JobTarget Logo

Cybersecurity Engineer (Application Security focus) in West Bend, Wisconsin at Delta Defense

NewSalary: $100000 - $125000Industry: Consumer ProductsJob Function: Information Technology
Delta Defense
West Bend, Wisconsin, 53095, United States
Posted on
New job! Apply early to increase your chances of getting hired.

Explore Related Opportunities

Job Description

Job Category: Information Technology

Requisition Number: CYBER002028
Description

Position Summary

You are the kind of engineer who stays curious when no one is watching. You read threat intelligence because understanding the adversary is how you stay ahead of them. When something is compromised, you run toward it. You care more about getting it right than getting credit for it. You have likely seen what happens when strong security talent gets trapped in slow, rigid organizations where good ideas stall, risk decisions lack context, and the work feels disconnected from the people it is supposed to protect.

This is not that team.

Delta Defense powers the USCCA®, the nation’s largest self-defense membership organization. We protect life, freedom, and the financial security of responsible American gun owners. The trust, data, products, and platforms behind that mission must be protected with discipline and precision. Our Information Security team exists to secure the perimeter, guard our crown jewels, and build the resilience that allows our people, business, and members to operate with confidence.

As our Cybersecurity Engineer, you will help build and advance a modern security engineering program across product engineering, cloud infrastructure, and analytics teams.

We believe great security is more JUDO than SUMO: skill over force, leverage over friction, precision over noise. That means we do not win by slowing teams down. We win by understanding the business, collaborating with teams early, reducing risk intelligently, and helping Delta Defense move faster with confidence.

Your work will be visible. Your judgment will matter. And the members depending on us will be safer because you showed up.

If that is the standard you already hold yourself to, we want to hear from you!

Duties & Responsibilities

  • Application Security & Secure SDLC: Lead application security across the software development lifecycle by partnering with Engineering and DevOps to integrate security into design, development, testing, and deployment. Perform threat modeling, secure design reviews, code reviews, and implement automated SAST, DAST, SCA, and secrets detection within CI/CD pipelines while enabling engineering teams to deliver secure software at scale.
  • Web App & API Security: Design, implement, and continuously improve web application and API security controls across the enterprise. Develop and tune WAF policies, conduct API security assessments, identify business logic vulnerabilities, and establish secure-by-design standards that reduce risk without unnecessarily impacting developer velocity.
  • Penetration Testing & Offensive Security: Plan and execute penetration testing activities against web applications, APIs, cloud environments, and supporting infrastructure. Validate vulnerabilities through manual testing, prioritize findings based on business risk, and partner with engineering teams to ensure timely remediation and measurable risk reduction.
  • AI Security & Governance: Develop and enforce security controls governing enterprise AI platforms and internally developed AI capabilities. Establish policies for data classification, model usage, access controls, audit logging, and secure integration of AI technologies while ensuring responsible adoption across the organization.
  • AI Threat Modeling & Security Engineering: Perform security assessments of Retrieval-Augmented Generation (RAG), agentic AI systems, MCP integrations, and large language model applications. Identify and mitigate risks including prompt injection, indirect prompt injection, insecure tool use, excessive agent permissions, model abuse, and data leakage using industry guidance such as the OWASP LLM Top 10 and MITRE ATLAS.
  • IR & Detection Engineering: Contributes to technical investigation and response activities for security incidents including threat analysis, digital forensics, containment, eradication, and root cause analysis.
  • Vulnerability Management: Operate a risk-based vulnerability management program that prioritizes remediation based on exploitability, business impact, and threat intelligence rather than scanner severity alone. Measure remediation effectiveness, track risk reduction, and ensure security controls align with frameworks including NIST CSF, CIS Controls, OWASP, PCI DSS, and organizational security standards.
  • Cloud & Infrastructure Security: Contributes to maintenance of secure cloud environments across AWS, Google Cloud, and DigitalOcean. Design and implement cloud security architecture including IAM, Kubernetes security, container security, Infrastructure-as-Code security scanning, secrets management, workload protection, and Zero Trust network controls.
  • Security Automation & Platform Engineering: Design and build security automation that improves operational efficiency and security outcomes using scripting, APIs, Infrastructure as Code, and AI-assisted workflows. Develop integrations between security platforms, automate repetitive security processes, and leverage AI responsibly to enhance detection, investigation, and response while maintaining appropriate governance and oversight.
  • Technical Leadership & Security Advisory: Serve as a trusted technical advisor across Engineering, Infrastructure, and Product teams by providing security guidance, mentoring engineers, evaluating emerging technologies, and translating complex security risks into practical engineering solutions. Continuously research evolving threats, techniques, and defensive capabilities to improve the organization’s overall security posture.

