Python/Django Senior Application Security Engineer (Hybrid - US) at Energy Solutions

Chicago, Illinois, United States

Apply Now
Energy Solutions Logo
Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Energy, Clean TechnologyIndustries

Requirements

  • Minimum of 5 years' experience in application security
  • Practice and implementation with Django/Python with a clear application-security focus (production experience and impact, not theory)
  • Engineering background (software or DevOps/SRE) with the ability to read/modify code, review PRs, and build PoCs
  • Experience with GitHub security, including reviewing static code scans, triage findings, eliminate noise, and drive remediation with owners
  • Experience embedding secure SDLC into Git-based workflows and CI/CD (pre-commit, pipeline gates, policy-as-code)
  • Practical knowledge of SOC 2 and familiarity with NIST 800-53; can turn requirements into technical tasks and evidence
  • Ability to operate across code, app, and DevOps (containers, IaC basics, secrets, logging/monitoring)
  • Clear, persuasive communication (verbal and written) and prioritization
  • Excellent time management skills with a proven ability to meet deadlines
  • Excellent interpersonal skills

Responsibilities

  • Contribute to the application security roadmap for our internal applications—prioritize risks and sequence work across codebases, application layer, and DevOps
  • Consult with engineers to communicate requirements, create actionable tickets/acceptance criteria, and drive adoption
  • Conduct pull request reviews focused on security, provide guidance on refactors, and approve/deny with clear rationale
  • Serve as a steward for SAST/scanning: review static code scan results, triage findings, eliminate noise, and drive remediation with owners
  • Build reference implementations in Django/Python (i.e. authentication patterns, input validation, secrets handling, rate limiting, geo-based access) without direct responsibility for production feature development
  • Map SOC 2/NIST to engineering work: translate requirements into stories, controls, and automated evidence in CI/CD
  • Threat modeling & architecture: navigate libraries/architectures and document secure patterns (ADRs/RFCs) that teams follow
  • Oversee security related tasks in the Software Delivery Life Cycle (SDLC) to ensure software development activities remain in compliance
  • Collaborate with software developers and code base leads
  • Act as a liaison between technical requirements from the business (i.e. security, privacy, compliance) and development teams
  • Participate as a subject matter expert in security architecture, including new designs and design reviews
  • Recommend application security improvements based on best practices, OWASP standards and other web application security frameworks
  • Review architecture and compliance-related code changes for security impact
  • Ensure compliance with all company security policies and standards
  • Manage and maintain all security related tickets, including recommendations, testing, and validation

Skills

Key technologies and capabilities for this role

PythonDjangoApplication SecuritySASTStatic Code AnalysisSOC 2NISTDevOpsPull Request ReviewsAuthenticationInput ValidationSecrets ManagementRate Limiting

Questions & Answers

Common questions about this position

What skills are required for the Senior Application Security Engineer role?

The role requires the ability to read, review, and make recommendations on secure Django/Python patterns, along with experience in application security practices like threat modeling, SAST scanning, OWASP standards, and mapping SOC 2/NIST requirements to engineering work.

Is this position remote or hybrid?

The position is hybrid and based in the US.

What is the salary or compensation for this role?

This information is not specified in the job description.

What is the company culture like at Energy Solutions?

Energy Solutions offers a supportive and energetic culture where you work with talented colleagues and contribute to climate solutions through market-based programs.

What makes a strong candidate for this position?

A strong candidate will have expertise in secure Django/Python development patterns, experience with application security tools like SAST, threat modeling, OWASP best practices, and the ability to consult with engineering teams on security requirements and compliance.

Energy Solutions

Provides market-based energy and environmental solutions

Website

About Energy Solutions

Energy Solutions focuses on creating large-scale environmental impacts through cost-effective solutions for carbon, energy, and water management. The company works with energy providers, government agencies, and businesses to improve their environmental footprint by offering expertise in energy efficiency, demand management, distributed energy resources, and clean transportation. Their approach involves identifying new technologies and collaborating with partners to accelerate market adoption and establish quality standards. Energy Solutions generates revenue by providing market-driven programs that help clients achieve energy savings and comply with regulations. With over 20 years of experience, the company is known for its reliability and commitment to meeting client needs while delivering significant energy savings and environmental benefits.

Oakland, CaliforniaHeadquarters
1995Year Founded
VENTURE_UNKNOWNCompany Stage
Energy, Social ImpactIndustries
201-500Employees

Benefits

Health Insurance
Dental Insurance
Vision Insurance
401(k) Retirement Plan
Company Equity
Remote Work Options
Paid Sick Leave
Paid Holidays
Paid Vacation

Risks

Emerging startups with advanced technologies increase competition in the clean energy sector.
Potential regulatory changes could impact program offerings and require adjustments.
Rising costs of raw materials may affect pricing strategy and profit margins.

Differentiation

Over 25 years of experience in energy and environmental management solutions.
Strong partnerships with governments to establish quality standards for new technologies.
Focus on market-driven, scalable solutions for significant environmental impact.

Upsides

Increased demand for energy management due to smart grid technology adoption.
Opportunities in clean transportation and carbon management from green hydrogen rise.
Growing corporate sustainability commitments boost demand for energy efficiency services.

Related Jobs

United States
Remote iconRemote

Senior Security Engineer, Application Security

Trail of Bits
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
United States
Remote iconRemote

Software Engineer

AffiniPay
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
United States
Remote iconRemote

Senior Software Engineer, Android Apps

Flock Safety
$171,000 - $200,000/year
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
United States
Remote iconRemote

Senior Application Security Engineer

M&T Bank
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
Mountain View +1 more
Remote iconRemote

Senior Software Security Engineer

Muon Space
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
Remote
Remote iconRemote

Principal DevSecOps Engineer

Second Front Systems
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
Remote
Remote iconRemote

Senior Engineer, App Security

Healthie
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
Toronto +3 more
Remote iconRemote

Senior Software Engineer, Secure Agents

Cohere
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)

Land your dream remote job 3x faster with AI

Try Jobo Free