RemoteLeaf Logo
Log in Sign up

Application Security Engineer - Public Trust/Secret Clearance

4 weeks ago
United States
Full-time
Senior
Application Security Engineer
Software Development
Bash Burp Suite C# CI/CD Eclipse Java Linux .NET Python Selenium Unix Visual Studio
Apply Now
TOMORROW HIRE

TOMORROW HIRE

TOMORROW HIRE specializes in revolutionizing the hiring process by integrating AI-driven technology and human expertise to create efficient, precise, and effective staffing solutions for businesses.

Internet Software & Services
View All Jobs 5

Description

  • Support Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE plug-in environments using Veracode and Burp Suite.
  • Design and implement enterprise-wide security controls for applications, systems, networks, and infrastructure services.
  • Secure enterprise web applications by identifying and mitigating OWASP Top 10, CVSS, CWE, WASC, and SANS Top 25 risks.
  • Integrate security practices into development workflows using Eclipse, JDeveloper, or Visual Studio, including pipeline development.
  • Perform application security testing and automation using OWASP ZAP, Burp Proxy, Selenium, and IAST capabilities.
  • Write and maintain bash scripts for security automation, testing, and troubleshooting.
  • Participate in vulnerability discovery, triage, and remediation, including crowdsourced security programs such as HackerOne.
  • Work in Linux or UNIX environments to navigate file systems and troubleshoot website connectivity and security issues.
  • Ensure applications and security practices align with federal compliance standards such as NIST 800-53, FIPS, and FedRAMP.

Requirements

  • 6+ years of Information Technology experience with a focus on application and security engineering.
  • 3+ years of hands-on experience supporting application security testing, including SAST and DAST.
  • Experience with SAST, DAST, and IDE plug-in integrations using tools such as Veracode and Burp Suite.
  • Experience with IAST tools and methodologies.
  • Proficiency with OWASP ZAP and/or Burp Proxy for web application security testing.
  • Experience participating in vulnerability discovery and remediation programs, including HackerOne.
  • Experience with test automation tools, including Selenium.
  • Proficiency in bash scripting for security automation, testing, and troubleshooting.
  • 2+ years of development experience in Java, Python, .NET, or C#.
  • Experience integrating security into development workflows using Eclipse, JDeveloper, or Visual Studio.
  • 3+ years of experience designing and implementing enterprise-wide security controls.
  • Strong knowledge of OWASP Top 10, CVSS, CWE, WASC, and SANS Top 25 vulnerabilities.
  • Knowledge of federal compliance and security frameworks, including NIST 800-53, FIPS, and FedRAMP.
  • Working knowledge of Linux or UNIX environments, including file system navigation and basic website connectivity troubleshooting.
  • High School Diploma or GED required.
  • Public Trust determination or active Security clearance preferred.

Benefits

  • Salary range of $120,000-$140,000.
  • Health insurance coverage.
  • Vision insurance coverage.
  • Dental insurance coverage.
  • Paid time off (PTO).

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Evolve Security Academy

Senior Application Security Tester & AI Red Team Subject Matter Expert

Evolve Security Academy 11-50 Internet Software & Services

Evolve Security is seeking a senior offensive security specialist to lead complex web, API, and AI red team engagements while defining the firm’s testing methodology for LLM-enabled and agentic systems.

United States Full-time Senior AI (Artificial Intelligence) Application Security Engineer
Bash GraphQL JavaScript JWT Metasploit Nmap OpenID Connect Penetration Testing Postman PowerShell Python REST API SAML SPA TypeScript
6 hours, 3 minutes ago
Virtualitics

Lead AppSec Engineer

Virtualitics 51-250 IT Services

Virtualitics is seeking a Lead Application Security Engineer to shape secure AI and application security practices for defense, government, and critical infrastructure systems.

United States Full-time Lead Application Security Engineer
$150k-$220k
AWS Azure Docker GCP Kubernetes
1 day, 23 hours ago
GitLab

VP of Product Security

GitLab 1K-5K Internet Software & Services

GitLab is hiring a Vice President of Product Security to lead security strategy and execution for its AI-powered DevSecOps platform, with responsibility for embedding security into product design, delivery, and the supporting cloud and infrastructure systems.

United States Full-time Executive Application Security Engineer Product Manager
$298k-$360k
CI/CD DevSecOps JavaScript Microservices OWASP Secrets Management Serverless
3 days, 3 hours ago
CookUnity

Senior Application Security Engineer

CookUnity 251-1K Hotels, Restaurants & Leisure

CookUnity is hiring a founding Application Security team member to help secure its engineering organization’s applications and build security into the software lifecycle.

Latin America Full-time Senior Application Security Engineer
Agile AWS Azure Burp Suite CI/CD DevSecOps Docker GCP Java Kotlin Kubernetes OAuth OpenID Connect OWASP Penetration Testing SAML TypeScript
6 days ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers