No more applications are being accepted for this job
- Integrate security best practices into the software development life cycle (SDLC) and ensure security is embedded from design to deployment.
- Utilize Microfocus Fortify and other SAST tools to analyze source code for vulnerabilities.
- Work closely with development teams to remediate identified security issues.
- Implement and manage Black Duck SCA tools from Synopsys to identify and manage open-source component risks.
- Provide guidance on secure usage of third-party libraries and components.
- Conduct security assessments using Microfocus WebInspect and other DAST tools.
- Collaborate with development teams to address and remediate dynamic security findings.
- Implement and manage container security tools, with a focus on Anchore, to ensure secure container deployments.
- Provide recommendations for secure container orchestration.
- Work on ensuring systems and applications comply with Security Technical Implementation Guide
- Bachelor's degree in computer science, Information Security, or related field and 3+ years of prior experience in application security with a focus on SAST, SCA, DAST or Master's with 1-2 years of prior experience in application security with a focus on SAST, SCA, DAST.
- Experience in system integrations testing through a full system development life cycle, including implementing test plans, test cases and test processes.
- Strong experience with Microfocus Fortify, Black Duck, Microfocus WebInspect, Anchore, or similar products.
- Knowledge of secure coding practices and integration into SDLC.
- Familiarity with common security frameworks and standards.
- Strong programming/scripting skills.
- Excellent communication and collaboration skills.
- Working in an Agile project management environment.
- Enthusiastic with the ability to work well on a team and a self-starter who can work on their own
- Knowledge of Atlassian software such as JIRA, JIRA Service Desk, and Confluence.
- Experience with data engineering tools such as Kubernetes/Rancher, Cloudera.
- Experience with Configuration Management and IaC tools such as Salt or Ansible.
- Experience with scripting languages, CI/CD tools, Elasticsearch, or Gitlab.
- Experience working in an air-gapped environments.
- Experience working in large computing environments (> 1,000 end-points)
- Above market fixed salary or hourly pay.
- Up to $10,000 bonus for each referral.
- Additional bonuses for exceptional performance, assisting with business development and company growth
- 100% paid premiums for health insurance
- HSA and FSA options.
- 100% paid premiums for dental insurance.
- 100% paid premiums for vision insurance
- 100% paid premiums for short-term disability.
- 100% paid premiums for long-term disability.
- 100% paid premiums for accidental death & dismemberment.
- 100% paid premiums for life insurance with a $200,000 max benefit
- 8% company contribution to 401k with immediate vesting.
- 401k pre-tax and Roth options
- Up to 20 days of flexible paid time off (PTO).
- 11 days of paid floating holidays
- Flexible work schedules including flex time and compressed work period.
- Remote work including partial or fully remote (contract and project-dependent)
Application Security Engineer with Security Clearance - Bethesda, MD, United States - Base-2 Solutions, LLC
Description
Required Security Clearance:
Top Secret/SCI City: Bethesda State/Territory:
Maryland Travel:
None Potential for Teleworking:
Yes Schedule:
Full Time DoD 8570 IAT Requirement: None DoD 8570 IAM Requirement: None DoD 8570 IASAE Requirement: None DoD CSSP Requirement:
None Last Updated: 4/28/24 8:01 PM Requisition ID: US Citizenship Required?: Yes Base-2 Solutions is seeking a talented Application Security Engineer to join our dynamic team and contribute to the security posture of our software development lifecycle
We are looking for someone who can demonstrate strong cross functional collaboration in areas such as, but not limited to, development, production, and QA in a dynamic, secure, fast paced environment
Have impact as part of a mission focused, solutions oriented, and adaptive team that values innovation, collaboration, and professional development
Job Description
Choose from PPO, EPO, POS, HMO, and HSA-compatible.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.