Application Security Engineer

1 Month ago • 2 Years + • Cyber Security • $90,000 PA - $150,000 PA

Job Summary

Job Description

The Application Security Engineer will collaborate with various teams to implement and maintain security measures for software systems and applications. This role involves working with auditors, developing security standards, building secure artifact workflows, and conducting threat models. The engineer will also assist service teams in understanding and remediating security findings. This role requires a strong understanding of security principles and a commitment to protecting PENN Interactive's platforms.
Must have:
  • 2+ years of Application Security or DevSecOps experience
  • Experience working with GCP or AWS
  • Experience with software supply chain security (SBOMs, Artifact Signing, Attestations)
  • Programming experience in Python or Go
  • Experience with implementing security tooling in CI/CD
  • Experience supporting RESTful APIs and securing containerized workloads (GKE, EKS)
  • Experience working in regulated environments (PCI-DSS, SOC 2, etc)

Job Details

PENN Entertainment, Inc. is North America’s leading provider of integrated entertainment, sports content, and casino gaming experiences. From casinos and racetracks to online gaming, sports betting and entertainment content, we deliver the experiences people want, how and where they want them.

We’re always on the lookout for those who are passionate about creating and delivering cutting-edge online gaming and sports media products. Whether it’s through ESPN BET, Hollywood Casino, theScore Bet Sportsbook & Casino, or theScore media app, we’re excited to push the boundaries of what’s possible. These state-of-the-art platforms are powered by proprietary in-house technology, a key component of PENN’s omnichannel gaming and entertainment strategy.

When you join PENN Entertainment’s digital team, you’ll not only work on these cutting-edge platforms through theScore and PENN Interactive, but you’ll also be part of a company that truly cares about your career growth. We’re committed to supporting you as you expand your skills and explore new opportunities.

With locations throughout North America, you can build a future at PENN Entertainment wherever you are. If you want to challenge conventions in gaming, media and entertainment, we want to talk to you.

About the Role & Team
As part of the team, you will be working with a team of smart, friendly, and dedicated Engineers, Product Managers and Designers determined to deliver some of the best apps the market has to offer. We want you to be challenged and to get the full experience of what it’s like to work here! We are looking for an Application Security Engineer to join our Application Security team, to work cross-functionally across engineering. They are also a sister team to the Site Reliability Engineering team. This role will be responsible for designing, servicing, and implementing security measures to secure software systems, applications, code, and any related components.

About the Work

  • Collaborate with release and change management, SRE, Engineering, and compliance teams
  • Work with security/internal/external/state auditors to demonstrate compliance
  • Maintain a working knowledge of OWASP top 10 and MITRE top 25 CWE
  • Develop standards for security tooling focused on the application layer (SAST, DAST, SCA, MAST, RASP)
  • Build/implement secure artifact workflows in the SDLC to ensure governance and compliance standards are being met
  • Create technical approaches to implementing Application Security control technologies
  • Contribute to PENN Interactive’s Application Security program to support our continued growth
  • Define and report on security metrics, their delivery, and improvements
  • Work with service teams to conduct threat models of PENN Interactive’s internal and customer facing applications
  • Assist service teams in understanding and remediating security findings (code bashing)
  • Other duties as required.

About You

  • 2+ years of Application Security or DevSecOps experience
  • Experience working with GCP or AWS
  • Experience with software supply chain security (SBOMs, Artifact Signing, Attestations)
  • Programming experience in Python or Go
  • Experience with implementing security tooling in CI/CD
  • Experience supporting RESTful APIs and securing containerized workloads (GKE, EKS)
  • Experience working in regulated environments (PCI-DSS, SOC 2, etc)

What We Offer

  • Competitive compensation package.
  • Comprehensive Benefits package.
  • Fun, relaxed work environment.
  • Education and conference reimbursements.
  • Opportunities for career progression and mentoring others.

#LI-REMOTE #LI-HYBRID

Salary Range

$90,000 - $150,000 USD

Initial placement within the salary range is based on an individual's relevant knowledge, skills, and experience. Base salary is just one component of our competitive Total Rewards package, which includes wellness programs designed to support our team members' financial, physical, and mental well-being. Specific benefits—such as day-one medical coverage, 401(k) matching, annual performance bonus and equity package — depending on position. Paid time off is earned according to the local policy and increases with the length of employment.

Click HERE to discover how we empower team members to grow, thrive, and advance in their careers. Check out our LinkedIn page!

Similar Jobs

hogarth - Head of Studio Delivery

hogarth

Manila, Metro Manila, Philippines (Hybrid)
1 Week ago
bytedance - GPU/AI Application Platform Engineer Intern (Server Platform)

bytedance

San Jose, California, United States (On-Site)
2 Months ago
Sabre India - Product Owner II

Sabre India

Bengaluru, Karnataka, India (On-Site)
5 Days ago
PwC - Executive Assistant

PwC

Riyadh, Riyadh Province, Saudi Arabia (On-Site)
7 Months ago
Tencent - Senior Technical Director

Tencent

Palo Alto, California, United States (On-Site)
7 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

WebTech Corporation - One Stream Reporting and Controls Analyst

WebTech Corporation

State Of Minas Gerais, Brazil (Hybrid)
2 Weeks ago
Sprinkler - Associate Machine Learning

Sprinkler

Gurugram, Haryana, India (On-Site)
5 Days ago
bytedance - Machine Learning Engineer - Pico Perception

bytedance

San Jose, California, United States (On-Site)
2 Months ago
Adtran - Senior Software Engineer (Software as a Service)

Adtran

Gdynia, Pomeranian Voivodeship, Poland (Hybrid)
1 Month ago
Salesforce - Business Development Representative

Salesforce

Dublin, County Dublin, Ireland (On-Site)
2 Weeks ago
Aesir Interactive - Senior Game Producer

Aesir Interactive

Munich, Bavaria, Germany (Hybrid)
2 Months ago
SSC Technologies - Client Experience Account Manager

SSC Technologies

Melbourne, Victoria, Australia (Hybrid)
2 Weeks ago
PwC - IN-Senior Associate_ JAVA_Utility Transformation _Advisory_Kolkata

PwC

Kolkata, West Bengal, India (On-Site)
6 Months ago
Epic Games - Tech UI Designer

Epic Games

Porto Alegre, State Of Rio Grande Do Sul, Brazil (On-Site)
2 Months ago
Boomi  - Pre Sales Sr. Solutions Engineer

Boomi

(Remote)
1 Month ago

Get notifed when new similar jobs are uploaded

Jobs in Philadelphia, Pennsylvania, United States

BioFire - Quality Specialist

BioFire

Salt Lake City, Utah, United States (On-Site)
1 Week ago
Internet Brands - Telecom Engineer

Internet Brands

El Segundo, California, United States (On-Site)
1 Month ago
Avalanche Studios Group - Associate Designer

Avalanche Studios Group

Salt Lake City, Utah, United States (On-Site)
2 Weeks ago
Dentsu - Sr Director, Experience Strategy

Dentsu

Maryland, United States (Remote)
5 Days ago
bytedance - Senior Software Engineer - AI for Security Post-Training

bytedance

San Jose, California, United States (On-Site)
2 Months ago
Jane Street - Campus Trading Recruiter

Jane Street

New York, United States (On-Site)
1 Month ago
Apple - Audio SQA Engineer

Apple

Los Angeles, California, United States (On-Site)
1 Month ago
Veeam Software - AI Application Security Engineer

Veeam Software

California, United States (Remote)
4 Days ago
Next Level Business Services - Java/C++ Developer

Next Level Business Services

Sunnyvale, California, United States (On-Site)
7 Months ago
Ello - Tech Lead, Machine Learning

Ello

San Francisco, California, United States (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

About The Company

Cherry Hill, New Jersey, United States (Hybrid)

Philadelphia, Pennsylvania, United States (On-Site)

Philadelphia, Pennsylvania, United States (On-Site)

Philadelphia, Pennsylvania, United States (Remote)

Philadelphia, Pennsylvania, United States (Remote)

Philadelphia, Pennsylvania, United States (Remote)

Philadelphia, Pennsylvania, United States (On-Site)

Philadelphia, Pennsylvania, United States (Remote)

Philadelphia, Pennsylvania, United States (Hybrid)

Philadelphia, Pennsylvania, United States (Remote)

View All Jobs

Get notified when new jobs are added by Penn Interactive

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug