RemoteLeaf Logo
Log in Sign up

Application Security Engineer - Public Trust/Secret Clearance

8 hours, 57 minutes ago
United States
Full-time
Senior
Application Security Engineer
Software Development
Bash Burp Suite C# CI/CD Eclipse Java Linux .NET Python Selenium Unix Visual Studio
Apply Now
TOMORROW HIRE

TOMORROW HIRE

TOMORROW HIRE specializes in revolutionizing the hiring process by integrating AI-driven technology and human expertise to create efficient, precise, and effective staffing solutions for businesses.

Internet Software & Services
View All Jobs 2

Description

  • Support Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE plug-in environments using Veracode and Burp Suite.
  • Design and implement enterprise-wide security controls for applications, systems, networks, and infrastructure services.
  • Secure enterprise web applications by identifying and mitigating OWASP Top 10, CVSS, CWE, WASC, and SANS Top 25 risks.
  • Integrate security practices into development workflows using Eclipse, JDeveloper, or Visual Studio, including pipeline development.
  • Perform application security testing and automation using OWASP ZAP, Burp Proxy, Selenium, and IAST capabilities.
  • Write and maintain bash scripts for security automation, testing, and troubleshooting.
  • Participate in vulnerability discovery, triage, and remediation, including crowdsourced security programs such as HackerOne.
  • Work in Linux or UNIX environments to navigate file systems and troubleshoot website connectivity and security issues.
  • Ensure applications and security practices align with federal compliance standards such as NIST 800-53, FIPS, and FedRAMP.

Requirements

  • 6+ years of Information Technology experience with a focus on application and security engineering.
  • 3+ years of hands-on experience supporting application security testing, including SAST and DAST.
  • Experience with SAST, DAST, and IDE plug-in integrations using tools such as Veracode and Burp Suite.
  • Experience with IAST tools and methodologies.
  • Proficiency with OWASP ZAP and/or Burp Proxy for web application security testing.
  • Experience participating in vulnerability discovery and remediation programs, including HackerOne.
  • Experience with test automation tools, including Selenium.
  • Proficiency in bash scripting for security automation, testing, and troubleshooting.
  • 2+ years of development experience in Java, Python, .NET, or C#.
  • Experience integrating security into development workflows using Eclipse, JDeveloper, or Visual Studio.
  • 3+ years of experience designing and implementing enterprise-wide security controls.
  • Strong knowledge of OWASP Top 10, CVSS, CWE, WASC, and SANS Top 25 vulnerabilities.
  • Knowledge of federal compliance and security frameworks, including NIST 800-53, FIPS, and FedRAMP.
  • Working knowledge of Linux or UNIX environments, including file system navigation and basic website connectivity troubleshooting.
  • High School Diploma or GED required.
  • Public Trust determination or active Security clearance preferred.

Benefits

  • Salary range of $120,000-$140,000.
  • Health insurance coverage.
  • Vision insurance coverage.
  • Dental insurance coverage.
  • Paid time off (PTO).

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Wiz

Security Engineer - Product & Production Infrastructure

Wiz 251-1K IT Services

Wiz is seeking a Security Engineer for Product & Production Infrastructure to secure its cloud-native products, CI/CD, and production environments while helping shape defensive practices across the company.

France Senior Application Security Engineer Security Engineer
AWS Azure CI/CD GCP Go Helm Kubernetes Python Rust Terraform
40 minutes ago
Veracode

Senior Security Researcher

Veracode 251-1K Internet Software & Services

Veracode is hiring a Senior Security Researcher to lead Applied Research projects that improve its Static Application Security Testing platform while producing original security research for the broader community.

United States Full-time Senior Application Security Engineer
C C# C++ .NET Penetration Testing Prototyping
8 hours, 47 minutes ago
Abnormal AI

Senior Application Security Engineer

Abnormal AI Internet Software & Services

Abnormal AI is hiring a Senior Application Security Engineer to secure its AI-powered cybersecurity applications by embedding application security into development, architecture, and incident response across engineering teams.

United States Full-time Senior Application Security Engineer
$130k-$187k
Burp Suite CI/CD Encryption Git Go Java JavaScript Linux Microservices Python SonarQube TypeScript
8 hours, 53 minutes ago
Wiz

Security Engineer - Product & Production Infrastructure

Wiz 251-1K IT Services

Wiz is hiring a Security Engineer for Product & Production Infrastructure to secure its cloud products, CI/CD, and production environments through security reviews, vulnerability management, and detection and response work.

Germany Full-time Senior Application Security Engineer Security Engineer
AWS Azure CI/CD GCP Go Helm Kubernetes Python Rust Terraform
10 hours, 44 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers