Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Security Engineer — Application Security & Identity

$60k - $80k
Full-time

Real Chemistry

At Real Chemistry, making the world a healthier place isn’t just an aspiration—it’s our everyday reality. Our drive to transform healthcare is informed by our blend of deep scientific expertise, human-centred creativity, and AI-driven insights, fostering a unique environment where innovation thrives and our people are impact-obsessed. As a global agency, we provide a full suite of services across healthcare communications and marketing to our clients, including top players in the pharmaceutical and biotech industries. Our #LifeatRealChem culture is rooted in our people—we believe we are best together and are committed to excellence for both our clients and colleagues. Whether you're a seasoned professional or just starting your career, if you share our passion for healthcare and connection, we invite you to explore our opportunities. Discover your purpose. Embrace innovation. Experience #LifeatRealChem. Security Engineer — Application Security & Identity Function: Information Security Reports to: Head of Security Role Summary Owns application security across multiple environments, each with increasing control and compliance requirements. Acts as reviewer for the least complex environments and co-reviewer for higher complexity and controlled environments. Defines and enforces security controls across AWS hosted workloads and GitHub based development pipelines while maintaining independent review authority. Applications originate as AI-assisted prototypes and require structured security validation before enterprise production deployment. This is a hybrid role, based in any of our US offices—including New York City, Boston, Chicago, Carmel, or San Francisco—or remotely within the US, depending on team and business needs. Key Responsibilities Conduct security reviews of Internally developed applications including: Data flow validation Security control design and implementation Secrets handling AI/LLM Data Loss Prevention (DLP) Co-lead production readiness reviews for strictly governed environments: Threat modeling Hardening validation Compliance mapping (SOC 2and contractual and regulatory requirements) Define and enforce identity architecture: Corporate identity: Entra ID Workload identity:

AWS IAM

and GitHub OIDC Define and manage GitHub native security controls: GitHub Advanced Security (CodeQL / SAST) Dependabot (dependency scanning) Secret scanning Branch protection and environment controls Establish standards for security tooling: SAST (CodeQL, Semgrep) SCA (Dependabot, Snyk) Container scanning (Trivy, ECR scanning) Infrastructure as Code (IaC) policy (OPA, Sentinel, tfsec) Define AWS security standards: IAM design and least-privilege access Logging and audit requirements Secrets management and rotation Scope and coordinate third-party penetration testing Maintain audit logging maturity per environment requirements: Baseline logging User-level activity tracking Tamper-evident audit trails with SIEM integration Perform initial triage and risk classification within time requirements for critical issues identified in intake (data exposure, credentials, regulatory risk). Partner with DevOps Engineering to ensure security policies are implemented in pipelines and infrastructure AI Security & Usage Governance Define approved AI providers and usage boundaries Establish prompt data classification and handling policies Enforce human-in-the-loop requirements where appropriate Define cost/spend guardrails for AI services Required Qualifications 5+ years (or 3–5+ in high-growth environments) in cloud security, 2 of which should be be focused application security Hands-on security experience with: AWS IAM SAML / OIDC federation GitHub security tooling Experience with threat modeling and coordinating penetration testing Familiarity with SOC 2, GDPR, and HIPAA-adjacent controls In-depth understanding of the risk lifecycle Preferred Qualifications Experience securing GitHub-based CI/CD pipelines Experience in AWS native environments Exposure to regulated industries (GxP, 21 CFR Part 11) Security certifications (CISSP, CCSP, OSCP, GIAC, etc.) Associates degree or higher Experience bringing low-code or AI-generated applications under enterprise security controls Pay Range: $60,000-$80,000 This is the pay range the Company believes it will pay for this position at the time of this posting. Consistent with applicable law, compensation will be determined based on job-related, non-discriminatory factors including but not limited to work experience, skills, certifications, and geographical location. The Company reserves the right to modify this pay range at any time Real Chemistry is proud to be Great Place to Work® certified; check out what our people shared about our culture and workplace on our Great Places to Work Profile here. We believe we can do our best when feeling our best, which is why we’ve put together a benefits program designed to give you the support you and your family need at every stage of life. Real Chemistry offers a comprehensive benefit program and perks, tailored to your region. Globally, this includes offices in our key markets with free snacks to keep you running all day long, generous holiday and paid time off, options for private medical, dental, and vison plans, and support in saving for the future. Other perks include mental wellness coaching and support and access to more than 13,000 online classes with LinkedIn Learning. Learn more about our great benefits and perks and search specific offerings in your region at: Working with Real HART: Since the pandemic, we have adapted to how our people told us they want to work. We have office locations in cities in the US, UK, and Europe with many employees and clients that serve as hubs where and when they need us. For employees who are within an hour of one of our offices, we expect attendance in the office two days per week, either at a Real Chemistry office or onsite with clients. We are also actively opening new office locations, so if one opens near you, our Real HART policy will apply. We are not looking for attendance for the sake of attendance but believe that the opportunity to coordinate in-office team meetings, 1:1 meetings with managers, taking advantage of on-site learning, and connecting with client partners is a critical to delivering on our purpose of making healthcare what it should be. Outside of these offices, we have regions, where people work remotely but come together quarterly for collaboration, culture and learning opportunities. We call this our Real Hybrid and Regional Teams (Real HART) approach. Real Chemistry believes we are best together – and our workplace strategy fosters connection and collaboration in person – but also supports flexibility for our people. Real Chemistry is an Equal Opportunity employer. We continually strive to build and sustain an inclusive and equitable work environment where our employees feel empowered to leverage all they bring from their personal lived experience and professional expertise, to make our team the best in the industry. We encourage motivated and qualified applicants to apply without regard to race, color, religion, sex (including pregnancy), sexual orientation, gender identity/expression, ethnic or national origin, age, physical or mental disability, genetic information, marital information, or any other characteristic protected by federal, state, or local employment discrimination laws where Real Chemistry operates. Should you require accommodations throughout the interview process please let your recruiter know. *Notice: Real Chemistry and its affiliates' names are being misused by scammers through messaging services, fake websites, and apps. Do not share personal or financial information or make payments to any unverified sources claiming to be connected to Real Chemistry. We are working to stop these unauthorized activities and protect our community. Read more here.

Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Security Engineer — Application Security & Identity in Carmel, IN vacancy
  • $104k - $156k

     ...Hybrid Job Overview The Advanced Security Engineer is a technically deep, hands-on...  ...Layered Defense/Defense in Depth As applicable, design, deploy and optimize security...  ...perimeter, network, host, application, identity and data layers, ensuring and maintaining... 
    Application
    Remote work

    Relativity

    Indianapolis, IN
    4 days ago
  •  ...architectures that support the bank's information security operations functions. This role...  ...as a technical resource for security engineering initiatives, applying advanced...  ...existing network attached platforms and applications, ensuring compliance through structured... 
    Application
    Remote work

    WesBanco Bank Inc.

    Indianapolis, IN
    2 days ago
  • $170.6k - $390k

     ...your career in information security! The opportunity The...  ...with infrastructure, cloud, application, and security operations teams...  ...Senior Manager in Cybersecurity Engineering, where you will play a...  ...sexual orientation, gender identity/expression, pregnancy, genetic... 
    Application
    Summer holiday
    Remote work
    Flexible hours

    EY

    Indianapolis, IN
    2 days ago
  • $98.9k

     ...What you can expect The Security Engineer is responsible for security design and reviews across...  ...assessment, and security testing (web application, native application, web services,...  ...race, religion, national origin, gender identity or expression, sexual orientation, age... 
    Application
    Work at office
    Remote work

    Zoom Corporation

    Indianapolis, IN
    4 days ago
  • $86.8k - $198k

     ...Endpoint Security Engineer The Opportunity: Serve as engineer and part of our endpoint...  ...~ Experience with DoD cybersecurity applications ~ Top Secret clearance ~ HS diploma...  ...within 90 days from the Posting Date. Identity Statement As part of the hiring process... 
    Application
    Full time
    Contract work
    Part time
    Work at office
    Local area
    Remote work

    BOOZ, ALLEN & HAMILTON, INC.

    Indianapolis, IN
    5 days ago
  •  ...the way. We're Looking For: We are seeking a Senior Security Engineer with experience in advanced detection engineering,...  ...DPI) tuning and custom WAF rule-writing for specialized web applications. Technical Benchmarking & PoC Execution : Leading the rigorous... 
    Application
    Temporary work
    Work at office
    Local area
    Immediate start

    Openlane

    Carmel, IN
    2 days ago
  • $99k - $225k

     ...Network Security Engineer The Opportunity: Are you looking for an opportunity to share...  ...tools, security systems, devices, and applications needed to assess vulnerabilities and recommend...  ...90 days from the Posting Date. Identity Statement As part of the hiring... 
    Application
    Full time
    Contract work
    Part time
    Work at office
    Local area
    Remote work

    BOOZ, ALLEN & HAMILTON, INC.

