Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Application Security Engineer II

$85.7k - $125.69k

Credit Acceptance

Credit Acceptance is proud to be an award-winning company recognized both locally and nationally across multiple workplace categories. Our world-class culture is shaped by dedicated team members who are driven to succeed as professionals individually and together as a team. Backed by a strong product, exceptional people, and a stable financial foundation, we’ve grown into a leading provider of used and new car financing across the country. Our Engineering and Analytics Team Members utilize the latest technology to develop, monitor, and maintain complex practices that help optimize our success. Our Team Members value being challenged, are encouraged to express their ideas, and have the flexibility to enjoy work life balance. We build intrinsic value by partnering with all functions of our business to support their success and make strategic business decisions. We focus on professional development and continuous improvement while enjoying a casual work environment and Great Place to Work culture! The Application Security Engineer is responsible for securing the software and applications that Credit Acceptance builds, buys, and operates. This role partners closely with engineering, product, architecture, and business teams to ensure that applications handling sensitive consumer, dealer, and loan data are designed, developed, and deployed in a secure manner, meeting both internal security standards and the regulatory expectations of a financial services environment. This position focuses on embedding security into the software development lifecycle by providing hands‑on technical guidance, performing threat modeling and application security reviews, defining secure design patterns and guardrails, and supporting engineering teams as they build and maintain modern web, mobile, API, and cloud‑based applications. Outcomes and Activities: This position will work from home; occasional planned travel to an assigned Southfield, Michigan office location may be required. However, this position is permitted to work at a Southfield, Michigan office location if requested by the team member. Partner with engineering and architecture teams to design and review application architectures (web, mobile, API, and microservices) for security, privacy, and regulatory compliance. Perform security reviews of applications and services at each stage of the SDLC, including design, code, building pipelines, dependencies, infrastructure‑as‑code, and third‑party components. Identify and mitigate risks such as: Injection, authentication/authorization, injection and session management flaws (OWASP Top 10, ASVS) Insecure handling of NPI, PII, and payment data Management of open‑source dependency vulnerabilities and software supply chain risks Insecure cloud configurations, secrets management, and exposed APIs Support threat modeling and risk assessments for new and existing applications, assisting teams in implementing practical mitigations. Assess and help mitigate security risks introduced by AI‑assisted and agentic development tools (e.g., GitHub Copilot, Claude Code, LiteLLM), including review of AI‑generated code, exposure of source code or secrets to external models, and proper use of internal LLM gateways. Governance, Standards, and Policy Contribute to and operationalize application security standards, secure coding guidelines, and secure design patterns used across the company. Evaluate application security tooling (SAST, DAST, SCA, IAST, secrets scanning, ASPM) and vendors to ensure alignment with security, privacy, and compliance requirements. Support compliance with regulatory and industry frameworks (e.g., PCI DSS, GLBA, NIST SSDF, SOX) in collaboration with legal, compliance, audit, and risk partners. Contribute to standards and guardrails for secure use of AI‑assisted development tools and agentic coding workflows. Collaboration & Advisory Act as a trusted security advisor to Engineering, Product, and DevOps teams building, maintaining and operating applications at Credit Acceptance. Participate in design reviews, sprint planning, and architecture working sessions focused on secure development and deployment. Provide guidance on the secure use of frameworks, libraries, APIs, authentication systems, and cloud services that interact with company systems and data. Advise engineering teams on safe adoption of AI coding assistants and agentic development tools, including approved usage patterns, data handling expectations, and review of AI‑generated changes. Continuous Improvement Stay current on application security threats, vulnerabilities, and best practices, including emerging risks across web, mobile, API, and cloud‑native applications. Recommend improvements to tooling, processes, and controls to strengthen the company's application security posture and shift security left in the SDLC. Contribute to internal documentation, secure coding training, and security enablement for developers and engineering teams. Competencies: Customer Empathy: Customer Empathy is the ability to understand the perspectives, pain points, and experiences of customers. It involves actively putting oneself in the customer's shoes, comprehending their needs and challenges, and using that understanding to provide a better, more customer-centric experience. Engineering Excellence: Engineering Excellence is about bringing great craftsmanship and thought leadership to deliver an outstanding product that delights customers and solves for the business. This involves the pursuit and achievement of high standards, best practices, innovation, and superior solutions. One Team: A One Team mindset refers to a collaborative approach across the organization, where individuals work together seamlessly, without boundaries, as a single, cohesive team. Shared goals, open communication and mutual support create a sense of collective purpose. This enables teams to navigate challenges and pursue shared objectives more effectively. Owner's Mindset: Owner's Mindset involves adopting a set of behaviors that reflect a sense of responsibility, accountability, strategic thinking, and a proactive approach to managing your domain. As an owner, you understand the business and your domain(s) deeply and solve for the right outcome for the domain(s) and the business. Required: Bachelor’s Degree or equivalent experience 3+ years of experience in application security, product security, or secure software development. 2+ years of hands‑on experience performing application security reviews, penetration testing, threat modeling, or secure code review. Preferred: Experience securing modern web, mobile, and API‑based applications in a regulated industry (e.g., financial services, healthcare). Familiarity with the OWASP Top 10, OWASP ASVS, and OWASP SAMM, and with software supply chain frameworks such as SLSA. Experience with cloud platforms (e.g., AWS, Azure, GCP) and containerized environments. Knowledge of regulatory and compliance considerations relevant to financial services (e.g., PCI DSS, GLBA, SOX). Experience embedding security into software development workflows (DevSecOps) and CI/CD pipelines. Hands‑on experience with application security tooling such as SAST, DAST, SCA, IAST, secrets scanning, or ASPM platforms. Relevant certifications (e.g., GWAPT, GWEB, OSWE, CSSLP, CISSP) a plus. Familiarity with security considerations for AI‑assisted development environments (e.g., GitHub Copilot, Claude Code) and LLM gateway/proxy tooling (e.g., LiteLLM). Knowledge and Skills: Strong understanding of modern software development practices, frameworks, and architectures (web, mobile, API, microservices, serverless). Working knowledge of common application vulnerabilities and exploitation techniques, and the controls that mitigate them. Understanding of authentication, authorization, identity, cryptography, and secure data handling patterns. Familiarity with threat modeling, security testing, and risk assessment techniques. Ability to read and reason about code in one or more common programming languages. Working knowledge of AI‑assisted and agentic software development tools (e.g., GitHub Copilot, Claude Code, LiteLLM) and the security risks they introduce in the SDLC. Ability to communicate security risks and recommendations clearly to both technical and non‑technical audiences. Target Compensation: A competitive base salary range from $85,695 – $125,685. This position is eligible for an annual variable cash bonus, between 7.5 - 15%. Bonus amounts are based on individual performance. Final compensation within the range is influenced by many factors including role-specific skills, depth and experience level, industry background, relevant education and certifications. Candidates who reside in the following major metropolitan areas may be eligible for a premium on top of the posted range based on their specific zone: San Francisco, Seattle, Boston, New York City, Los Angeles and San Diego. INDENGLP #zip #LI-Remote Benefits Excellent benefits package that includes 401(K) match, adoption assistance, parental leave, tuition reimbursement, comprehensive medical/ dental/vision and many nonstandard benefits that make us a Great Place to Work Our Company Values: To be successful in this role, Team Members need to be: Positive by maintaining resiliency and focusing on solutions Respectful by collaborating and actively listening Insightful by cultivating innovation, accumulating business and role specific knowledge, demonstrating self-awareness and making quality decisions Direct by effectively communicating and conveying courage Earnest by taking accountability, applying feedback and effectively planning and priority setting Expectations: Remain compliant with our policies processes and legal guidelines All other duties as assigned Attendance as required by department Advice! We understand that your career search may look different than others. Our hiring team wants to make sure that this would be a fit not just for us, but for you long term. If you are actively looking or starting to explore new opportunities, send us your application! P.S. We have great details around our stats, success, history and more. We’re proud of our culture and are happy to share why – let’s talk! Required degrees must have been earned at institutions of Higher Education which are accredited by the Council for Higher Education Accreditation or equivalent. Credit Acceptance is dedicated to providing a safe and inclusive working environment for all. As part of our Culture of Compliance, we are proud to be an Equal Opportunity Employer and value our culturally diverse workforce. All qualified applicants will receive consideration for employment regardless of the person’s age, race, color, religion, sex, gender, sexual orientation, gender identity, national origin, veteran or disability status, criminal history, or any other legally protected characteristic. California Residents: Please click here for the California Consumer Privacy Act (CCPA) notice regarding the personal information Credit Acceptance may collect from you. Play the video below to learn more about our Company culture.

Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Application Security Engineer II in Madison, WI vacancy
  • $150.2k - $225.4k

     ...About the team: The Information Security organization advances the overall state of security at Rubrik through purposeful...  ...information. About the role: Rubrik is seeking an Application Security Engineer. In this role, you will be responsible for ensuring that... 
    Suggested
    Work experience placement
    Local area
    Remote work
    Shift work

    Rubrik

    Madison, WI
    7 days ago
  • $110k

     ...Job Seekers can review the Job Applicant Privacy Policy by clicking here ( . Job Description : SUMMARY We seek a highly motivated and experienced Application Security Engineer to join our growing security team. This role is highly technical and candidates must... 
    Suggested
    Full time

    Ryder

    Madison, WI
    4 days ago
  • $78.4k - $127k

     ...Responsible for supporting the sustainment of Applications/Services providing the backend administration and support in the Oracle Cloud...  ..., systems administration or other IT related field. CompTIA Security+ Candidates should have some experience with ReadyAPI, Loadrunner... 
    Suggested
    Contract work
    Work at office

    ASM Research, An Accenture Federal Services Company

    Madison, WI
    2 days ago
  •  ...a leading financial services organization, is seeking a Sr. Application Engineer to join their team. As a Sr. Application Engineer, you will...  ...and related applications to ensure optimal performance and security. Collaborate with business units to analyze, develop, and... 
    Suggested
    Weekly pay
    Temporary work
    Flexible hours

    Experis/Manpower Group

    Cottage Grove, WI
    3 days ago
  •  ...and our recent move into a brand-new manufacturing location, the future has never looked brighter. We are seeking a  Senior Application Engineer to provide clients with expert guidance on equipment functionality and operation. This role involves providing technical support... 
    Suggested
    Work at office
    Flexible hours

    Biofab Technologies

    Madison, WI
    9 days ago
  • $132.23k - $176.31k

     ...transforming how businesses connect, secure, and scale in an AI-driven...  ...connecting people, data, and applications quickly, securely, and...  ...seeks a Lumen Network Design Engineer V (WAN / Work Package Engineer...  ...or SCI Eligible. IAT Level I/II/III Certification. Travel is... 
    Contract work
    Temporary work
    For contractors

    Lumen Inc

    Madison, WI
    3 days ago
  •  ...Engineer II in Manufacturing Engineering As part of the Thermo Fisher Scientific team, you'll discover meaningful work that makes a positive impact on a global scale. Join our colleagues in bringing our Mission to life every single day to enable our customers to make... 
    Relocation package

    Avery Healthcare Group Ltd.

    Madison, WI
    3 days ago
  • $94.1k - $152.8k

     ...Position Overview The ServiceNow Engineer provides advanced engineering...  ...Mapped to the Cloud Engineer II standard job, the position...  ...ITOM, and related enterprise applications, ensuring configurations...  ...while maintaining performance, security, and supportability.... 
    Contract work
    Work at office

    ASM Research, An Accenture Federal Services Company

    Madison, WI
    2 days ago
  • $69.4k - $158k

     ...other developers, product owners, test engineers, and architects to ensure the timely and...  ...configuration, customization, and implementation of applications and 3rd party integrations. You'll also...  ...or CS Salesforce Platform Developer II Certification Vetting:... 
    Full time
    Contract work
    Part time
    Work at office
    Local area
    Remote work

    Booz Allen Hamilton

    Madison, WI
    2 days ago
  • $85.39k - $116.98k

     ...Developer (Angular/NodeJS) - II Location: Remote Department...  ...Experience:  Experienced Security Clearance Level:  Public...  ...a cloud-based Web Dashboard application that processes healthcare Electronic...  ...-end C#/.Net and AWS data engineers to define clean API contracts... 
    Full time
    Remote work

    Syms Strategic Group, LLC (SSG)

    Madison, WI
    7 days ago
  • $75k - $90k

     ...therapies to patients in need. The Position The Associate Engineer II, Automation, plays a critical role in plant engineering...  ...must have current, valid authorization to work in the country where this role is located. California Applicant Privacy Policy... 

    Arrowhead Pharmaceuticals

    Madison, WI
    19 days ago
  • $40 per hour

    A leader in AI training for cybersecurity is seeking experienced cybersecurity professionals to evaluate AI-generated content and solve technical problems. This role offers full-time or part-time remote work with the flexibility to choose projects and work hours. Candidates...
    Hourly pay
    Full time
    Part time
    Remote work

    DataAnnotation

    Madison, WI
    3 days ago
  • $100k

     ...Escape the narrow engineering silos of massive corporations and step into a high‑impact role with a small, growing manufacturer where...  ...highly engineered electronic products for demanding industrial applications, offering you direct access to leadership, genuine design... 
    Visa sponsorship
    Relocation package

    H. T. PROF Group

    Madison, WI
    4 days ago
  •  ...Industrial Design Engineer UPC has been designing and manufacturing retail store fixtures and point-of-purchase displays in Madison, Wisconsin since 1978. We operate out of a 120,000 sq ft facility, and we're family-owned, growing, and hands-on at every level. If you... 

    Universal Presentation Concepts

    Madison, WI
    2 days ago
  •  ...Industrial Design Engineer Madison, WI | Full-Time About Universal Presentation Concepts (UPC) At UPC, we design and manufacture high‑quality retail store fixtures and point‑of‑purchase (P.O.P.) displays that bring brands to life. Located in Madison, WI, our... 
    Full time

    MRA Recruiting Services

    Madison, WI
    5 days ago
  •  ...applying NIST Cybersecurity Framework, NIST RMF, and other common security standards. #). 2+ years of experience in...  ...common security frameworks and control theories, including current applicable NIST, CJIS, and ISO standards. 2+ years of experience... 
    Work at office

    American Technology Consulting

    Madison, WI
    1 day ago
  • $112.5k - $202.5k

     ...building solutions to help improve the security of the company? Do you want to collaborate...  ...directly to the Director of Security Engineering. You will have the opportunity to...  ...security design guidance for new and existing applications, systems and platforms. As a Senior... 
    Work experience placement
    Work at office
    Worldwide

    Akamai

    Madison, WI
    4 days ago
  • $112k - $130k

     ...Senior Security EngineerRemote - United StatesJR013945 At Ensono, our Purpose is to be...  ...Summary The Senior Information Security Engineer is responsible for designing,...  ...Evaluate, test, and deploy security application upgrades and patches. Deliver consultative... 
    Full time
    Temporary work
    Remote work
    Work from home
    Flexible hours

    Ensono

    Madison, WI
    2 days ago
  •  ...Office Location (if not fully remote): 4750 S Biltmore Lane , Madison, Wisconsin 53718 Job Description As a Senior Security Engineer, you will serve as the technical authority for our Microsoft security stack, overseeing the architecture and optimization of... 
    Work at office

    Fairway Independent Mortgage

    Madison, WI
    3 days ago
  • $98.9k

     ...What you can expect The Security Engineer is responsible for security design and reviews across our products and services. The ideal candidate...  ...code review, security assessment, and security testing (web application, native application, web services, cloud-based services, and... 
    Work at office
    Remote work

    Zoom Corporation

    Madison, WI
    5 days ago
  • $105k - $185k

     ...Menlo Security's mission is enabling the world to connect, communicate and collaborate...  ...are seeking a forward-thinking Security Engineer to join our team, focusing on SecOps for...  ...Security Lifecycle: Implement Cloud Native Application Protection Platform (CNAPP) strategies... 
    Local area
    Remote work
    Shift work

    GrabJobs

    Madison, WI
    2 days ago
  • $63k - $91k

     ...an opportunity for a Software Engineer to formulate and design...  ...solutions. Develop software applications using one or more programming...  ...standards, policies, procedures, and security requirements. Working...  ...IAT Level I and/or IAT Level II requirements. The selected candidate... 
    Full time
    Temporary work
    Flexible hours

    W R Systems

    Madison, WI
    4 days ago
  • $40 per hour

     ...cybersecurity firm is seeking experienced cybersecurity professionals to join their team in a remote capacity. You will evaluate AI-generated security content and solve technical cybersecurity problems. The ideal candidate will have a minimum of 2 years hands-on experience in... 
    Hourly pay
    Remote work
    Flexible hours

    DataAnnotation

    Madison, WI
    3 days ago
  •  ...Our embedded software engineers craft and innovate on truly unique and sophisticated controls platforms. As part of our team, you will...  ...Opportunity Employer This employer is required to notify all applicants of their rights pursuant to federal employment laws.For further... 

    Sub-Zero & Wolf Appliance

    Madison, WI
    1 day ago
  •  ...Software Engineer The Software Engineer reviews the technical designs, security configurations, and implements software programming applications, including software infrastructure and development tools...  ...of building applications in IIS with load balancing and diverse... 

    Samprasoft

    Madison, WI
    6 days ago
  •  ...individual to work as an iOS and Android mobile app developer. Candidates will participate on a team to develop and maintain mobile application software. This role involves using Flutter as a cross-platform development tool to help build and enhance our suite of mobile... 

    Sub-Zero & Wolf Appliance

    Madison, WI
    3 days ago
  •  ...an emerging leader in nuclear engineering, our startup is developing...  ...revolutionary reactor technology to secure safe and abundant energy for...  ...-level Nuclear Engineer I/II to join our dynamic team and...  ...materials and high-temperature applications. Familiarity with risk... 
    Permanent employment
    Local area

    Fissionaire

    Madison, WI
    a month ago
  • Our Benefits - Designed with You in Mind Comprehensive Health & Well-being Coverage From your very first day, you’ll have access to medical, dental, vision, and prescription drug coverage - ensuring you and your family stay healthy and protected. Generous Paid Time...
    Full time
    Immediate start

    Stellantis

    Madison, WI
    4 hours ago
  •  ...use in-house talent, expertise and resources to plan, design, engineer, manage, conduct maintenance on and construct projects. Our turnkey...  ...opportunities. Equal Opportunity Employer All qualified applicants will receive consideration for employment and will not be discriminated... 
    For contractors
    Work at office
    Local area
    Worldwide

    Quanta Infrastructure Solutions Group, LLC

    Madison, WI
    6 days ago
  • Job Summary The Design Engineer position requires a robust knowledge of engineering principles, paired with strong planning and design skills, to support product development and enhancement goals. Essential Duties and Responsibilities Apply engineering principles... 
    Casual work
    Work at office
    Flexible hours
    Night shift
    Afternoon shift

    Bock Water Heaters Inc

    Madison, WI
    2 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Application Security Engineer II. Be the first to apply!