Senior Application Security Engineer

3 days ago

Apply Now

Receive Emails with Similar Jobs

Agile Defense

WebsiteLinkedInAll Job Openings

IT Engineering Support Services • Cybersecurity Support Services • C4ISR Support Services • Systems Integration Support Services • Robotics Process Automation

501 - 1000

Description

• Work together with the client and application community to maintain a resilient security posture for highly visible applications. • Remediate application security flaws in conjunction with the application security team. • Lead security discussions with the application teams to prescribe security best practices within their development lifecycle. • Perform dynamic and static application performance testing, perform security requirements creation or generation-level threat modeling leveraging tools, including SD Elements, and perform application-level testing using applications such as Burp Suite. • Work with the latest OWASP frameworks.

Requirements

• 6+ years of Information Technology experience • 3+ years of experience with Java, Python, .NET, or C# • 3+ years of experience with Burp Suite • 3+ years of experience using the design and implementation of enterprise-wide security controls to secure applications, systems, network, or infrastructure services • 3+ years of experience with supporting Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments using Veracode (Preferred) or similar application • Experience with Eclipse, JDeveloper, including pipeline development, or Visual Studio • Experience with securing enterprise web applications and OWASP Top 10, CVSS, CWE, WASC, and SANS-25 • Knowledge of federal compliance standards, including NIST 800-53, FIPS, or FedRAMP • Knowledge of Linux or UNIX environments, including navigating and troubleshooting basic website connectivity issues • Ability to obtain a security clearance • HS diploma or GED • Experience with Interactive Application Security Testing (IAST) capabilities and tools (Preferred) • Experience writing bash scripts (Preferred) • Experience with OWASP ZAP or Burp Proxy (Preferred)