Application Security Engineer

steampunkMcLean, VA
20h$100,000 - $155,000
Match Resume

About The Position

As an Application Security Engineer , you will provide technical expertise and solutions to remediate persistent and challenging portfolio-wide vulnerabilities. We’re looking for someone who has passion for IT, resourceful problem-solving abilities, and a desire to learn our indicators of success in this role. The ideal candidate will have a breadth of experience over a variety of application and web based technologies. The candidate will not necessarily have deep experience in all domain areas but should have a good understanding of how the various layers of an enterprise application stack interact with one another. You will work directly with system admin teams to assist and remediate vulnerabilities and harden environments, while providing recommendations on ways to enhance vulnerability management. Additionally, you will work in a team environment to develop proactive solutions to improve overall enterprise security posture through process streamlining and automation. Contributions Responsibilities include: Provide subject matter expertise for various risk assessments, working in an Agile environment with an understanding of the full software development lifecycle. Advocate for and ensure appropriate security practices are communicated and implemented within application development portfolios. Ability and proven experience in securing multiple areas of an enterprise application stack, including the OS, Database, Application Server, Load Balancer, and Web Server layers. Understanding how PKI/TLS certificates work is a must. Integrate with both the application development and security assurance divisions to ensure vulnerability findings are understood, remediated or baselined as appropriate. Document & Socialize security findings and remediation solutions in an enterprise knowledge base. Support the Information Assurance Branch and the SOC with scan analysis and partner with development teams to understand and remediate security findings.

Requirements

  • Ability to obtain a U.S. government Security Clearance
  • Master's Degree and 3 years of relevant experience; OR Bachelor's Degree and 5 years of relevant experience; OR No degree and 9 years of relevant experience
  • Possesses at least one professional certification relevant to the technical service provided.
  • Maintain a certification relevant to the product being deployed and/or maintained.

Nice To Haves

  • Former Developer or Systems Administrator experience
  • Working knowledge of technologies used for building and deploying enterprise applications, such as, Maven, Grade, GIT, Jenkins, Ansible, Java, C#/.NET, Apache Tomcat, Apache HTTP Server, IIS, F5, Oracle, MSSQLSEVER, PostGres
  • Working knowledge and experience in AWS and Azure GovClouds
  • Ability to analyze DISA STIG audit compliance scan results and provide recommendations for resolution
  • Analyze security environment, provide recommendations
  • Working knowledge of JIRA, Service Now or equivalent
  • Working knowledge of operating system and dynamic application security testing scan tools – Invicti, Web Inspect, DAST/IAST suites
  • Experience using Python to automate tasks
  • Certifications: CEH, GFACT, GPEN, OSCP or other relevant industry certifications
  • Application based Technology specific certifiations

Responsibilities

  • Provide subject matter expertise for various risk assessments, working in an Agile environment with an understanding of the full software development lifecycle.
  • Advocate for and ensure appropriate security practices are communicated and implemented within application development portfolios.
  • Ability and proven experience in securing multiple areas of an enterprise application stack, including the OS, Database, Application Server, Load Balancer, and Web Server layers.
  • Integrate with both the application development and security assurance divisions to ensure vulnerability findings are understood, remediated or baselined as appropriate.
  • Document & Socialize security findings and remediation solutions in an enterprise knowledge base.
  • Support the Information Assurance Branch and the SOC with scan analysis and partner with development teams to understand and remediate security findings.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Job Search Resources

Similar Application Security Engineer job opportunities

🔥 New JobApplication Security Engineer
FloSports, Inc.
FloSports, Inc. • Austin, TX1d
Application Security Engineer
Steampunk
Steampunk • McLean, VA2d • $100,000 - $155,000
Application Security Engineer
SciTec
SciTec • Boulder, CO1d • $96,000 - $146,000
🔥 New JobApplication Security Engineer
Caterpillar
Caterpillar • Chicago, IL13h
Application Security Engineer
NorthAB LLC
NorthAB LLC9d • $105,000 - $140,000
Application Security Engineer
HarbourVest Partners
HarbourVest Partners • Boston, MA3d • $100,000 - $160,000 • Hybrid
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service