- Integrate security best practices into the software development life cycle (SDLC) and ensure security is embedded from design to deployment.
- Utilize Microfocus Fortify and other SAST tools to analyze source code for vulnerabilities.
- Work closely with development teams to remediate identified security issues.
- Implement and manage Black Duck SCA tools from Synopsys to identify and manage open-source component risks.
- Provide guidance on secure usage of third-party libraries and components.
- Conduct security assessments using Microfocus WebInspect and other DAST tools.
- Collaborate with development teams to address and remediate dynamic security findings.
- Implement and manage container security tools, with a focus on Anchore, to ensure secure container deployments.
- Provide recommendations for secure container orchestration.
- Work on ensuring systems and applications comply with Security Technical Implementation Guide
- Bachelor's degree in computer science, Information Security, or related field and 3+ years of prior experience in application security with a focus on SAST, SCA, DAST or Master's with 1-2 years of prior experience in application security with a focus on SAST, SCA, DAST
- Must possess TS/SCI clearance with the ability to obtain and maintain TS/SCI with Polygraph.
- Experience in system integrations testing through a full system development life cycle, including implementing test plans, test cases and test processes.
- Strong experience with Microfocus Fortify, Black Duck, Microfocus WebInspect, Anchore, or similar products.
- Knowledge of secure coding practices and integration into SDLC
- Familiarity with common security frameworks and standards
- Strong programming/scripting skills
- Excellent communication and collaboration skills
- Working in an Agile project management environment
- Enthusiastic with the ability to work well on a team and a self-starter who can work on their own.
- Knowledge of Atlassian software such as JIRA, JIRA Service Desk, and Confluence
- Experience with data engineering tools such as Kubernetes/Rancher, Cloudera
- Experience with Configuration Management and IaC tools such as Salt or Ansible
- Experience with scripting languages, CI/CD tools, Elasticsearch, or Gitlab
- Experience working in an air-gapped environments
- Experience working in large computing environments (> 1,000 end-points)
-
Senior Security Engineer
2 days ago
3M Consultancy washington, United StatesThis is a remote position. · Job Title: Senior Security Engineer. · Location: Washington, DC (Remote) · Duration: Full-Time. · Role Specific Duties: · Provide network IDS monitoring, cyber threat intelligence, security log analysis and forensics, and web application security ...
-
Security Engineer
3 days ago
ARK Solutions, Inc. Bethesda, United StatesJob: Security Engineer · Location:Bethesda, MD/Remote · Duration: Long Term · This is Remote position, but candidate has to go onsite time to time. · Only looking for local candidate. · Only Open for W2 · JOB DESCRIPTION · Supports the Identity & Access Management (IAM) functio ...
-
SECURITY ENGINEER
1 week ago
Ark Solutions Bethesda, United StatesSECURITY ENGINEER (Identity & Access Management WAM/SSO) · DESCRIPTION · Supports the Identity & Access Management (IAM) function in Global Information Security organization. Ideal candidate will bring subject matter expertise (L3) on Web Access Management (WAM) and SSO technol ...
-
Security Engineer
1 day ago
Diverse Systems Group Bethesda, United StatesJob Description · Job Description · As a \ Security Engineer, you will be a key leader in maintaining the security posture of our systems and ensuring compliance with the Department of Defense (DOD) and Defense Health Agency (DHA) policies and requirements. Your extensive exper ...
-
Security Engineer
1 day ago
Diverse Systems Group Bethesda, United StatesJob Description · Job DescriptionAs a \ Security Engineer, you will be a key leader in maintaining the security posture of our systems and ensuring compliance with the Department of Defense (DOD) and Defense Health Agency (DHA) policies and requirements. Your extensive experience ...
-
IT Security Engineer
6 days ago
Crimson Enterprises Arden on the Severn, United StatesWith more than 1,500 stores in 19 European countries, C&A is one of the leading fashion companies in Europe. C&A welcomes over two million visitors daily to its stores and offers high-quality fashion at affordable prices for the whole family. We embrace the digital transformation ...
-
Security Engineer
3 weeks ago
Bethesda Marriott Bethesda, United States Full timeJob Number · Job Category Information Technology · Location Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAP · Schedule Full-Time · Located Remotely? Y · Relocation? N · Position Type Management · Job Summary · Serves as a Security ...
-
Security Engineer
5 days ago
NovaWorks Solutions Germantown, United StatesWe want to make a difference - are you with us? We ensure that over 80 million people in Germany can benefit from digital healthcare. Join us in shaping the healthcare system of tomorrow. · Your work area · DEMIS is the digital platform for Germany and the healthcare sector, prov ...
-
Base-2 Solutions, LLC Bethesda, MD, United StatesRequired Security Clearance: Top Secret/SCI City: Bethesda State/Territory: Maryland Travel: None Potential for Teleworking: Yes Schedule: Full Time DoD 8570 IAT Requirement: None DoD 8570 IAM Requirement: None DoD 8570 IASAE Requirement: None DoD CSSP Requirement: None Last Upda ...
-
Base-2 Solutions, LLC Bethesda, MD, United StatesRequired Security Clearance: Top Secret/SCI City: Bethesda State/Territory: Maryland Travel: None Potential for Teleworking: Yes Schedule: Full Time DoD 8570 IAT Requirement: None DoD 8570 IAM Requirement: None DoD 8570 IASAE Requirement: None DoD CSSP Requirement: None Last Upda ...
-
Base-2 Solutions, LLC Bethesda, MD, United StatesRequired Security Clearance: Top Secret/SCI City: Bethesda State/Territory: Maryland Travel: None Potential for Teleworking: Yes Schedule: Full Time DoD 8570 IAT Requirement: None DoD 8570 IAM Requirement: None DoD 8570 IASAE Requirement: None DoD CSSP Requirement: None Last Upda ...
-
Base-2 Solutions, LLC Bethesda, MD, United StatesRequired Security Clearance: Top Secret/SCI City: Bethesda State/Territory: Maryland Travel: None Potential for Teleworking: Yes Schedule: Full Time DoD 8570 IAT Requirement: None DoD 8570 IAM Requirement: None DoD 8570 IASAE Requirement: None DoD CSSP Requirement: None Last Upda ...
-
Base-2 Solutions, LLC Bethesda, MD, United StatesRequired Security Clearance: Top Secret/SCI City: Bethesda State/Territory: Maryland Travel: None Potential for Teleworking: Yes Schedule: Full Time DoD 8570 IAT Requirement: None DoD 8570 IAM Requirement: None DoD 8570 IASAE Requirement: None DoD CSSP Requirement: None Last Upda ...
-
Base-2 Solutions, LLC Bethesda, MD, United StatesRequired Security Clearance: Top Secret/SCI City: Bethesda State/Territory: Maryland Travel: None Potential for Teleworking: Yes Schedule: Full Time DoD 8570 IAT Requirement: None DoD 8570 IAM Requirement: None DoD 8570 IASAE Requirement: None DoD CSSP Requirement: None Last Upda ...
-
Application Security Engineer
1 day ago
Base2 Solutions Bethesda, United StatesBase-2 Solutions is seeking a talented Application Security Engineer to join our dynamic team and contribute to the security posture of our software development lifecycle. We are looking for someone who can demonstrate strong cross functional collaboration in areas such as, but n ...
-
Application Security Engineer
1 week ago
Xcelerate Solutions Bethesda, MD, United StatesApplication Security Engineer - TS/SCI Xcelerate Solutions is seeking an Application Security Engineer supporting DIA-NMEC under our 10-year DOMEX Technology Platform (DTP) contract · We are seeking a talented Mid-Level Application Security Engineer to join our dynamic team and c ...
-
Sr. Security Engineer
1 week ago
Marriott Hotels & Resorts Bethesda, United StatesThis position will be part of the Cloud Security Engineering Team within the Global Information Security organization. The security engineer will be responsible for designing and building security capabilities in a multi-cloud environment and buildin Security Engineer, Security, ...
-
Cyber Security Engineer
1 day ago
cyDaptiv Solutions Inc Bethesda, United StatesOverview · cyDaptiv Solutions is seeking a Senior Cyber Security Engineer (CSE) with experience supporting Federal and DoD cyber security and information assurance projects. The CSE must have knowledge of the Risk Management Framework (RMF), security principles, concepts, polici ...
-
Application Security Engineer
1 week ago
Leidos Inc Bethesda, MD, United StatesDescription · Are you ready to join Leidos all-star team? Through training, teamwork, and exposure to challenging technical work, let Leidos show how to accelerate your career path. · The Leidos National Security Sector has an exciting opening for you as our next TS/SCI cleared ...
-
Application Security Engineer
1 week ago
Xcelerate Solutions Bethesda, United States· Description · Application Security Engineer - TS/SCI Xcelerate Solutions is seeking anApplication Security Engineersupporting DIA-NMEC under our 10-year DOMEX Technology Platform (DTP) contract. We are seeking a talented Mid-Level Application Security Engineer to join our dyna ...
Application Security Engineer - Bethesda, United States - SUNAYU
Description
Location: Bethesda, MD
Category: Systems Administration
Travel Required: No
Remote Type: Hybrid Remote
Clearance: Top Secret/SCI
Sunayu LLC has a opening supporting DIA-NMEC under our 10-year DOMEX Technology Platform (DTP) contract. We are seeking a talented Mid-Level Application Security Engineer to join our dynamic team and contribute to the security posture of our software development lifecycle. We are looking for someone who can demonstrate strong cross functional collaboration in areas such as, but not limited to, development, production, and QA in a dynamic, secure, fast paced environment. Have impact as part of a mission focused, solutions oriented, and adaptive team that values innovation, collaboration, and professional development. While most work is conducted on-site at our client location in Bethesda, MD, we offer a flexible schedule and, occasionally, some tasks may be performed remotely. Percentage of remote work will vary based on client requirements/deliverables.
As an integral member of the team, you will work closely with other infrastructure, network engineers, and system engineers on the following key tasks: