Oh Snap!
This job is no longer active - but you can still view the details below.

Application Security Engineer

| Chicago

About the Company

Civis Analytics helps leading businesses, nonprofits, and government use data to identify, attract, and engage customers, constituents, and citizens. With a blend of proprietary data, technology and advisory services, and an interdisciplinary team of data scientists, developers, and survey science experts, Civis helps organizations stop guessing and start using statistical proof to guide decisions. Learn more about Civis at www.civisanalytics.com.

What we are looking for  

Are you a self-starter? Do you want to work where you can make an immediate impact? Civis is looking for an Application Security Engineer to join our team!

As an Application Security Engineer, you’ll be responsible for performing penetration testing on our applications, analyzing and providing appropriate security architectural recommendations, and working across multiple departments (including with our engineering and data science teams) to improve the security of our product.


  • Work with our Director of Cybersecurity and our engineering team to better our threat stance for the company, our product, and our customers.
  • Perform a variety of application level penetration testing which will include both automated and manual review of our software.
  • Conduct a variety of static, dynamic, and manual code reviews of our software.
  • Perform application security architecture reviews to identify possible data privacy and security risk
  • Actively develop professional-grade software in our existing applications alongside other development teams as well as build new and enhanced tools inside the security group.
  • Consult with our engineering and data science teams to integrate automated security tools into our continuous integration and delivery pipeline.
  • Stay up-to-date with new application security vulnerabilities, tools and attack methods to better improve our information security posture. 

Minimum Requirements

  • 1-3 years’ experience in application security or Bachelor’s degree in Cybersecurity/Information Security or an equivalent, relevant field.
  • Experience developing web applications with frameworks such as Rails or Django
  • Comfort working with SQL databases and cloud hosting infrastructure
  • Strong understanding of web and mobile application security vulnerabilities and concepts.
  • Ability to work both independently and collaboratively with peers, across teams, and with management.
  • Ability to deliver technical reports and communicate technical concepts to both non-technical business users as well as client technical stakeholders.
  • Demonstrated ability to perform vulnerability and penetration testing.
  • You understand that threats don't work 9 to 5 and sometimes we can't either!

Preferred Qualifications

  • Prior experience on an internal application security team
  • 3-5 years in security analysis in cloud services (Amazon Web Services, Google Cloud Platform or Azure)
  • 3+ years of experience with container technologies and at least 1+ with Kubernetes.
  • Prior pen testing experience
  • Experience with Ruby on Rails, React & Python

Who we are

At Civis, we have opportunities for applicants who are newcomers, seasoned professionals, and anywhere in between. Our teams are energized by complex challenges and value diversity of thought. Opportunities to stand out and inspire happen daily and we trust and encourage you to act on your ideas – no matter how big they are. We offer you the tools and community you need to do your best work. Each of us is committed to holding ourselves accountable for results, challenging the status quo and finding new ways to grow our company and each other.

Why Civis Analytics?

  • The opportunity to be part of a growing tech startup focused on continued learning, mentorship, and internal promotion
  • Competitive benefits including flexible PTO, 401K match with immediate vesting, as well as health, dental, and vision benefits
  • Downtown open office environment near great restaurants and all public transportation options

Civis embraces the individuality of our employees and we celebrate each other's differences. Our products, services, and culture benefit from and thrive on the unique perspectives brought by each person in our Civis community. We're proud to be an equal opportunity workplace, and we are committed to equal employment opportunity regardless of race, age, sex, color, ancestry, religion, national origin, sexual orientation, gender identity, citizenship, marital status, disability, or Veteran status. If you have a disability or special need that requires accommodation, please contact us [email protected]

In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States.


EEO Supplement

Pay Transparency 

Read Full Job Description

Technology we use

  • Engineering
    • PythonLanguages
    • RLanguages
    • RubyLanguages
    • ReactLibraries


As one of the popular hubs for tech startups, Chicago is the perfect backdrop for Civis's growing team.

An Insider's view of Civis Analytics

What's something quirky about your company?

One of my favorite parts about Civis is the culture of learning—talking about academic papers is encouraged as well as sharing weird facts about things people are interested in. I also love the people at Civis because they genuinely care about each other and also serving the wider world.


Software Engineer

What are Civis Analytics Perks + Benefits

Volunteer in local community
Partners with Nonprofits
Friends outside of work
Eat lunch together
Open door policy
Group brainstorming sessions
Open office floor plan
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Acme employees can contribute up to $2700 annually to their FSA.
Disability Insurance
Disability insurance covers 60% of annual salary up to $6000 monthly maximum payout.
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Life insurance is equal to 50000 times an employee's annual salary.
Pet Insurance
Wellness Programs
Retirement & Stock Options Benefits
401(K) Matching
Acme Co. provides employees with a 401(k) matching plan managed by [provider]. We match 1% of contributions up to 100% of an employee's annual gross pay.
Child Care & Parental Leave Benefits
Generous Parental Leave
We provide up to 12 weeks of parental leave for the primary caretaker. Acme Co. also provides 8 weeks of leave for the secondary caretaker.
Family Medical Leave
Employees who have been with the company for 12 months are eligible for 12 weeks of family medical leave.
Vacation & Time Off Benefits
Unlimited Vacation Policy
Paid Volunteer Time
Our employees receive 4 hours per year of paid volunteer time.
Paid Holidays
Paid Sick Days
Civis believes that if you are sick you should stay home. We have a flexible sick policy with no stated limits.
Perks & Discounts
Casual Dress
Commuter Benefits
Company Outings
Happy Hours
Professional Development Benefits
Job Training & Conferences
Acme Co. offers employees professional development opportunities like The ability to attend job related conferences and seminars.
Lunch and learns
Cross functional training encouraged
Promote from within

Additional Perks + Benefits

Parental Leave. Short & Long Term Disability + Life Insurance. Halloween Costume Contest, Monthly Birthday Celebrations, Happy Hours, & Other Fun Events!

More Jobs at Civis Analytics16 open jobs
All Jobs
Data + Analytics
Dev + Engineer
Data + Analytics
Data + Analytics
Data + Analytics
Data + Analytics
Data + Analytics