- Play a lead role in developing expert knowledge of Product Security, requirements, tools, and working methods across our organization.
- Ideate, communicate, and guide the implementation of complex vulnerability mitigation strategies to development teams.
- Conduct manual and automated security assessments and code reviews to identify vulnerabilities within applications.
- Collaborate with Product, Technology, and broader security teams to provide recommendations for solutions focused on decreasing business risks.
- Perform threat modeling to identify potential security issues before they can be exploited. This involves understanding the attack surface of applications and predicting potential attack vectors.
- Deliver reports on completed tests and document technical issues identified during the assessments.
- Evaluate, select, and deploy security tooling to automate the detection of security vulnerabilities. This may include integrating security tools into continuous integration/continuous deployment (CI/CD) pipelines.
- Lead or participate in the response to security incidents, including conducting post-mortem analysis to prevent future occurrences.
- Ensure applications comply with relevant security standards and regulations. This may involve collaborating with auditors and performing regular security assessments.
- Understanding of containerization technologies.
- Demonstrated expertise in product/application security architecture.
- Experience with threat modeling, risk analysis and control design.
- In depth knowledge of network security, authentication, and authorization.
- Experience with Security integration into CI/CD and experience in driving CI/CD adaptation for security controls.
- Advanced understanding of vulnerability exploitation chaining, and vulnerability remediation.
- Strong familiarity with software development lifecycle (SDLC) processes and source control technologies.
- 7+ Years of overall IT Experience with a major emphasis on application security.
- Development experience in any modern programming language (including but not limited to Python, C++, Rust, Go).
- Strong knowledge of Cloud Providers (Azure).
- Bachelor's degree in computer science or related field or possess the equivalent combination of industry related professional experience and education.
- GWEB, CASE, CISSP, CSSLP certifications preferred.
-
Security Engineer
5 days ago
Insight Global Washington, United StatesRole: Security Engineer · PR: $50 -70/hr · Location: hybrid phx az · Contract: 12 month contract (possible extensions) · 2-4 Years of professional experience as a Security Engineer or equivalent position. · Professional experience utilizing Palo Alto. · Professional Experience wo ...
-
Security Engineer
2 weeks ago
Base One Technology Washington, United StatesOur Springfield VA based client is looking for Security Engineer. If you are qualified for this position, please email your updated resume in word format to lli@ · Description: · As a Security Engineer, you will help ensure the security of Agency's human capital technology solut ...
-
Security Engineer
1 week ago
Marathon TS Washington, United StatesMarathon TS is looking for an Security Engineer to join our team on an effort supporting our Federal Government Client in Washington, D.C.The ISSE will be part of a team that supports mission critical applications with both obtaining and maintaining Authorization to Operate (ATO) ...
-
Security Engineer
18 hours ago
Blackstone Talent Group Washington, United StatesSeeking a Security Engineer to join our Client's team. Seeking a passionate Security Engineer with strong project management experience to support a rapidly growing Data Analytics and Business Intelligence platform focused on providing data solutions Security Engineer, Linux, Man ...
-
Security Engineer
1 week ago
Go Intellects Washington, United StatesShort Description: · The Endpoint Engineer/Administrator shall assist with implementing and operating Endpoint Security infrastructure to protect the DCGOV IT infrastructure. The position is in the Citywide · Complete Description: · The Endpoint Engineer/Administrator will be int ...
-
Security Engineer
6 days ago
Zeneth Technology Partners Washington, United StatesSecurity Engineer · Washington D.C. / Hybrid · We are seeking a Senior Security Engineer to join our team in support of a Security Operations Center that supports our client in Washington D.C. The ideal candidate will have experience working in a network security environment, suc ...
-
Security Engineer
6 days ago
Seed Intellectual Property Law Group Washington, United StatesWe are looking for an individual with System Administrator roots who enjoys deep diving into technical details, driving down vulnerabilities, and looking for ways to improve IT security systems. Does that sound like you or like someone you want to become? Great We would like for ...
-
Security Engineer
3 days ago
Marathon TS Washington, United StatesMarathon TS is looking for an Security Engineer to join our team on an effort supporting our Federal Government Client in Washington, D.C.The ISSE will be part of a team that supports mission critical applications with both obtaining and maintaining Authorization to Operate (ATO) ...
