Role Description I have an opportunity for "Application Security Engineer - REMOTE" and I am looking for a candidate who can join immediately. If you are interested, please reply to me with your updated resume or if you could refer someone, I would really appreciate it. Position: Application Security Engineer Location: Remote Duration: 3 to 6 Months Visa: USC Responsibilities - Conduct security assessments, code reviews, and vulnerability assessments of applications. - Identify and prioritize security issues in the development process. - Maintain application security best practices and guidelines. - Collaborate with development teams to ensure secure coding practices. Company Description NAVTECH INC 1600 Golf Road, Suite 1200, Rolling Meadows, IL 60008 Ph: (224) 348-1340 Email: alex@navtechusa.com Website: www.navtechusa.com E-Verified Company

• Serve as a trusted advisor to client stakeholders, helping define and advance cybersecurity strategy across multi-month and multi-year engagements. • Develop prioritized, business-aware security roadmaps that mature client posture over time. • Advise on governance, risk, and compliance — aligning programs to frameworks such as NIST CSF 2.0, CIS Controls, ISO 27001, CMMC, HIPAA, or PCI DSS. • Translate technical risk into clear business language for executives and boards. • Own the advisory relationship for assigned clients, driving cadence, measurable progress, and demonstrable risk reduction. • Partner with assessors and engineers to ground recommendations in technical reality and validate remediation. • Guide clients through security program development — policy, process, architecture direction, and tooling strategy. • Support incident readiness, tabletop exercises, and post-incident program improvement as needed. • Contribute to the maturation of Apollo’s advisory methodology, frameworks, and deliverable templates. • Mentor junior team members and share knowledge across the practice. • Stay current with emerging threats, regulatory change, and the evolving security technology landscape.

• Independently plan and lead hands-on cybersecurity assessments across enterprise, cloud, and public-sector environments — including election infrastructure at the county, city, and state level. • Evaluate the design and operating effectiveness of technical controls spanning identity and access management, endpoint protection, patch and vulnerability management, secure configuration, network segmentation, data protection, logging/monitoring, and incident response. • Review and interpret technical configurations and artifacts — firewall rulesets, GPOs, hardening baselines, cloud security configurations, IAM policies, and logging setups — to validate control implementation. • Conduct stakeholder interviews and documentation reviews to understand policy, process, and control maturity. • Assess client environments against established frameworks and standards including NIST CSF 2.0, CIS Controls, ISO 27001, CMMC, CJIS, HIPAA, and PCI DSS. • Produce detailed assessment reports with prioritized risk findings, maturity ratings, and pragmatic, business-aware recommendations. • Map findings to client risk and business context, translating technical gaps into clear remediation roadmaps. • Present findings and recommendations to client stakeholders ranging from technical practitioners to executive leadership. • Drive continuous improvement of Apollo’s assessment methodologies, workbooks, tooling, and report templates. • Mentor junior assessors and perform peer review of assessment deliverables. • Collaborate with consultants, engineers, advisors, and project managers to deliver high-quality engagements. • Stay current with emerging threats, technologies, and regulatory developments.

• Design secure solutions across cybersecurity, networking, and cloud technologies, balancing client business needs with sound security architecture. • Perform configuration, installation, enablement, and maintenance of security products and services. • Develop and implement solutions to complex technical problems, including design changes to client environments. • Evaluate and implement new security tools and technologies. • Manage and maintain deployed security, network, and cloud environments to ensure continued operational performance. • Perform network administration tasks, including client trouble tickets and design changes. • Contribute to analysis of security events and support incident response efforts. • Partner with SOC Analysts to develop and refine SIEM correlation rules and custom detection methods. • Leverage platforms and services to gather data, generate reports, and support clients and other departments with analysis. • Participate in the successful completion of small to medium-sized projects. • Engage with clients on the ongoing performance and operation of networks, systems, and services. • Mentor and develop junior engineers, providing guidance and feedback. • Collaborate across teams and departments to address security concerns.