Acuity Inc. (NYSE: AYI) is a market‑leading industrial technology company that designs, manufactures, and brings to market products and services in lighting, lighting controls, building management solutions, and an audio/video/control platform. Through Acuity Brands Lighting (ABL) and Acuity Intelligent Spaces (AIS), we focus on customer outcomes, growth, and innovative solutions across North America, Europe, and Asia, employing approximately 13,000 associates.
Job Summary
We’re seeking a talented and enthusiastic Application Security Engineer who will work with development teams to ensure security is embedded in the Software Development Life Cycle (SDLC) and technology risks are addressed at each phase. You will serve as the highest‐level technical architecture expert for software development and infrastructure teams, conduct security assessments and penetration testing, research vulnerabilities and attack vectors, and evaluate associated risks to impact on application systems.
Key Tasks & Responsibilities (Essential Functions)
* Conduct security assessments of web and mobile applications, APIs, and microservices.
* Proactively identify and mitigate application security risks or incidents.
* Perform application and source‐code reviews, threat modeling, and penetration tests to build application visibility.
* Participate in the architecture of mobile and web applications, including interface and database design, process and API flows, networking, cloud infrastructure, protocol communication, security, and appropriate technology use.
* Provide guidance and oversight into secure application coding practices conducted by other teams by acting as a mentor to software developers.
* Provide security training to internal engineering, DevOps, and infrastructure teams.
* Develop and implement the application security program in line with industry best practices and compliance across all Acuity Brands engineering teams.
* Raise awareness of application security requirements through development and review of application security standards, policies, and secure SDLC processes.
* Continuously learn and research securityrelated trends and best practices.
Preferred Skills And Experience
* Bachelor’s Degree in Computer Science (CS) or equivalent.
* 8+ years of experience in the security domain with working knowledge of Software Development and application testing.
* Experience with static analysis tools (e.g., SNYK, BlackDuck, Checkmarx) and knowledge of OWASP tools and methodologies.
* Experience with vulnerability and application scanning tools (e.g., Qualys, Nessus, AppScan, BurpSuite).
* Application security experience with high‐level programming languages (e.g., Java, C, C++, C#, VB, .NET, ASP.NET, ASP, PHP, J2EE, JSP).
* Programming background and experience with SDLC and software development tools such as Eclipse, Jenkins, or similar.
* Experience with Cloud Service Providers (Azure and/or AWS).
* Security certifications such as CISSP, CEH, OSCP, CISA are desirable.
* Strong communication skills to create documentation, videos, and conduct training classes.
We value diversity and are an equal opportunity employer. All qualified applicants will be considered for employment without regard to race, color, age, gender, sexual orientation, gender identity and expression, ethnicity or national origin, disability, pregnancy, religion, covered veteran status, protected genetic information, or any other characteristic protected by law.
Accommodation for Applicants with Disabilities: As an equal‑opportunity employer, Acuity Inc. is committed to providing reasonable accommodations in its application process for qualified individuals with disabilities and disabled veterans. If you have difficulty using our online system due to a disability and need an accommodation, you may contact us at (770) 922‑9000. Please clearly indicate what type of accommodation you are requesting and for what requisition.
E‑Verify Participation Poster
e-verify.gov
eeoc.gov
#J-18808-Ljbffr