1

Java Security Engineer Jobs (NOW HIRING)

Application Security Engineer

Rockville, MD · On-site

$60 - $80/hr

Proficiency in one or more programming or scripting languages such as Java, Python, or JavaScript. * Experience integrating security tooling into CI/CD pipelines using platforms such as Jenkins and ...

Application Security Engineer

Albany, NY · On-site

$58.25 - $78/hr

... Java/Web development with strong secure coding background in RHEL and JBoss. § 3+years with Application Security Engineering conducting assessments, penetration testing, implementing tools for ...

What you can expect The Security Engineer is responsible for security design and reviews across our ... It also involves reviewing Java or Python code and verifying security posture through manual and ...

Senior Application Security Engineer

San Francisco, CA · On-site

$69.25 - $92.50/hr

Senior Security Engineer - Secure Code Review 📍 San Francisco, California 🏢 On-site ... Responsibiliti * esPerfo rm secure code reviews across Java and C#/.NET applicatio * nsAnalyse and ...

Senior Application Security Engineer

Manhattan, NY · On-site

$126K - $173K/yr

Senior Security Engineer - Secure Code Review 📍 New York, NY 🏢 On-site | Full-Time My client ... Responsibiliti * esPerform manual and tool-assiste d secure code reviews across Java and C#/.NET ...

Java(Advanced), Node.js(Intermediate), ReactJS(Intermediate), Security Analysis(Advanced), REST API ... We are seeking an experienced Application Security Engineer IV to join our team, focusing on the ...

Application Security Engineer (Senior)

Miami, FL · On-site

$56.25 - $75/hr

You will work in Python and Java to deploy and tune SAST, DAST, and SCA tools, provide code-level ... security runbooks. The role requires 6+ years of software engineering experience with a strong ...

Application Security Engineer

Irving, TX · On-site

$105K - $124K/yr

Maintain and enhance internal Java-based automation tools supporting security processes * Support ... Broader DevOps / CI/CD ecosystem experience beyond Jenkins * Experience with tools such as Fortify ...

New

next page

Showing results 1-20

Java Security Engineer information

See salary details

$47

$55

$65

How much do java security engineer jobs pay per hour?

As of Jul 4, 2026, the average hourly pay for java security engineer in the United States is $55.29, according to ZipRecruiter salary data. Most workers in this role earn between $50.48 and $60.10 per hour, depending on experience, location, and employer.

What Is the Job of a Java Security Engineer?

A Java security engineer’s role is to design, build, and deploy frameworks and technology solutions that are in compliance with an organization’s security initiatives and technical specifications. Your responsibilities in this career include identifying and troubleshooting performance issues. You may also develop software applications that enhance performance or security. Your duties may involve training non-IT staff and on-call support as well. You maintain the current architecture of the system, developing solutions as necessary to enhance its secure operation. You may also assume a management role in some positions and oversee a team of computer support staff.

What does a Java Security Engineer do?

A Java Security Engineer is responsible for ensuring that Java applications are secure from vulnerabilities and threats. They design, implement, and review security features within Java software, such as authentication, authorization, encryption, and secure coding practices. Their work often involves identifying potential security risks, conducting code reviews, and collaborating with development teams to ensure compliance with security standards and best practices. They may also respond to security incidents, patch vulnerabilities, and stay updated on the latest security trends affecting Java applications.

What is the difference between Java Security Engineer vs Application Security Engineer?

AspectJava Security EngineerApplication Security Engineer
Required CredentialsBachelor's in CS, Java certifications, security certifications (e.g., CISSP)Bachelor's in CS, security certifications, knowledge of secure coding
Work EnvironmentDeveloping and implementing security for Java applicationsAssessing and improving security across various applications and platforms
Employer & Industry UsageTech companies, financial institutions using Java-based systemsBroad industry use, including finance, healthcare, and tech
Search & Comparison IntentFocus on Java-specific security rolesBroader application security roles, including Java

The Java Security Engineer specializes in securing Java applications, focusing on Java-specific vulnerabilities and security measures. In contrast, the Application Security Engineer works across various platforms and languages to ensure overall application security. Both roles require security certifications and a strong understanding of secure coding practices, but their scope and focus differ based on the technology stack.

What are the key skills and qualifications needed to thrive as a Java Security Engineer, and why are they important?

To excel as a Java Security Engineer, you need a solid background in Java programming, application security principles, and a strong understanding of secure coding practices, often supported by a degree in computer science or a related field. Familiarity with security tools like OWASP ZAP, static code analysis platforms, and knowledge of common frameworks such as Spring Security, along with certifications like CISSP or CSSLP, are typically utilized. Attention to detail, problem-solving, and effective communication are essential soft skills for collaborating with development teams and identifying vulnerabilities. These skills are crucial for safeguarding applications, ensuring regulatory compliance, and maintaining organizational trust in digital systems.

What are some common challenges a Java Security Engineer faces when integrating security measures into existing applications?

