Lead Application Security Engineer

Dallas, TX    Contract

$ Negotiable

About Gig

HEB is seeking a Lead Application Security Engineer in Dallas, TX

Job Posted: Thursday, May 19, 2022

Expires On: Sunday, July 24, 2022

Duration: 1+ years

Desired Experience: 3-5 years

Required Skills: Python, Linux, Terraform or similar, AWS, Azure, PowerShell, Perl, Java

Work Policy : Remote

Gig Description


This role is fully remote and available across all locations within the United States

H-E-B is one of the largest, independently owned food retailers in the nation operating over 420+ stores throughout Texas and Mexico, with annual sales generating over $34 billion. Described by industry experts as a daring innovator and smart competitor, H-E-B has led the way with creative new concepts, outstanding service and a commitment to diversity in our workforce, workplace and marketplace. H-E-B offers a wealth of career opportunities to our 145,000+ Partners (employees), competitive compensation and benefits program and comprehensive training that lead to successful careers.


Since H-E-B Digital Technology's inception, we've been investing heavily in our customers' digital experience, reinventing how they find inspiration from food, how they make food decisions, and how they ultimately get food into their homes. This is an exciting time to join H-E-B Digital--we're using the best available technologies to deliver modern, engaging, reliable, and scalable experiences to meet the needs of our growing audience. If you enjoy taking on new challenges, working in a rapidly changing environment, learning new skills, and applying it all to solve large and impactful business problems, we want you as part of our team.

Our Partners thrive The H-E-B Way. In the Lead/Senior Application Security Engineer job, that means you have a...
HEART FOR PEOPLE... you can serve as technical authority and coordinate work for a group of engineers
HEAD FOR BUSINESS... you make sound, mature technical judgments that result in significant impact
PASSION FOR RESULTS... you can deliver sweeping technical initiatives with minimal guidance

What youll do


Lead Application Security Engineer at H-E-B revolutionize the way that software and systems are designed and deployed; and they aim to optimize the fluidity between development and operations. Lead Application Security Engineer are specialists and multi-disciplinary leaders that provide consultative services and work with internal business team members and external vendors to collect requirements, build and test specifications, and implement documented innovative technical solutions of security requirements.

  • Master CI/CD pipelines by creating patterns of automation, infrastructure deployment, maintenance, monitoring, security and compliance using industry and enterprise best practices.
  • Works with internal Information Systems teams to design, develop, analyze, and implement systems software and applications. Build security standards for teams and integrate platform, including container, vulnerability management tools within CI/CD pipelines.
  • Serves as a subject matter expert for application security, providing guidance on industry best practices and defense in-depth strategies for the security posture of H-E-B cloud-based digital platforms.
  • Works with project teams to assist with testing and evaluation of new solutions ensuring satisfaction of H-E-B security requirements.
  • Tests cloud configurations and infrastructure for vulnerabilities.
  • Ensures cloud infrastructure follows security and compliance control requirements.
  • Designs, develops, documents, automates and implements security infrastructure in code.
  • Creates concise documentation to formalize security processes and guardrails for other engineers.
  • Guides development teams to apply secure automation patterns and encourage Secure Software Development Lifecycle (SSDLC) best practices.

Who you are

  • Minimum of four (4) years of development and support experience with system and security solutions in medium to large enterprises.
  • Minimum of two (2) years of experience building and integrating systems in cloud and on-premise environments utilizing enterprise source code management tools and automation tooling
  • Proficiency with Python, Golang, PowerShell, Perl, or Shell scripting.
  • Proficiency managing Linux-based and Windows Server Operating Systems.
  • Proficiency with secrets management and vaulting technologies.
  • Proficiency utilizing APIs to optimize tasks or achieve automation.
  • Knowledge of Amazon Web Services, Azure and/or Google Cloud Platform with proficiency in at least one.
  • Knowledge of Terraform, Cloud Formation, Pulumi, and/or Ansible with proficiency in at least one.
  • Solid understanding of web applications, web servers, application firewalls, frameworks and protocols with respect to web application development, deployment, and operation in the cloud.
  • Proficiency with cloud resources such as virtual networking, access controls (security groups and ACLs), service endpoints, application and network load balancing, API gateways, service principals, functions/serverless, storage buckets, containers, block storage and file shares.
  • Familiarity with log analysis and Application Performance Monitoring.
  • Familiarity with Agile and other project methodologies.
  • Ability to work well under pressure and have great organizational and interpersonal skills.


  • A Bachelors degree in Computer Science or Software Engineering.
  • One or more professional security certifications such as CISSP, CISA, CEH, GIAC; or cloud certifications from AWS, Azure or GCP.
  • Familiarity with PCI DSS, HIPAA, and other industry regulations
  • Familiarity with API Security, Container Security, AWS Cloud Security

Skill Density


Gig Rate