Apex Systems
Information Security - Information Security Engineer 4 - Contingent
Full details on LinkedIn
The complete job description, requirements, and application details are available on the original posting.
About Apex Systems
Apex Systems is a global technology services company that specializes in customizable, industry-specific solutions aimed at driving business results. Founded in 1995, it has over 25 years of experience in the field and operates as part of the Commercial Segment of ASGN Incorporated. The company has established itself as a significant player in IT staffing and technology services. Apex Systems offers a range of IT staffing and technology services designed to meet the unique needs of various industries. The company emphasizes industry insights and experience to deliver client-focused solutions. With a strong track record, Apex Systems has placed over 20,000 professionals and served more than 1,200 clients across diverse sectors.
Security at Apex Systems
Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.
Security Philosophy
“Apex Systems' "Security and Risk"solution page describes cybersecurity offerings including DevSecOps and Security Engineering; leadership includes "Global Head"Chris Baldridge and Chief Solutions Director Cory Steinbicker with bios describing program delivery across security domains. Direct AppSec-team specific statements about developer enablement vs. gatekeeping were not found. (Information not publicly available.) The Security and Risk page references governance, risk & compliance and tailored, sector-specific approaches, but specific verbatim quotes about "risk-based approach"or "threat modeling"for AppSec were not found. (Information not publicly available.) Career resource page references Vulnerability Management, Offensive Security, and Application Security Testing; job posts emphasize optimizing scanner configurations and automation.”
Security Team
No direct evidence describing AppSec reporting line (e.g., reports to CISO/CTO) was found. (Information not publicly available.) Key Public-Facing Leaders: Chris Baldridge (Global Head) and Cory Steinbicker (Chief Solutions Director) listed on Security and Risk leadership. No explicit team size was published. Using LinkedIn search results and job postings produced insufficient definitive size. (Information not publicly available.) At least two relevant job postings were found as of and (Lead Consultant Data Protection Engineer job#3016087 and Application Security Engineer job#3014951). Common Skill/Tool Patterns: Job postings list DAST (Burp, OWASP ZAP), SAST (Checkmarx, Veracode), SCA (Black Duck, Snyk), container security (Wiz, Prisma, Aqua), scripting (Python, Bash, PowerShell).
Key Initiatives
No explicit evidence describing a Security Champions program was found. (Information not publicly available.) No explicit evidence of pre-commit, IDE, or CI/CD-specific shift-left practices found in public content. (Information not publicly available.) Career resource page discusses vulnerability management and cross-functional remediation; job postings mention triage and optimization of scanner configurations but no SLA/MTTR specifics. Job postings require SDLC knowledge; no explicit mentions of required ceremonies like threat modeling, security reviews for features, or annual pentests were found. (Information not publicly available.) New job postings in January 2026 indicate hiring in AppSec roles; no press or blog items explicitly describing new AppSec programs were found in the last 6 months.
Preparing for an AppSec interview?
Get the weekly briefing 2,000+ security pros trust.