Application Security Engineer 1

Responsible for supporting application security through security testing, vulnerability management, secure design collaboration, automation support, and incident response participation, contributing to secure development practices across internal and external applications.

About the Team:

At Bloomberg Industry Group, our Application Security team ensures the security of internal and external applications and services. We leverage innovative security tools and a team of dedicated security engineers to protect our products throughout their lifecycle.

Job Summary:

As an Application Security Engineer I, you will be part of a team responsible for ensuring the security of applications, conducting security assessments, and implementing security controls. You will work closely with developers, providing guidance on secure coding practices, and working to integrate security into our CI/CD pipelines.

This entry-level role is ideal for candidates beginning their Application Security career and looking to grow into a seasoned Application Security Engineer.

What You Will Do:

• Participate in application security practices such as:
• Static Application Security Testing (SAST)
• Dynamic Application Security Testing (DAST)
• Software Composition Analysis (SCA)
• Penetration Testing
• Participate in vulnerability management processes.
• Assist in the development, deployment and automation of security tools, scripts, and processes.
• Collaborate with software engineers to design, implement, and review security features in applications.
• Support the identification and resolution of security incidents as part of the incident response team.
• Stay current on emerging security trends, vulnerabilities, and tooling to continuously elevate Application Security.

You Need to Have:

• Basic knowledge of security principles, standards, and best practices.
• Familiarity with one or more programming languages (e.g., Python, Java, JavaScript).
• Ambition to learn and grow into AI Security and Security Engineering.
• Exposure to security testing tools like SAST, DAST, SCA, and/or vulnerability management platforms.
• An associate's degree in Information Security, Computer Science, or a related field, or equivalent experience.
• 0-2 years of relevant experience.

We would Love to See:

• Certifications such as CompTIA Security+ , CompTIA Pentest+, Certified DevSecOps Professional (CDP) or equivalent.
• Hands-on experience with:
• CI/CD pipelines (GitLab, GitHub Actions, Jenkins)
• Cloud environments (AWS)
• Secure coding or code review
• Security automation or scripting
• Participation in security communities, Capture The Flag (CTF) events, open-source contributions, or similar skill-building activities.

Equal Opportunity

Bloomberg Industry Group maintains a continuing policy of non-discrimination in employment. It is Bloomberg Industry Group's policy to provide equal opportunity and access for all persons, and the Company is committed to attracting, retaining, developing, and promoting the most qualified individuals without regard to age, ancestry, color, gender identity or expression, genetic predisposition or carrier status, marital status, national or ethnic origin, race, religion or belief, sex, sexual orientation, sexual and other reproductive health decisions, parental or caring status, physical or mental disability, pregnancy or maternity/parental leave, protected veteran status, status as a victim of domestic violence, or any other classification protected by applicable law ("Protected Characteristic"). Bloomberg prohibits treating applicants or employees less favorably in connection with the terms and conditions of employment, in all phases of the employment process, because of one or more Protected Characteristics ("Discrimination").