Application Security Engineer
Posted May 6
This is a fully remote position, open to applicants in District of Columbia, +1 more state.
📋 Description
• Execute DAST scanning utilizing Burp Suite Enterprise, which includes configuration, execution, and analysis of scan findings.
• Perform SAST assessments with Veracode, pinpointing code-level vulnerabilities and proposing remediation strategies.
• Evaluate and prioritize vulnerabilities based on risk, using frameworks such as CVSS, CWE, OWASP Top 10, WASC, and SANS-25.
• Work collaboratively with development, DevOps, and security teams to embed security practices into the SDLC and CI/CD workflows.
• Offer guidance on secure coding methodologies and assist developers in addressing vulnerabilities.
• Aid in the implementation and upkeep of IDE security plugins and secure development tools.
• Diagnose application and connectivity challenges within Linux-based environments.
• Contribute to the design and execution of organization-wide application security measures.
• Ensure compliance with federal standards, including NIST 800-53, FIPS, and FedRAMP.
• Remain updated on emerging threats, vulnerabilities, and best practices in application security.
⛳️ Requirements
• Over 6 years of comprehensive experience in Information Technology.
• More than 3 years of experience in supporting SAST, DAST, and IDE plugin environments, particularly with Burp Suite Enterprise for DAST.
• Proficient experience in supporting SAST/DAST environments using Veracode.
• At least 3 years of development experience in Java, Python, .NET, or C#.
• Over 3 years of experience in designing and implementing enterprise-level security controls for applications and systems.
• Familiarity with development environments such as Eclipse, JDeveloper, or Visual Studio, including pipeline integration.
• Strong grasp of application security principles and vulnerability frameworks (OWASP Top 10, CVSS, CWE, WASC, SANS-25).
• Knowledge of federal security and compliance standards (NIST 800-53, FIPS, FedRAMP).
• More than 3 years of experience in Linux-based environments, including troubleshooting application and connectivity issues.
• Capability to obtain a security clearance.
• Bachelor’s degree in Information Technology, Computer Science, or a related field.
🏝️ Benefits
• Medical, dental, vision, STD, Accident, Life, Hospital Insurance, FSA, HSA, 401K match, professional development stipend.
• Community Service and Employee Engagement events are prioritized on our calendar!
People also viewed
Switzerland Global Enterprise11 hours ago
Switzerland Global Enterprise
Senior Technical Application Engineer – Monitoring & Diagnostics
United States OnlyFull-timeApplication Engineer$113.2k – $188.8k/yearEnerVenue11 hours ago
EnerVenue
Application Engineer
Australia OnlyFull-timeApplication EngineerArrow Components11 hours ago
Arrow Components
Field Application Engineer
Austria OnlyFull-timeApplication EngineerSwitzerland Global Enterprise11 hours ago
Switzerland Global Enterprise
Power Systems Applications Engineer – IEC 61850
Canada OnlyFull-timeApplication Engineer$105.3k – $142.3k/year
Netherlands Only
Never miss a great job!
Get handpicked remote jobs straight to your inbox weekly.
Trusted by 7,400+ designers
