Himalayas logo
GXAGX

Dev Ops AppSec & Security Engineer

GXA Network Solutions is an award-winning IT consulting company and managed services provider based in Richardson, Texas, part of the bustling Dallas-Fort Worth Metroplex.

GXA

Employee count: 11-50

Pakistan only

Stay safe on Himalayas

Never send money to companies. Jobs on Himalayas will never require payment from applicants.

Role Summary

The Dev/Ops AppSec & Security Engineer is a hybrid role supporting both the Application Support

Team and the Security Team. This position is responsible for embedding security best practices into

the application lifecycle, while also serving as a core resource for organizational security initiatives.

The engineer collaborates closely with the Virtual Information Security Manager (vISM) and other

security stakeholders to drive vulnerability management, penetration test remediation, and

comprehensive security assessments. This role ensures that solutions are robust, compliant, and

resilient against threats, and that security objectives are met across both application and

infrastructure domains.

Core Responsibilities

Application Security

  • Guide developers and engineers on secure coding standards and practices.
  • Perform code reviews and static/dynamic analysis to identify vulnerabilities.
  • Integrate security tools into CI/CD pipelines for automated scanning and compliance.
  • Design and implement authentication, authorization, and encryption for APIs and

applications.

  • Assess and remediate risks in REST/SOAP integrations, data pipelines, and custom

applications.

Security Engineering (Security Team Support)

  • Collaborate with the vISM and Security Team to manage vulnerability identification, tracking,

and remediation across applications and infrastructure.

  • Coordinate and support penetration testing activities, including scoping, execution, and

remediation of findings.

  • Conduct security assessments for new and existing systems, documenting risks and

recommending mitigation strategies.

  • Develop and maintain threat models for applications and infrastructure.
  • Respond to security incidents, perform root-cause analysis, and document lessons learned.
  • Support compliance initiatives (e.g., GDPR, HIPAA, PCI-DSS) and assist with audit preparation

and evidence collection.Security Automation & Monitoring

  • Build and maintain security automation scripts and workflows (e.g., for vulnerability scanning,

alerting, and compliance checks).

  • Integrate security monitoring into Azure Pipelines, Data Factory, and related services.
  • Maintain comprehensive security documentation, diagrams, and operational procedures.

Cross-Team Collaboration

  • Work with Business Analysts to translate security requirements into actionable specifications.
  • Educate stakeholders on security risks, trade-offs, and mitigation strategies.
  • Participate in client meetings to address security concerns and present solutions.

Required Skills & Experience

  • Proficiency in secure coding, application security frameworks (OWASP, NIST), and

vulnerability management.

  • Experience with security tools (SAST, DAST, dependency scanning, SIEM).
  • Strong understanding of authentication, authorization, and encryption protocols.
  • Familiarity with CI/CD pipelines, Azure DevOps, and security automation.
  • Experience with penetration testing methodologies and remediation processes.
  • Ability to investigate, respond to, and remediate security incidents.
  • Skill in root-cause analysis and forensic investigation.
  • Ability to explain technical security concepts to non-technical stakeholders.
  • Experience working with cross-functional teams (engineering, business analysis, operations,

security).

Preferred Experience

  • Experience with cloud security (Azure preferred), API security, and data protection.
  • Background in software development or DevOps environments.
  • Familiarity with regulatory compliance frameworks and client-facing security reviews.
  • Experience in consulting or Managed Service Provider (MSP) environments.

How This Role Complements the Team:

  • Ensures solutions designed by the Business Analyst and built by the Dev/Ops Engineer are

secure, compliant, and resilient.• Bridges technical and business requirements, proactively addressing risks and enabling

secure innovation.

  • Strengthens the organization’s overall security posture by supporting vulnerability

management, pentest remediation, and security assessments in partnership with the vISM

and Security Team.

About the job

Apply before

Posted on

Job type

Contractor

Experience level

Senior

Location requirements

Pakistan

Hiring timezones

Pakistan +/- 0 hours

Job categories

Managed ITInformation Technology And ServicesInformation TechnologyDevSecOps EngineerSenior DevSecOps Engineering ManagerLead Application Security Engineer

Skills

Secure CodingOWASPNISTSASTDASTSIEMAPI SecurityAuthenticationAuthorizationThreat ModelingPenetration TestingCI CD PipelinesAzure DevOpsSecurity AutomationAzure PipelinesEvidenceRoot Cause

About GXA

Learn more about GXA and their company culture.

View company profile

GXA Network Solutions is an award-winning IT consulting company and managed services provider based in Richardson, Texas, part of the bustling Dallas-Fort Worth Metroplex. Founded in 2004 and formally incorporated in 2008, GXA specializes in delivering comprehensive IT services and solutions tailored for commercial and government clients across Texas. The company's mission revolves around empowering businesses through innovative technology support, which culminates in improved operational efficiencies, enhanced security, and sustainable growth.

Over the past 17 years, GXA has built a reputation for excellence, achieving multiple recognitions, including listings in the Inc. 5000 as one of the fastest-growing IT companies. The company supports small and mid-sized businesses by providing a wide array of services, including managed IT services, cybersecurity, cloud solutions, and IT consulting. GXA's dedicated team focuses on not just technology implementation but also fostering strong partnerships with clients, prioritizing their needs and understanding their unique business challenges.

Claim this profileGXA logoGX

GXA

Company size

11-50 employees

Founded in

2004

Chief executive officer

Dr. Alicia Makaye

Markets

IT ConsultingManaged IT ServicesCybersecurityCloud SolutionsTechnology SupportSmall and Mid Sized Business IT SolutionsGovernment IT ServicesIT Infrastructure ManagementBusiness Technology SolutionsIT Security Services

Employees live in

United States
View company profile

Similar remote jobs

Here are other jobs you might want to apply for.

View all remote jobs

8 remote jobs at GXA

Explore the variety of open remote roles at GXA, offering flexible work options across multiple disciplines and skill levels.

View all jobs at GXA
Top remote companies

Remote companies like GXA

Find your next opportunity by exploring profiles of companies that are similar to GXA. Compare culture, benefits, and job openings on Himalayas.

View all companies

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan
Save
Apply now
GXA hiring Dev Ops AppSec & Security Engineer • Remote (Work from Home) | Himalayas