Python/Django Senior Application Security Engineer (Hybrid - US) at Energy Solutions

Chicago, Illinois, United States

Apply Now

Not SpecifiedCompensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Energy, Clean TechnologyIndustries

Requirements

Minimum of 5 years' experience in application security
Practice and implementation with Django/Python with a clear application-security focus (production experience and impact, not theory)
Engineering background (software or DevOps/SRE) with the ability to read/modify code, review PRs, and build PoCs
Experience with GitHub security, including reviewing static code scans, triage findings, eliminate noise, and drive remediation with owners
Experience embedding secure SDLC into Git-based workflows and CI/CD (pre-commit, pipeline gates, policy-as-code)
Practical knowledge of SOC 2 and familiarity with NIST 800-53; can turn requirements into technical tasks and evidence
Ability to operate across code, app, and DevOps (containers, IaC basics, secrets, logging/monitoring)
Clear, persuasive communication (verbal and written) and prioritization
Excellent time management skills with a proven ability to meet deadlines
Excellent interpersonal skills

Responsibilities

Contribute to the application security roadmap for our internal applications—prioritize risks and sequence work across codebases, application layer, and DevOps
Consult with engineers to communicate requirements, create actionable tickets/acceptance criteria, and drive adoption
Conduct pull request reviews focused on security, provide guidance on refactors, and approve/deny with clear rationale
Serve as a steward for SAST/scanning: review static code scan results, triage findings, eliminate noise, and drive remediation with owners
Build reference implementations in Django/Python (i.e. authentication patterns, input validation, secrets handling, rate limiting, geo-based access) without direct responsibility for production feature development
Map SOC 2/NIST to engineering work: translate requirements into stories, controls, and automated evidence in CI/CD
Threat modeling & architecture: navigate libraries/architectures and document secure patterns (ADRs/RFCs) that teams follow
Oversee security related tasks in the Software Delivery Life Cycle (SDLC) to ensure software development activities remain in compliance
Collaborate with software developers and code base leads
Act as a liaison between technical requirements from the business (i.e. security, privacy, compliance) and development teams
Participate as a subject matter expert in security architecture, including new designs and design reviews
Recommend application security improvements based on best practices, OWASP standards and other web application security frameworks
Review architecture and compliance-related code changes for security impact
Ensure compliance with all company security policies and standards
Manage and maintain all security related tickets, including recommendations, testing, and validation

Skills

Python

Django

Application Security

SAST

Static Code Analysis

SOC 2

NIST

DevOps

Pull Request Reviews

Authentication

Input Validation

Secrets Management

Rate Limiting

Energy Solutions

Provides market-based energy and environmental solutions

About Energy Solutions

Energy Solutions focuses on creating large-scale environmental impacts through cost-effective solutions for carbon, energy, and water management. The company works with energy providers, government agencies, and businesses to improve their environmental footprint by offering expertise in energy efficiency, demand management, distributed energy resources, and clean transportation. Their approach involves identifying new technologies and collaborating with partners to accelerate market adoption and establish quality standards. Energy Solutions generates revenue by providing market-driven programs that help clients achieve energy savings and comply with regulations. With over 20 years of experience, the company is known for its reliability and commitment to meeting client needs while delivering significant energy savings and environmental benefits.

Oakland, CaliforniaHeadquarters

1995Year Founded

VENTURE_UNKNOWNCompany Stage

Energy, Social ImpactIndustries

201-500Employees

Benefits

Health Insurance

Dental Insurance

Vision Insurance

401(k) Retirement Plan

Company Equity

Remote Work Options

Paid Sick Leave

Paid Holidays

Paid Vacation

Risks

Emerging startups with advanced technologies increase competition in the clean energy sector.

Potential regulatory changes could impact program offerings and require adjustments.

Rising costs of raw materials may affect pricing strategy and profit margins.

Differentiation

Over 25 years of experience in energy and environmental management solutions.

Strong partnerships with governments to establish quality standards for new technologies.

Focus on market-driven, scalable solutions for significant environmental impact.

Upsides

Increased demand for energy management due to smart grid technology adoption.

Opportunities in clean transportation and carbon management from green hydrogen rise.

Growing corporate sustainability commitments boost demand for energy efficiency services.

Land your dream remote job 3x faster with AI

Try Jobo Free