Jobs
>
Goshen

    Web Application Security Engineer - Suitland, United States - Iron Vine Security

    Iron Vine Security
    Iron Vine Security Suitland, United States

    2 weeks ago

    Default job background
    Description

    Job Requirements:


    • Strong written and verbal communication skills.
    • Must have an ability to communicate effectively, verbally and in writing, to interact effectively with internal and external vendors, project team members, management and agency departments, to build relationships and use facilitation skills with both technical and non-technical personnel.
    • Security Engineer Maintained CompTIA Security+ Professional (Security+), CISSP and/or CEH certification for 5+ consecutive years
    • 5+ consecutive years of systems assessment and authentication experience.
    • Proficient in Federal Information Security Management Act Metrics and Compliance Federal Information Processing Standards (FIPS)3+ years hands on compliance testing experience Oracle Certified Professional or equivalent CIS Benchmarks.
    • Splunk Certification or obtaining certification; knowledgeable in the use of Splunk Dashboards and audit data generation to support cyberattack investigations.
    • Detailed technical knowledge of database and operating system security.
    • Hands on experience in security systems and controls, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.
    • Experience developing web applications in PHP, Java, .NET or JavaScript. Experience with OW ASP a plus.

    Experience with application security assessment tools such as:
    Web Inspect, Fortify, Burp Suite, etc.


    • Experience in engineering or assessing the security of cloud, SaaS, and multi-tenanted applications including designing authentication and authorization requirements.

    Certifications/Licenses:


    • Bachelor's degree or higher
    • 10+ years' experience in security engineering in mid to large environments.
    • Certifications addressing security and risk management, asset security, security engineering, communications and network security, identity and access management, security assessment and testing, security operations, software development security, system security, network infrastructure, access control, cryptography, assessments and audits, and organizational security
    • Active Public Trust clearance or eligible to obtain a Public Trust clearance

    Additional Experience Preferred:


    • In-depth knowledge of Information Theory (e.g., source coding, channel coding, algorithm complexity theory, and data compression).
    • Ability to apply system design tools, methods, and techniques, including automated systems analysis and design tools.
    • Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
    • Knowledge of network design processes, to include understanding of security objectives, operational objectives, and trade-offs.
    • Ability to apply network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
    • Experience designing the integration of hardware and software solutions.
    • Experience in developing and applying security system access controls.
    • Skill in discerning the protection needs (i.e., security controls) of information systems and networks.
    • Skill in evaluating the adequacy of security designs and conducting reviews of technical systems.
    • Skill in the use of design modeling (e.g., unified modeling language).
    • Ability to apply secure system design tools, methods and techniques and ensure security practices are followed throughout the acquisition process.

    Position Responsibilities:


    • Evaluation of common security controls for internal and external web applications, client server systems and assist in the development of standardized technical implementation recommendations.
    • Track and update Acceptable Baseline Configuration deviations and false positives monthly to ensure accuracy
    • Automate technical security checks/audits throughout all components of applications (database, middleware, application code, servers, CI/CD pipeline )
    • Review/Preliminary Investigation for False Positives (FP). Coordinates completion of False Positive form with ISSO signature and OIS signature approval.
    • Reports identified technical vulnerabilities. As a further way of sharing information about vulnerabilities, maintains contact with ISSO and stakeholders with the same types of systems to determine standardized remediation going forward.
    • Source Code Reviews / Deep Dives
    • Security assessment support of new ECON Security Architecture and Topologies
    • Technical writing for developing security standards and policies
    • Adjudications of Technical Findings,
    • Direct HP Fortify and/or HP Web Inspect hands on experience for system related vulnerability scanning Burp Suite
    • Visualization Reports
    • Automation of Audits
    • Automation of Config Benchmarks
    Skills & Requirements Qualifications


    NOTES:

    Iron Vine Security is an equal opportunity employer.

    All qualified applicants are considered for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other category protected by applicable federal, state or local laws.

    Iron Vine Security is a federal contractor.

    As such, we are subject to an Executive Order requiring all employees of federal contractors to be fully vaccinated for COVID-19 by December 8, 2021.

    Therefore, by applying for this position, you understand that you will be required to verify that you have been, or will be, fully vaccinated by December 8, or to verify that you cannot be vaccinated due to a legally recognized exception to the vaccine mandate set forth in the Executive Order.


    Note:

    An individual is not considered to be fully vaccinated until two weeks after receiving the second vaccine dosage in a vaccine regimen involving two vaccines.
  • Leidos

    Security Engineer

    32 minutes ago

    Leidos Suitland, United States Full time

    Description · The National Security Sector of Leidos has a dynamic job opening for a Security Engineer (IA/IS) to work at our customer site in Suitland, MD. All work will be performed onsite at the National Maritime Intelligence Center. · In this role, you will be recognized as ...

  • Eclipse Innovations

    Engineer for IT security

    3 weeks ago

    Eclipse Innovations Argos, United States

    At Argos, our mission is to store radioactive waste in accordance with the highest safety standards until it can be permanently disposed of. We are proud to be Germany's leading center of expertise for handling radioactive waste and play a crucial role in ensuring sustainable nuc ...