-
Security Engineer
6 days ago
Verotis Washington, United StatesVerotis is seeking an experienced Security Engineer to support security operations, strategy, planning, architecture, vulnerability assessments and remediation, and coordination with various government security entities. This includes the documentation of security strategy, plann ...
-
Security Engineer
1 week ago
ARK Solutions, Inc. Washington, United StatesCLIENT: Federal · Position : Security Engineer/ Splunk Engineer · 6 months Contract · Washington, DC (Onsite) · Education: Bachelor's degree in in Cybersecurity or related field. · Required Skills: "Five (5) to seven (7) years of hands-on experience with security monitoring tool ...
-
Security Engineer
3 days ago
Kensho Washington, United StatesAt Kensho, we hire talented people and give them the autonomy and support needed to build amazing technology and products. To do this, we look for people who insist on a bias towards action to minimize unhelpful hierarchy and process. · We collaborate using our teammates' divers ...
-
Security Engineer
2 days ago
Scout Solutions Inc Defunct Washington, United StatesSecurity Engineer · Location: Washington, D.C./Hybrid (4 days on-site, 1 day telework) · Duration: Full Time · Clearance: TS/SCI- Clearance Minimum · Company Description · Zeneth Technology Partners is a top-rated cyber security firm. We are passionate about providing excellent ...
-
Security Engineer
6 days ago
Global InfoTek Washington, United StatesClearance Level: Top Secret clearance with SCI eligibility · US Citizenship: Required · Job Classification: Full-time · Location: District of Columbia · Experience: 5 years of experience in system security analysis and implementation; secure system engineering or design; and ...
-
Security Engineer
1 week ago
Verotis Washington, United StatesVerotis is seeking an experienced Security Engineer to support security operations, strategy, planning, architecture, vulnerability assessments and remediation, and coordination with various government security entities. This includes the documentation of security strategy, plann ...
-
Security Engineer
5 days ago
Tammina Washington, United States· The security engineering position provides support to a Security Operation Center of a federal agency. Ideal candidate will have comprehensive knowledge of Windows and UNIX-based system administration, network management and enterprise systems management and the ability to and ...
-
Security Engineer/ Splunk Engineer
1 week ago
Ark Solutions Washington, United StatesRole: Security Engineer/ Splunk Engineer · Washington, DC (Onsite) · 4-6 months Contract · Education: Bachelor's degree in in Cybersecurity or related field. · Required Skills: "Five (5) to seven (7) years of hands-on experience with security monitoring tools such as IDS/IPS ...
-
Security Engineer Lead
6 days ago
Edgewater Federal Solutions Washington, United StatesOverview: · Security Engineer Lead · Edgewater is currently seeking a Senior Azure Cloud Security Engineer to support our federal customer in the Washington DC area. · Responsibilities: Maintain and improve the security posture of the FERC Azure platform by identifying, and re ...
-
Splunk Security Engineer
2 weeks ago
System One Washington, United StatesALTA IT Services has a contract to hire opportunity for a Splunk Security Engineer – SOAR to support a leading health insurance client. · Splunk Security Engineer - SOAR · Washington, DC (Mostly Remote, Hybrid as Needed) · Contract to Hire · Pay: $70-75/hr W2 Range · COVID Vaccin ...
-
Security Engineer III
6 days ago
Ampcus Washington, United StatesOverview: · The Security Engineer III will evaluate, implement, maintain, and monitor IT security measures utilized by ****. · The individual in this position is responsible for reviewing both new and existing applications for security vulnerabilities and compliance. · Responsib ...
-
Product Security Engineer
1 week ago
Meta Inc Washington, United StatesSummary: · Meta's Product Security team is seeking a passionate hacker who derives purpose in life by revealing potential weaknesses and then crafting creative solutions to eliminate those weaknesses. Your skills will be the foundation of security initiatives that protect the sec ...
Senior Application Security Engineer - Washington, United States - TalentRemedy
Description
The Sr. Application Security Engineer is a technology and process focused security professional with extensive experience in Development Operations, Software Engineering, Application Security and/or Information Security disciplines. This individual will be at the forefront of our security efforts, partnering closely with product and application developers to establish and elevate best practices for secure software development. They will advise, implement, and train teams on the processes, tools, and automation needed to fortify the SDLC and safeguard our products and applications.
The Sr. Application Security Engineer is a full-time, remote, exempt position and reports to the CISO.
Specific Responsibilities:
Supervisory Responsibilities:
None.
Skills:
Experience:
Education: