Sorry, this job is no longer accepting applications. See below for more jobs that match what you’re looking for!

Sr. Application Security Engineer

Expired Job

Rockhammer Talent Solutions Arlington County , VA 22203

Posted 2 months ago

Our client has an immediate need for a Senior Application Security Engineer to join the Threat Management Team.
This position is within the Information Security Department, on the Threat Management team.
The developer will be responsible for collaborating with application development teams, project managers and DevOps team members to improve the security of applications across the SDLC. The engineer will require a thorough knowledge of Agile SDLC methodologies and Secure DevOps practices. The position requires strong secure application development, testing and automation experience.
The engineer will support overall application security team responsibilities, and build integration between application security products, the CI/CD pipeline and bug tracking systems. Additional duties will include the review of DAST and SAST results with developers and providing guidance on remediation efforts. The engineer will develop and update information security policies and procedures and advise on information security practices and requirements in relation to application security.
The ideal candidate will have a strong development background and want to learn and grow in the field of cyber security.
The Senior Application Security Engineer must take ownership of projects/tasks/issues and work them through completion.
The candidate shall have the knowledge, qualifications, and experience relating to the following responsibilities:
Candidate Duties and

Responsibilities:
The Senior Application Security Engineer shall also perform the following responsibilities as outlined below:
Assist the Threat Management team in developing, maintaining, and executing the NRECA application security program
Build and maintain integration between application security products, bug trackers and CI/CD tools
Work with application developers and DevOps groups to maintain a detailed inventory of all web applications
Coordinates and supports application assessments
Develops reportable observations, findings, and recommendations to relay to application developers and IT leadership
Manage the lifecycle of vulnerabilities discovered during application security scans
Participate in Red Team activities and Internal Penetration Testing
Strong communication skills, with the ability to explain the technical details of OWASP Top 10 and other vulnerabilities from C-levels to developers in a large professional environment

Minimum Qualifications:
Four (4) year degree in Computer Science or related field, or equivalent work experience.
Four (4) years of progressively responsible information systems and application security engineering experience that demonstrates an understanding of the required knowledge, skills, and abilities
Four (4) years of Node.js experience
Five (5) years of .NET development experience
Five (5) years of experience in HTML, CSS, JavaScript, and jQuery
Strong familiarity with OWASP Top 10 web vulnerabilities and how to engineer software to avoid them
Knowledge of and experience working in an Agile SDLC model
Experience working with DAST and SAST products, preferably IBM AppScan and Veracode
Experience integrating DAST and SAST capabilities into a CI/CD pipeline, experience with TeamCity preferred
Experience with a scripting language (Python, Ruby, Perl, etc.)
Experience working with third party security vendors
Strong proficiency in active listening and the ability to learn quickly
Ability to communicate technical security concepts to a diverse audience (written and verbal)
Mobile Application Penetration Testing (i.e. iOS, Android, Windows, Blackberry)
Database Experience (DBA or security penetration testing)
Web Services Security Penetration Testing Experience

Skills:
Node.js, .Net, CSS, jQuery, Python, DevOps
Permanent


See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Flight Test Engineer

Barone Consulting

Posted Yesterday

VIEW JOBS 11/18/2018 12:00:00 AM 2019-02-16T00:00 <p>Directing both technical and programmatic support efforts for DARPA programs with specific emphasis on flight test preparation and execution. Serve as a strategic consultant for government clients leading research and development (R&amp;D) programs. Impact the nation's investment in technology development, through the advancement of DoD programs and transitioning technology. Maintain and apply technical expertise and relationships to serve clients. Provide strategic assessments of new technologies in support of senior-level decision-makers. Conduct background research to evaluate the feasibility and defense applications of new technological concepts. Produce and present findings and recommendations to a team of colleagues and clients. Assist with technical program management, program development, and briefing materials for government R&amp;D efforts. </p><p><strong>Requirements</strong></p><p>A Top Secret clearance is required. </p><p> A Bachelor’s Degree in an engineering or science discipline</p><p>Test execution experience with a wide variety of test programs, department of defense range facilities. </p><p>Experience with airworthiness approval, aircraft-store compatibility process (SEEK-EAGLE), spectrum management approval, and Authority To Test and Operate processes. </p><br><p><strong>Benefits</strong></p><p>- 100% Paid Medical, Dental, Vision, &amp; Life</p><p>- 10 Paid Holidays</p><p>- 3 Weeks PTO</p><p>- Matching 401K Plan</p><p>- Flexible Leave Policy</p><p>- Flex Time</p><p>- Comp Time</p><p><br></p><p><strong>Barone Consulting </strong>is a scientific, engineering and technical operations support firm providing high-end technical consulting to mission critical government challenges. Barone provides services across a wide range of technical fields to the military, DoD, R&amp;D, and intelligence communities. We choose to work on some of the toughest technical challenges in aerospace and defense, and are committed to turning the science fiction of today into the reality of tomorrow. Barone Consulting provides solutions across a range of technical areas by identifying, analyzing, and developing novel technologies and methodologies for current and new program development.</p><p>If interested in discussing this opportunity or others, send an updated copy of your resume to</p><p>swetha.amruthur<a rel="nofollow noreferrer noopener" class="external">@barone.net</a>.</p><p><strong>Barone Consulting is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply.</strong><br></p> Barone Consulting Arlington VA

Sr. Application Security Engineer

Expired Job

Rockhammer Talent Solutions