ZipRecruiter

Log In

1

Non Exempt Application Security Engineer Jobs (NOW HIRING)

Wawa, Inc.

Application Security Engineer

Media, PA · On-site

$58.50 - $78/hr

The Application Security Engineer is responsible for operating, supporting, maintaining, and ... Create and deliver security presentations to technical and non-technical internal audiences.

Clear Capital

Application Security Engineer

$60.25 - $80.25/hr

They are seeking an Application Security Engineer to perform application security testing ... non-technical audiences. • Attention to detail, to plan and execute tests that meet all ...

TTEC

$63.50 - $85/hr

Application Security Engineer Apply now Application Security Engineer Be the spark that brightens ... Clearly communicate findings to both technical and non-technical stakeholders across cultures. What ...

Ryder

Application Security Engineer

Coral Gables, FL · On-site

$55.75 - $74.50/hr

The Application Security Engineer must understand development, coding, security engineering, and secure systems configurations. This position ensures that every step of the software development ...

Eliassen Group

Application Security Engineer

Washington, DC · On-site

$66.50 - $89/hr

Work with application developers ensure adoption of security principals and best practices. 6. Provides direction and support in security management and security architecture standards and ...

Hirekeyz Inc

APPLICATION SECURITY ENGINEER

Fairfax, VA · On-site

$60 - $80.25/hr

Application Security Engineer Location: Onsite in Fairfax, VA 3 days and in Washington, DC 2 days per week. Duration: Long Term Contract Positions Require a Secret Clearance The Application Security ...

next page

Showing results 1-20

People also search for

All JobsNon Exempt Application Security Engineer Jobs

Non Exempt Application Security Engineer information

See salary details

$29

$66

$96

How much do non exempt application security engineer jobs pay per hour?

As of Jun 8, 2026, the average hourly pay for non exempt application security engineer in the United States is $66.40, according to ZipRecruiter salary data. Most workers in this role earn between $56.49 and $75.48 per hour, depending on experience, location, and employer.

What is a Non Exempt Application Security Engineer?

A Non Exempt Application Security Engineer is a professional who focuses on identifying and addressing security vulnerabilities in software applications, but whose role is classified as 'non-exempt' under labor laws, meaning they are typically eligible for overtime pay. Their primary responsibilities include conducting security assessments, developing secure coding practices, and collaborating with development teams to ensure applications are built and maintained securely. They may use various tools to test for vulnerabilities and help implement security improvements throughout the software development lifecycle. The 'non-exempt' designation usually relates to hourly wage or overtime eligibility rather than the technical nature of their security work.

What are the key skills and qualifications needed to thrive as a Non Exempt Application Security Engineer, and why are they important?

To thrive as a Non Exempt Application Security Engineer, you need a solid background in software development, security best practices, and vulnerability assessment, often supported by a degree in computer science or a related field. Familiarity with tools like static and dynamic application security testing (SAST/DAST), penetration testing frameworks, and certifications such as CEH or CISSP is common. Strong analytical thinking, attention to detail, and effective communication skills help you collaborate with development teams and articulate security risks. These skills are vital for identifying, mitigating, and preventing security vulnerabilities in software applications, ensuring the organization's data and assets remain protected.

How does a Non Exempt Application Security Engineer typically collaborate with development teams to ensure secure software delivery?

A Non Exempt Application Security Engineer works closely with development teams by conducting security reviews, providing guidance on secure coding practices, and participating in code and design reviews. They often help identify vulnerabilities early in the software development lifecycle and recommend remediation strategies. Regular communication and collaboration with developers, QA, and operations teams ensure that security is integrated throughout the process, making it a team effort to deliver secure applications.
What cities are hiring for Non Exempt Application Security Engineer jobs? Cities with the most Non Exempt Application Security Engineer job openings:
What states have the most Non Exempt Application Security Engineer jobs? States with the most job openings for Non Exempt Application Security Engineer jobs include:
Non Exempt Application Security Engineer jobs near you
Application Security Engineer

Application Security Engineer

Wawa, Inc.

Media, PA • On-site

$58.50 - $78/hr

Full-time

Posted 3 days ago

Wawa rating

6.5

Company rating: 6.5 out of 10

Based on 1,101 frontline employees who took The Breakroom Quiz

8th of 47 rated convenience stores

Job description

Job Description
Job Title: Application Security Engineer
Location: Corporate
Department: Information Technology
Job Summary: The Application Security Engineer is responsible for operating, supporting, maintaining, and improving the application security program by helping to ensure that security is built into all internally developed applications. This role executes all day-to-day operations, maintenance, functions, and capabilities relating to application security. Assist with the build and operation of application security tooling, automation, and engage with developers and product owners to solve application security problems. The role serves as a technical resource in the areas of secure software development at all stages of the SDLC and general information security best practices across all technology domains. The engineer is responsible for operating and improving Wawa's application security processes to secure and maintain Wawa's technology.
Principal Duties:
Operate and Support the Application Security Program
  • Support security best practices in the software development lifecycle by way of working closely with developers and product owners to secure applications at all stages.
  • Research, identify and communicate current and emerging application security threats and solutions.
  • Maintain, and iterate on secure coding practices, policies, standards, and procedures.
  • Test applications against security threats and vulnerabilities.
  • Support application security vulnerability management.
  • Create and deliver security presentations to technical and non-technical internal audiences.
  • Identify security design gaps in existing and proposed applications and recommend changes or enhancements.
  • Identify gaps and inefficiencies in the Application Security Program on a continual basis and propose solutions.
  • Participate in and support application security reviews, penetration tests, and threat modeling.
  • Contribute to the direction of internal security-focused programs.

Provide Strategic Support
  • Assist in the development of metrics and reporting framework to measure the effectiveness of the program.
  • Support the development and maintenance of Wawa's technology security policies and standards and ensure their application to technology architectures.
  • Assist with ensuring the ongoing compliance with both regulatory obligations and internally developed policies and standards.
  • Provide support to Technology Security Incident Response team during cyber incidents.

Serve as Security Liaison
  • Maintain internal networks among information security, information technology, and development teams to ensure support and alignment on initiatives.
  • Maintain external networks consisting of industry peers, ecosystem partners, vendors, and other relevant parties to address common trends, findings, and cybersecurity risks.
  • Act as technical resource for internal business teams and the IT department to plan, implement, and support new and existing software.
  • Support audit and assessment process for IT including annual PCI audit, IT general controls review, and any other audits or assessments of security and general IT controls.
  • Provide application security guidance on IT and business-related projects as required by the business. Participate in IT and security related projects.
  • Work effectively with business units to facilitate applications security engineering requirements and advocate application security best practices.

Essential Skills:
  • Ability to maintain and exude a positive attitude by committing to new ideas, being enthusiastic about work, and being helpful to, and thoughtful and considerate of, others across the organization.
  • Proven experience securing custom software.
  • Ability to work well individually and in a team environment.
  • Ability to learn on the job.
  • Ability to track task progress effectively.
  • Experience working with teams of developers and product owners.
  • Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate application security and risk-related concepts to diverse audiences.
  • Poise and ability to act calmly and competently in high-pressure, high-stress situations.
  • Must be a critical thinker, with strong problem-solving skills.
  • Ability to manage multiple projects under strict timelines, as well as the ability to work well in a demanding, dynamic environment and meet overall objectives.
  • Ability to engage in internal security technology projects and security remediation projects.
  • Ability to understand large technology implementations spanning hundreds of physical and virtual environments.
  • High level of personal integrity, as well as the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity.
  • High degree of initiative, dependability, and ability to work with little supervision while being resilient to change.
  • Ability to be on-call 24x7x365 rotation for information security incidents.

Basic Requirements:
  • Minimum of 2 years of experience in a complex technology environment, working in the application security engineering field.
  • Advanced knowledge of containers and container security.
  • Solid knowledge of cloud technology and security.
  • Solid knowledge of Java programming.
  • Basic knowledge of Golang programming.
  • Basic knowledge of React and React Native programming.
  • Experience with reading and writing enterprise software.
  • Experience preventing and remediating software security flaws in enterprise software.
  • Up-to-date knowledge of common security weaknesses and flaws, and how to prevent and remediate them.
  • Advanced knowledge of OWASP guidance.
  • Solid knowledge of web-related protocols (TCP/IP, HTTP, HTTPS, REST, etc.).
  • Understanding of relevant legal and regulatory requirements, such as Payment Card Industry Data Security Standard.
  • Degree in computer science preferred, or equivalent professional experience.
  • Professional security management certification is preferred, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), GIAC Defensible Security Certification (GDSA), Certified Secure Software Lifecycle Professional (CSSLP), Certified Ethical Hacker (CEH), etc.
  • Solid knowledge of common information security management frameworks, such as Critical Security Controls, and NIST 800-53 and Cybersecurity Framework.
  • Significant knowledge of application security concepts and technologies such as: SAST, DAST, SCA, IaC, cryptography, authn/authz, API security, etc.
  • Strong understanding of cloud, application security, and software engineering principles.
  • Experience with scripting automation (Python, PowerShell, Unix shell, JavaScript, TypeScript etc.).
  • Proven experience and strong understanding of the DevSecOps and SAFE Agile working methodologies.

Wawa will provide reasonable accommodation to complete an application upon request, consistent with applicable law. If you require an accommodation, please contact our Associate Service Center at asc@wawa.com.
Wawa, Inc. is an equal opportunity employer. Wawa maintains a work environment in which Associates are treated fairly and with respect and in which discrimination of any kind will not be tolerated. In accordance with federal, state and local laws, we recruit, hire, promote and evaluate all applicants and Associates without regard to race, color, religion, sex, age, national origin, ancestry, familial status, marital status, sexual orientation or preference, gender identity or expression, citizenship status, disability, veteran or military status, genetic information, domestic or sexual violence victim status or any other characteristic protected by applicable law. Unlawful discrimination will not be a factor in any employment decision.

What Wawa employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom

Apply