RemoteLeaf Logo
Log in Sign up

Application Security Engineer - Mid-Atlantic region (Remote in VA, MD, PA, NC, DE, NJ, or DC)

3 weeks, 2 days ago
United States
Full-time
Mid Level
Application Security Engineer
Software Development
Azure Burp Suite CI/CD CircleCI GitHub Actions Jenkins SaltStack
Apply Now
GuidePoint Security

GuidePoint Security

GuidePoint Security is a trusted cybersecurity consulting firm that provides expertise, solutions, and services to help organizations make informed decisions and minimize risks. Their elite team of experts offers holistic perspectives on cybersecurity,...

Internet Software & Services
251-1K
Founded 2011
View All Jobs 38

Description

  • Implement, operationalize, and troubleshoot Black Duck and Checkmarx across development environments.
  • Work with CI/CD pipeline tools and processes such as GitHub Actions, GitLab Runners, Azure DevOps, Jenkins, and CircleCI.
  • Apply software engineering experience to modern application architectures and full stack development environments.
  • Build scripting and automation to support security testing and related workflows.
  • Support application security fundamentals including secure coding practices, threat modeling, and OWASP Top 10 considerations.
  • Integrate security tools into the software development lifecycle and development process.
  • Validate vulnerabilities and assist with triage and remediation of findings from web application scanning tools.
  • Collaborate with engineering and security teams to improve secure development lifecycle practices.
  • Operate and support automated security testing tools within CI/CD pipelines.
  • Provide clear written and verbal communication to support implementation and troubleshooting efforts.

Requirements

  • Proficiency with the implementation, operationalization, and troubleshooting of Black Duck and Checkmarx.
  • Understanding of CI/CD pipeline tools and processes such as GitHub Actions, GitLab Runners, Azure DevOps, Jenkins, and CircleCI.
  • Experience in software engineering, ideally full stack software development, with modern technologies and application architectures.
  • Strong scripting and automation experience using one or more programming languages.
  • Working knowledge of application security fundamentals, including the OWASP Top 10, threat modeling, and secure coding practices throughout the SDLC.
  • Excellent written and verbal communication skills.
  • Preferred experience with other SAST tools such as Semgrep, CodeQL, and Veracode.
  • Preferred experience writing or adapting custom SAST rules using Semgrep or CodeQL.
  • Familiarity with additional application security tools, including IAST, DAST, API security, and SCA.
  • Familiarity with API security tools such as NoName, Traceable, Salt, and Cequence.
  • Practical hands-on experience validating vulnerabilities and proficiency with Burp Suite.
  • Strong working knowledge of Secure Development Lifecycles and vulnerability triage/remediation from web application scanning tools.
  • Experience building and operating security tools within CI/CD pipelines and proactively integrating security into development processes.
  • Past experience as an application security practitioner or software engineer.
  • Bachelor’s degree in a relevant discipline or equivalent experience.
  • 3-5 years of security engineering experience in the Information Security industry.

Benefits

  • Remote workforce primarily, with U.S.-based work and some travel possible depending on the position.
  • Medical insurance options including a Zero Deductible PPO or High Deductible Health Plan with HSA contributions.
  • Dental insurance with GuidePoint covering 100% of employee premiums and 75% of family plan premiums.
  • 12 corporate holidays and a Flexible Time Off (FTO) program.
  • Mobile phone and home internet allowance.
  • Retirement plan eligibility after 2 months at open enrollment.
  • Pet benefit option.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Harford County Public Library

Arquiteto de Segurança em Desenvolvimento (AppSec) Senior

Harford County Public Library 51-250 Diversified Consumer Services

Stone Tech, parte da Stone Co., is hiring a Senior Application Security Architect to help secure the development and operation of payment and financial systems, including products that use LLMs and generative AI.

Brazil Full-time Senior Application Security Engineer Software Architect
Agile AWS Azure CI/CD GCP Generative AI LLM
1 day, 2 hours ago
Anduril Industries

Manager, Product Security Foundations

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is hiring a Manager of Product Security Foundations to lead a security engineering team delivering reusable foundational security components for its defense products.

United States Full-time Lead Application Security Engineer Engineering Manager
$191k-$253k
C C++ Cybersecurity Embedded Systems Go IoT Linux Python Rust
1 day, 19 hours ago
Parachute Health

Application Engineer

Parachute Health 51-250 Health Care Providers & Services

Parachute Health is hiring a software engineer for its IT & Security team to build internal platforms and AI-driven workflows that improve security, compliance, and operational efficiency across its healthcare technology environment.

United States Full-time Junior Application Security Engineer Software Engineer
AWS Datadog EC2 GCP GitHub GraphQL HIPAA JavaScript Node.js Penetration Testing Python React REST API Ruby on Rails SIEM Splunk SQL TDD TypeScript
2 days ago
Swapcard

Application Security Engineer

Swapcard 251-1K Professional Services

Swapcard is hiring an Application Security Engineer to strengthen the security of its AI-powered event platform by driving vulnerability remediation, security testing, and secure development practices across the product lifecycle.

Europe Austria Belgium Germany Greece Hungary Ireland Latvia Lithuania Poland Portugal Romania Spain Full-time Junior Application Security Engineer
Burp Suite CI/CD GitLab CI Helm Jenkins Penetration Testing SonarQube Terraform WAF
3 days, 19 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers