, configuration updates, and detection improvements, ensuring protections remain effective without impacting performance or customer experience.
Coordinate closely with change and release management to align security controls with production deployment schedules, participate in go-live planning, and act in a Site Reliability Engineering capacity to ensure secure and stable releases.
Represent the application security team in project planning and architectural discussions, provide risk-based security analysis, and ensure cybersecurity requirements are embedded into design, development, and delivery decisions.
Provide structured security reporting, track remediation efforts, and support cross-functional project management activities to ensure application security initiatives are delivered on time and aligned with business objectives.

Non-Essential Job Functions:

Represent application security and cybersecurity in meetings or project discussions when additional coverage or subject matter expertise is needed.
Devise methods to automate security testing activities or streamline operational processes, where applicable.
Improve and document operational and troubleshooting procedures to support long-term maintainability.
Perform or support activities such as penetration testing, secure code reviews, or developer training when specialized coverage is needed, but not as a primary responsibility.

Get in Touch:
If you think you'd be a good match, submit your resume and reach out to Karmina at (862) 658-6689 to learn more.

#LI-VK1

About the Company

Hired by Matrix

We believe in putting people together for the right reasons. Getting you a great job that makes you feel fulfilled in your career. Finding the perfect candidate to help you achieve business success. Whether you are looking for the best candidate for your company or searching for your next career move, we are dedicated to making sure you thrive. We take your needs personally and have a variety of services to ensure you reach your goals. We listen to the needs of our clients and candidates and then thoughtfully match the right person with the right job. When people come together doing what they love success is guaranteed and partnerships last.

COMPANY SIZE

100 to 499 employees

INDUSTRY

Staffing/Employment Agencies

WEBSITE

http://www.hiredbymatrix.com

Resume Resources

Free Resume Templates Free Resume Builder