    Indianapolis, IN
    2 days ago
  • $157.8k - $236.8k

     ...Team is hiring a Principal IT Security Architect who will play a...  ...lead and senior architects and engineers, and providing overall...  ...and procedures for ecosystem applicability and reference Developing formal...  ...domains, including identity and access management, privileged... 
    Application
    Remote job
    Full time
    Temporary work
    Work experience placement
    Work at office
    Work from home

    CNO Financial Group, Inc.

    Carmel, IN
    4 days ago
  •  ...What You’ll Be Doing As a Security Automation Engineer, you'll spend most of your time designing and...  ...teams where they are. Familiarity with application security fundamentals such as OWASP...  ...age, race, color, religion, gender identity, sex, gender expression, sexual orientation... 
    Application
    Full time
    Visa sponsorship
    Work visa

    100 Eli Lilly and Company

    Indianapolis, IN
    5 days ago
  • $123.55k - $142k

     ...Mind by Pioneering Safety and Security At Allegion, we help keep...  ...The Senior Product Security Engineer will have a strong ownership...  ...authorization, device, and application security. Use yourin-...  ...religion, age, gender, gender identity, disability status, sexual orientation... 
    Application
    Temporary work
    Flexible hours

    Allegion

    Indianapolis, IN
    3 days ago
  • $84.91k - $113.91k

     ...Overview Your Future. Secured. ISC2 is a force for good. As the...  ...Position Summary The AI Security Engineer is responsible for...  ...intersection of offensive security, application security, and data science —...  .... ~ Experience with identity and access management in cloud... 
    Application
    Work experience placement
    Work at office
    Remote work
    Night shift

    ISC2

    Indianapolis, IN
    3 days ago
  • $87.7k - $164k

     ...Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider the entire security lifecycle...  ...in Computer Science, Information Systems, Engineering or a related field 5+ years experience in... 
    Application
    Summer holiday
    Local area
    Flexible hours

    Ernst & Young Oman

    Indianapolis, IN
    5 days ago
  •  ...Intern (AI and Cloud) to join our engineering team. This is a hands‑on...  ...experienced developers on real‑world web applications spanning the .NET and Java...  ...with exposure to cloud platforms, identity and access management (IAM), and secure backend development. You will participate... 
    Application
    Internship
    Local area

    RADCUBE | Rapid Technology Solutions

    Carmel, IN
    3 days ago
  • $86.8k - $198k

     ...Job Number: R0242895 Endpoint Security Engineer The Opportunity Serve as engineer and part of our endpoint security team. Perform updates...  ...Security Solutions (ESS) Experience with DoD cybersecurity applications Top Secret clearance HS diploma or GED DoD 8570 IAT III... 
    Application
    Contract work
    Local area

    Phase2 Technology

    Indianapolis, IN
    5 days ago
  • $112.16k - $201.89k

     ...Position Title: Information Security Advisor Job Description:...  ...Provides first level engineering design functions and trouble...  ...sets: 1) Access Control, 2) Application Security, 3) Business Continuity...  ..., gender (including gender identity and gender expression), marital... 
    Application
    Temporary work
    Work experience placement
    Work at office
    Local area
    2 days per week
    1 day per week

    Elevance Health

    Indianapolis, IN
    2 days ago
  •  ...Type: Contract-to-Hire Category: Security Industry: Government Workplace Type...  ...federal security clearance requirements, applicant must be a United States Citizen or...  ...discriminate on the basis of race, color, gender identity or expression, sexual preference or... 
    Application
    Hourly pay
    Permanent employment
    Contract work
    Local area
    Remote work

    Eliassen Group

    Indianapolis, IN
    5 days ago
  • $40k

     ...mission-critical programs across national security, defense, and public service delivery....  ...national scale. The Junior Security Engineer supports 24x7 enterprise cybersecurity operations...  ...activities, including access changes, application removal, configuration updates, and... 
    Application
    Contract work
    Remote work

    MAXIMUS

    Indianapolis, IN
    1 day ago
  •  ...Network Security Engineer Group 1001 is a consumer-centric, technology-driven family of insurance companies on a mission to deliver outstanding...  ...understand the business and technological needs of unique application infrastructure across a diverse cloud, on premise, and SaaS... 
    Application
    Temporary work
    Immediate start

    Group1001

    Zionsville, IN
    4 days ago
  • $89k - $143.75k

     ...Function: R&D Software/Systems Engineering Job Category:...  ...periodic risk assessment of security vulnerabilities in software...  ...working with multi-threaded applications. ~ Familiarity with shell...  ...sexual orientation, gender identity, age, national origin, disability... 
    Application
    Full time
    Temporary work
    Work at office
    Local area
    Remote work
    Night shift

    Johnson & Johnson

    Indianapolis, IN
    2 days ago
  • $184k - $230k

     ...make the world's health data secure, accessible and actionable,...  ...across Datavant's portfolio of applications, ensuring that security is...  .... Partnering closely with engineering teams, product leadership, and...  ...sexual orientation, gender identity, religion, national origin,... 
    Application
    Remote work

    Datavant

    Indianapolis, IN
    1 day ago
  •  ...Manage service principals and identity access within Azure/Entra ID Support Microsoft...  ...IT teams Partner closely with cloud engineering and operations teams to maintain system...  ...status or characteristic protected by applicable laws, regulations, and ordinances. If you... 
    Application

    Insight Global

    Carmel, IN
    4 days ago
  •  ...strong end-user support.* Maintain system security, including roles, security groups, and...  ....* Advanced proficiency in MS Office applications, especially Word and Excel.* Advanced analytical...  ..., sex, sexual orientation, gender identity, national origin, disability status,... 
    Application
    Flexible hours

    Allied Solutions

    Carmel, IN
    1 day ago
  •  ...Information Security Manager Manages, monitors and maintains all related Information...  ...Veteran Accommodations All qualified applicants will receive consideration for employment...  ...religion, sex, sexual orientation, gender identity, national origin, disability, or status... 
    Temporary work
    Night shift

    Republic Airways

    Carmel, IN
    7 days ago
  •  ...critical capabilities built in such as security, compliance controls, and observability....  ...visit Job Summary As a Staff Security Engineer at EDB, you will be a technical leader...  .... You will lead cross-functional application security initiatives, build automation and... 
    Application
    Remote work

    EDB

    Indianapolis, IN
    3 days ago
  • $142k - $178k

     ...of‑concepts guided by the Sr. Identity Architect and Service Manager...  ...their requirements and engineer solutions based on best practices...  ...highly available, stable, and secure Directory Services environment...  ...in developing Java web applications (J2EE). Web development with... 
    Application
    Permanent employment
    Temporary work
    Work experience placement
    Flexible hours

    Honeywell

    Indianapolis, IN
    2 days ago
  • $103k - $128k

    Description As MISO's Security Architect I , you will support the design, implementation...  ...across enterprise systems, applications, and cloud platforms. This role places...  ...embed secure-by-design practices into engineering and operations. Develop and integrate... 
    Application
    Local area

    MISO

    Carmel, IN
    5 days ago
  • $73.8k - $218.8k

     ...in cloud, infrastructure and application services dedicated to...  ...availability, batch processing, security, and maintenance models. You...  ...planning, deal shaping, presales engineering, or enterprise solution...  ...sexual orientation, gender identity or expression, genetic information... 
    Application
    Work experience placement
    Live in
    Work at office
    Local area
    Flexible hours

    Accenture

    Carmel, IN
    4 days ago
  •  ...methodology.This is a great opportunity to work in an international team, apply and learn modern IT technologies Responsibilities Application Security with strong AI/ML security exposureThreat modeling and risk assessment for AI systems, APIs, and cloud-native... 
    Application

    Luxoft

    Indianapolis, IN
    4 days ago
  •  ...Technical Support Engineer GadellNet Consulting Services is a rapidly...  ...such as CompTIA Network+, Security+, Microsoft Certified: Azure Administrator...  ...United States at the time of application. Employment is contingent on verification of identity and eligibility to work in the... 
    Application
    Work at office
    Remote work
    Flexible hours

    GadellNet

    Indianapolis, IN
    5 days ago
  •  ...• Resource must have hands-on experience deploying Java-based applications to AWS applications and web server environments. • Experience...  ..., color, national origin, gender sexual orientation, gender identity, age, or marital status. We also are a Google Cloud and Oracle... 
    Application
    Remote work

    InterSources

    Indianapolis, IN
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Security Engineer — Application Security & Identity. Be the first to apply!