A major challenge for Java Security Engineers is implementing robust security features without disrupting existing application functionality or performance. This often requires a thorough understanding of legacy code, careful assessment of current vulnerabilities, and close collaboration with development teams to ensure seamless integration. Additionally, keeping up with rapidly evolving security threats and ensuring compliance with industry standards can add complexity to the role. Effective communication and proactive planning are essential for overcoming these challenges and ensuring secure, stable applications.
What are the most commonly searched types of Java Security Engineer jobs? The most popular types of Java Security Engineer jobs are:
Infographic showing various Java Security Engineer job openings in the United States as of June 2026, with employment types broken down into 50% Full Time, and 50% Contract. Highlights an 100% In-person job distribution, with an average salary of $115,000 per year, or $55.3 per hour.
Application Security Engineer

Application Security Engineer

ConsultNet

Rockville, MD • On-site

$60 - $80/hr

Other

Posted 4 days ago


Job description

Title: Application Security Engineer
Location : Rockville, MD or McLean, VA
Target Start Date : ASAP
Type: contract
Pay Rate: DOE
The Senior Application Security Engineer is responsible for designing, implementing, and advancing application security practices across the Software Development Life Cycle (SDLC). This role partners closely with engineering, DevOps, and security teams to identify vulnerabilities, support remediation efforts, evaluate security tooling, and strengthen secure development practices.
The ideal candidate brings strong hands-on application security expertise, experience integrating security into CI/CD pipelines, and the ability to leverage modern automation and GenAI technologies to scale secure code review and vulnerability analysis capabilities.
Key Responsibilities
  • Perform application security assessments, manual penetration testing, and vulnerability validation using tools such as Burp Suite and other proxy/security testing tools.
  • nalyze and triage findings from SAST, DAST, IAST, IaC, and secrets detection tools to identify, prioritize, and support remediation of security vulnerabilities.
  • Partner with engineering teams to integrate security controls and testing into CI/CD pipelines in support of DevSecOps initiatives.
  • Conduct secure code reviews and leverage GenAI-enabled security tooling to improve scalability and efficiency of application security analysis.
  • Evaluate, recommend, and implement application security tools and technologies, including emerging capabilities related to automated code analysis and cloud security.
  • Perform AWS configuration and cloud security reviews to ensure adherence to security best practices and compliance standards.
  • Develop and maintain documentation related to security findings, remediation activities, risk assessments, and compliance requirements.
  • Contribute to the development, interpretation, and enforcement of application security policies, standards, and procedures.
  • Support enterprise security compliance initiatives and participate in audit and risk management activities.
  • Deliver security awareness training and educate developers and QA engineers on common application security risks, secure coding practices, and remediation techniques.
  • Stay current on emerging threats, vulnerabilities, attack techniques, and security technologies to continuously improve the organization's security posture.
Required Qualifications
  • Bachelor's degree in Computer Science, Computer Engineering, Cybersecurity, or a related technical field.
  • 5+ years of experience in cybersecurity with a strong focus on application security.
  • Hands-on experience with SAST, DAST, IAST, and related application security testing methodologies and tools.
  • Strong understanding of OWASP Top 10 vulnerabilities, secure coding principles, and remediation strategies.
  • Experience performing manual penetration testing and application vulnerability assessments.
  • Proficiency in one or more programming or scripting languages such as Java, Python, or JavaScript.
  • Experience integrating security tooling into CI/CD pipelines using platforms such as Jenkins and GitLab.
  • Strong knowledge of security engineering concepts including authentication, authorization, cryptography, network security, and secure application architecture.
  • Experience with AWS cloud security concepts, services, and configuration reviews.
  • Excellent communication skills with the ability to collaborate effectively across engineering and security teams.
Preferred Qualifications
  • Background in software engineering or application development.
  • Familiarity with GenAI-assisted security tooling and automated code analysis solutions.
  • Experience with Infrastructure as Code (IaC) security scanning and secrets management tools.
  • Experience conducting infrastructure or application-level vulnerability testing and security auditing.
  • Industry certifications such as:
    • GWAPT
    • OSWE
    • Burp Suite Certified Practitioner
    • CISSP
    • CSSLP
  • Experience supporting enterprise DevSecOps transformation initiatives.
Technical Environment
  • pplication Security: SAST, DAST, IAST, Secure Code Review
  • Cloud Platforms: AWS
  • CI/CD Tools: Jenkins, GitLab
  • Security Testing Tools: Burp Suite and related proxy/testing tools
  • Programming Languages: Java, Python, JavaScript
  • DevSecOps & Automation: Security pipeline integration, GenAI-assisted analysis

Welcome to ConsultNet, a premier national provider of technology talent and solutions. Our expertise spans across project services, contract-to-hire, direct search, and managed services onshore, nearshore, and hybrid. For over 25 years, we have connected thousands of consultants with meaningful roles through a personal, communication-driven approach, partnering with a diverse client base to build high-performing teams and create lasting impact. Our comprehensive service offerings cover a wide range of technology and engineering positions across key markets nationwide. Learn more at www.consultnet.com .
We champion equality and inclusivity, proudly supporting an Equal Opportunity Employer policy. We welcome applicants regardless of Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other status protected by law.