Python Django Senior Application Security Engineer Hybrid - US
Energy SolutionsChicago, Illinois
Full Time
Posted November 20, 2025
$119k - $147k
Apply Now
Application opens on company website
Job Description
A Senior Application Security Engineer responsible for managing and enhancing security measures for internal applications, conducting security reviews, implementing best practices, and ensuring compliance with security standards within a primarily remote, growing company.
Key Responsibilities
- Manage security and risk for internal applications by contributing to security roadmap and prioritizing risks.
- Review and approve security-related code changes, pull requests, and static code scan results.
- Develop reference security implementations in Django Python, including authentication, input validation, and access controls.
- Translate security standards and requirements (e.g., SOC 2, NIST) into technical stories, controls, and automated evidence.
- Conduct threat modeling and document secure architecture patterns and design decisions.
- Oversee security tasks within the Software Delivery Life Cycle (SDLC) to ensure compliance.
- Collaborate with development teams to communicate security requirements and drive adoption of security best practices.
- Participate in security architecture reviews and recommend improvements based on industry standards.
Requirements
- Minimum of 5 years experience in application security experience.
- Practice and implementation with Django Python with a clear application-security focus, including production experience and impact, not just theory.
- Engineering background in software or DevOps SRE with the ability to read, modify code, review pull requests, and build proof-of-concept solutions.
- Experience with GitHub security, including reviewing static code scans, triaging findings, eliminating noise, and driving remediation with owners.
- Experience embedding secure Software Development Life Cycle (SDLC) into Git-based workflows and CI/CD pipelines, including pre-commit hooks, pipeline gates, and policy-as-code.
- Practical knowledge of SOC 2 and familiarity with NIST 800-53 to translate requirements into technical tasks and evidence.
- Ability to operate across code, application, and DevOps containers, including Infrastructure as Code (IaC) basics, secrets management, logging, and monitoring.
- Clear, persuasive verbal and written communication skills and the ability to prioritize tasks effectively.
- Excellent time management skills with a proven ability to meet deadlines.
- Excellent interpersonal and negotiation skills.
- Ability to read, review, and make recommendations on secure Django Python patterns.
- Ability to contribute to the application security roadmap, prioritize risks, and sequence work across codebases, application layer, and DevOps.
- Ability to consult with engineers to communicate security requirements, create actionable tickets, acceptance criteria, and drive adoption.
- Serve as a steward for static application security testing (SAST) scanning, including reviewing scan results, triaging findings, and driving remediation.
- Build reference implementations in Django Python such as authentication patterns, input validation, secrets handling, rate limiting, and geo-based access without direct responsibility for production feature development.
- Map SOC 2 and NIST requirements to engineering work, translate requirements into stories, controls, and automated evidence in CI/CD.
- Map architecture and navigate libraries to document secure patterns, ADRs, and RFCs that teams follow.
- Oversee security-related tasks in the Software Delivery Life Cycle (SDLC) to ensure compliance with security policies and standards.
- Review architecture and code changes for security impact and ensure compliance with all company security policies and standards.
- Manage and maintain all security-related tickets, including recommendations, testing, and validation.
- Proficiency in AWS Security services such as CloudWatch and GuardDuty.
- Ability to operate across code, application, and DevOps environments, including containers and secrets management.
Benefits & Perks
Salary range: 119,100 - 147,400 USD annually
Target compensation based on experience: 119,000 - 131,600 USD
Generous retirement package
Medical, dental, and vision insurance
Pre-tax contribution plans
Employee Stock Ownership Plan (ESOP)
Ready to Apply?
Join Energy Solutions and make an impact in renewable energy
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
More at Energy Solutions
More jobs at Energy Solutions
Director, Software Engineering Hybrid - Boston, MA
Energy Solutions
Boston
Full Time
Jan 1
$145k-170k
Director, Software Engineering Hybrid - New York, NY
Energy Solutions
New York
Full Time
Jan 1
$145k-170k
Workday Developer Hybrid Oakland, CA - US
Energy Solutions
Oakland
Full Time
Dec 25
$100k-115k
More jobs in Chicago, Illinois
Energy Advisor- Commercial Sales
5
Remote
Full Time
Dec 29
Tax Director - Manufacturing
Aprio
Chicago
Full Time
Oct 30
Interconnection Project Manager DG
New Leaf Energy
Chicago
Full Time
Dec 19
$113k-131k