Skills & Abilities

  • Deep cybersecurity engineering capability across application security, cloud and infrastructure security, data platform security, detection engineering, and vulnerability management, with practical experience securing modern cloud-first environments and large-scale SaaS and data platforms.
  • Hands-on application security experience with SAST, DAST, SCA, secure code review, API security, WAF tuning, threat modeling, CI/CD security, and secrets management using tools such as Doppler, Semgrep, Snyk, Burp Suite, OWASP ZAP, Cloudflare, HashiCorp Vault, or equivalent.
  • Proficient in at least one programming or scripting language with the ability to read, write, and exploit code in a security context; Python, JavaScript, PHP, Golang, or Rust preferred.
  • Working knowledge of AI security risks and controls, including prompt injection, indirect prompt injection, model abuse, data leakage, agentic workflow vulnerabilities, OWASP LLM Top 10, MITRE ATLAS, and emerging AI security tooling.
  • Practical cloud and infrastructure security experience across DigitalOcean, AWS, GCP, Kubernetes, IAM, CSPM, IaC scanning, container security, zero-trust/SASE architectures, and security tooling such as EDR, SIEM, CASB, SWG, DLP, IDS/IPS, and PAM.
  • Communicates risk clearly in business terms, influences cross-functional stakeholders without direct authority, stays composed and decisive during active incidents, drives remediation to closure, and demonstrates the Core Values of Delta Defense, LLC.

Education & Experience Requirements

  • Bachelor's degree in Computer Science, Information Security, Cybersecurity, Information Technology, or a related field preferred; equivalent work experience and relevant certifications may be considered in lieu of a degree.
  • Minimum 3 years of cybersecurity engineering experience working closely with application, software, data engineering, DevOps, cloud, infrastructure, or security operations teams.
  • Experience securing applications, APIs, cloud platforms, CI/CD pipelines, Kubernetes environments, data platforms, and modern engineering ecosystems using technologies such as JavaScript, PHP, PostgreSQL, Kafka, NeonDB, GitLab, Python, Snowflake, dbt, Fivetran, Databricks, Tableau, Informatica, Kestra, or related technologies.
  • Strong understanding of security frameworks and control models, including NIST CSF, CIS Controls, PCI DSS, Cyber Defense Matrix, ISO 27001, OWASP, and MITRE ATT&CK.
  • Preferred certifications include CCSP, CASP+, Security+, CEH, GPEN, GWAPT, or other relevant cloud, application security, AI security, offensive security, or security engineering certifications.

Please note that applicants must be authorized to work in the United States without the need for current or future sponsorship.

Working conditions

  • Remote or Hybrid

Compensation

  • Target Salary Range = $100,000 - $125,000
  • Eligible for Company Incentive Bonus

Learn more & apply: https://www.deltadefense.com/careers

Why Work at Delta Defense?

Because culture matters—and ours is legit.

  • Fast-paced, mission-driven, and genuinely fun
  • #25 on The Wall Street Journal’s 2025 Top 100 America’s Most Loved Workplaces
  • Newsweek Top 100 America’s Most Loved Workplaces (2023 & 2024)
  • Inc. 5000 “Fastest Growing Private Companies” – 14 years in a row

Most importantly, your work here actually matters.

You’ll help Americans protect themselves, their families, and their freedoms—every single day.

PM19

LI-REMOTE#


Equal Opportunity Employer
This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.

Job Location

West Bend, Wisconsin, 53095, United States

Frequently asked questions about this position

Similar Jobs In West Bend, Wisconsin

Hot Job

CNC Setup Operator

Saelens Corporation
Johnson Creek, Wisconsin

Manufacturing Engineer

The Jor-mac Company Inc
Lomira, Wisconsin

Product Engineer

Spacesaver Corporation
Fort Atkinson, Wisconsin

Product Engineer

Spacesaver Corporation
Fort Atkinson, Wisconsin
Continue to apply
Enter your email to continue. You’ll be redirected to the employer’s application.
By clicking Continue, you understand and agree to JobTarget's Terms of Use and Privacy Policy.