  • Leidos

    Splunk Security Engineer with Security Clearance

    2 days ago

    Leidos Suitland, United States

    You will need to login · before you can apply for a job. · Splunk Security Engineer with Security Clearance · R– Description Looking for an opportunity to make an impact? At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are d ...

  • Leidos

    Security Engineer, Splunk with Security Clearance

    2 weeks ago

    Leidos Suitland, United States

    You will need to login · before you can apply for a job. · Security Engineer, Splunk with Security Clearance · R– Description Job Description Looking for an opportunity to make an impact? At Leidos, we deliver innovative solutions through the efforts of our diverse and talented ...

  • Clear Ridge Defense

    Cloud Security Engineer

    1 week ago

    Clear Ridge Defense Suitland, United States

    Clear Ridge Defense is seeking a TS/SCI cleared professional to serve as a Cloud Security Engineer for a position in Fort Meade, MD. · Roles and Responsibilities · Facilitate the understanding and shaping of the end-to-end cloud security strategy and governance across various c ...

  • Leidos

    Security Engineer, Splunk

    2 weeks ago

    Leidos Suitland, United States

    Description · Job Description · Looking for an opportunity to make an impact? · At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and ...

  • Leidos

    Security Engineer, Splunk

    1 week ago

    Leidos Suitland, United States

    Description · Looking for an opportunity to make an impact? · At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainabl ...

  • Leidos

    Security Engineer, Splunk

    2 days ago

    Leidos Suitland, United States

    · Job Description · Looking for an opportunity to make an impact? · At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate su ...

  • Leidos

    Security Engineer, Splunk

    1 week ago

    Leidos Suitland, United States

    Description · Job Description · Looking for an opportunity to make an impact? · At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, an ...

  • Leidos

    Splunk Security Engineer

    1 week ago

    Leidos Suitland, United States Full time

    Description · Looking for an opportunity to make an impact? · At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainab ...

  • Leidos

    Security Engineer, Splunk

    1 week ago

    Leidos Suitland, United States Full time

    Description · Looking for an opportunity to make an impact?At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainably. ...

  • Leidos

    Security Engineer, Splunk

    1 week ago

    Leidos Suitland, United States

    Job Description · Looking for an opportunity to make an impact? · At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustai ...

  • Iron Vine Security

    Web Application Security Engineer

    3 days ago

    Iron Vine Security Suitland, United States

    Job Requirements: · •Strong written and verbal communication skills. · •Must have an ability to communicate effectively, verbally and in writing, to interact effectively with internal and external vendors, project team members, management and agency departments, to build relation ...

  • CACI

    Software Engineer with Security Clearance

    3 weeks ago

    CACI Suitland, United States

    Software Engineer Job Category: Engineering Time Type: Full time Minimum Clearance Required to Start: TS/SCI Employee Type: Regular Percentage of Travel Required: Up to 10% Type of Travel: Continental US * * * CACI is seeking a Mid to Senior Software Engineer (3-5yrs ) to support ...

  • NNData

    Software Engineer with Security Clearance

    1 week ago

    NNData Suitland, United States

    Software Engineer Majority onsite in Suitland, MD - occasional remote on Friday's $140k-$160k target salary NNData is seeking qualified candidates to assist in the modernization of the Automated Maritime System (AMS) that produces authoritative data products for the Office of Nav ...

  • Quantum Innovations

    Junior Cyber-Security Engineer

    3 weeks ago

    Quantum Innovations Dewart, United States

    What we offer: · You will be part of a dynamic and motivated team with flat hierarchies · A long-term perspective and customized training measures · A pleasant and productive working atmosphere · Professional development measures - attractive conditions & company pension benefits ...

  • Clear Ridge Defense

    Senior Information Systems Security Engineer

    2 weeks ago

    Clear Ridge Defense Suitland, United States

    Clear Ridge Defense is seeking a TS/SCI cleared professional to serve as a Senior Information Systems Security Engineer in Fort Meade, Maryland. · Roles and Responsibilities · You will... · Perform and review technical security assessments of computing environments to identify ...

  • FiveTwelve, LLC

    Information Systems Security Engineer Level 2

    3 weeks ago

    FiveTwelve, LLC Suitland, United States

    Job DescriptionThe Information Systems Security Engineer shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mit ...

  • Cadence Coalition

    Cloud Integration Systems Engineer with Security Clearance

    1 week ago

    Cadence Coalition Suitland, United States

    We are seeking a Cloud Integration Systems Engineer to support a cloud migration project on a Navy Contract in Suitland, MD. The successful candidate will have a strong background in systems integration with cloud computing experience. · Responsibilities: Assist in the design and ...

  • Lippert

    Entry Doors

    2 weeks ago

    Lippert Elkhart, United States

    Overview: · **Who We Are**: · Lippert is a leading, global manufacturer and supplier of highly engineered products and customized solutions, dedicated to shaping, growing and bettering the RV, marine, automotive, commercial vehicle and building products industries. We combine our ...