RemoteLeaf Logo
Log in Sign up

Cyber Applications & Information Assurance Engineer

1 day, 14 hours ago
United States
Full-time
Junior
Application Security Engineer
Software Development
Burp Suite Cybersecurity Java Penetration Testing
Apply Now
Pingwind

Pingwind

Pingwind specializes in providing cybersecurity, information technology, and supply chain services to assist clients in securing their information, modernizing their systems, and optimizing performance.

Internet Software & Services
51-250
Founded 2012
View All Jobs 26

Description

  • Support the SEAP program’s existing application portfolio and related cyber activities.
  • Perform web application scanning and application security assessments.
  • Conduct manual application testing to identify vulnerabilities and deviations from software standards.
  • Prepare timely, detailed reports with proof of findings and risk analysis.
  • Assist with integrating static and dynamic web application assessments into the secure SDLC lifecycle.
  • Use SharePoint and collaboration tools to manage C&A documentation through review, approval, and distribution processes.
  • Support Risk Management Framework (RMF), incident response, software assurance, and related DoD cyber disciplines.
  • Work with IT, networking, and other stakeholders to request information, validate findings, and resolve POA&M statements.
  • Maintain deliverable schedules and proactively gather information to meet deadlines.

Requirements

  • 2+ years of relevant experience.
  • Bachelor’s degree in Information Technology, Computer Science, or a related field, or substantial experience in lieu of a degree.
  • Current DoD 8570.01-M IAT Level II certification, such as Security+ CE.
  • Active DoD SECRET clearance and U.S. citizenship.
  • Development background.
  • Microsoft .NET or Java development experience, with Microsoft .NET preferred.
  • Knowledge of SDLC methodologies.
  • Intermediate to advanced knowledge of secure coding practices and OWASP Top 10 web application security issues.
  • Experience with static code scanning tools such as Fortify or AppScan.
  • Excellent English verbal, written, and technical communication skills.
  • Strong organization skills and ability to work independently and meet deadlines.
  • Preferred: 3-7 years of web application development experience.
  • Preferred: Experience with manual and automated code review and penetration testing for complex applications.
  • Preferred: Experience with dynamic analysis tools such as Burp, ZAP, SQLMap, BeEF, DAVtest, dirb, fierce, curl, and hping.
  • Preferred: Understanding of database, web server, operating system, and cloud application security.
  • Preferred: Knowledge of security controls such as firewalls, IDS, antivirus, authentication, log management, and content filtering.
  • Preferred: Familiarity with PII, PHI, DISA STIGs, and RMF implementation.
  • Preferred: Prior Army or DoD cybersecurity experience.
  • Preferred: CASE, CSSLP, CISSP, CASP, or similar higher-level certifications.

Benefits

  • Eleven federal holidays.
  • Paid time off accrued each pay period.
  • Parental leave.
  • Three medical plan choices with generous employer contribution.
  • Dental and vision insurance.
  • Company-paid short-term and long-term disability and life insurance.
  • 401(k) with competitive matching and vesting schedule.
  • Continuing education assistance.
  • Medical, dependent care, and commuter flexible spending accounts.
  • Employee Assistance Program.
  • Wellness benefits including the Calm Health app and Wellhub gym subsidy.
  • 529 college savings plan.
  • Legal insurance.
  • Pet insurance.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Owner.com

Application Security Engineer

Owner.com 11-50 Internet Software & Services

Owner.com is hiring a remote Application Security Engineer to secure its restaurant-focused AI growth platform by testing, remediating, and preventing application security issues across the product line.

United States Canada Mexico Colombia Full-time Senior Application Security Engineer
$190k-$220k
Penetration Testing
4 hours, 20 minutes ago
Canary

Senior Application Security Engineer

Canary 11-50 Internet Software & Services

Canary Technologies is hiring a Senior Application Security Engineer to embed security into its fully remote engineering organization and help secure and scale its hospitality software platform.

United States Full-time Senior Application Security Engineer
AWS Burp Suite CI/CD Encryption GitHub Actions GitOps Go Helm JavaScript Kubernetes Penetration Testing Python Secrets Management SonarQube Terraform WAF
5 hours, 50 minutes ago
Pennylane

Senior Application Security Engineer

Pennylane 251-1K Diversified Financial Services

Pennylane is hiring a Senior Application Security Engineer to safeguard its web application, cloud infrastructure, and development practices while supporting compliance and security awareness across a fast-growing remote fintech team.

United Kingdom Croatia France Germany Greece Ireland Italy Poland Portugal Romania Spain Full-time Senior Application Security Engineer
AWS CI/CD JavaScript Kubernetes Penetration Testing Python React Ruby Ruby on Rails
6 hours, 35 minutes ago
Spotify

Security Engineer - Product Security

Spotify Media

Spotify is hiring a Security Engineer for its Product Security team in London or Stockholm to help secure engineering initiatives, application development, and AI-driven systems at global scale.

United Kingdom Sweden Full-time Senior Application Security Engineer Security Engineer
Agile C++ Encryption Generative AI Java Machine Learning Python Scala TypeScript
7 hours, 5 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers