- Conduct vulnerability assessments of web applications, mobile applications, and servers using both manual and automated tools.
- Perform penetration testing to identify potential weaknesses and vulnerabilities.
- Analyze security vulnerabilities and develop remediation plans.
- Work with development teams to ensure the implementation of security best practices.
- Stay current with emerging security threats, vulnerabilities, and industry trends.
- Produce reports outlining findings and recommended remediation steps.
- Communicate security risks and solutions to both technical and non-technical stakeholders.
- Requirements:
- Bachelors degree in computer science, Information Security, or related field.
- At least 3 years of experience in application and server vulnerability assessment.
- Experience with vulnerability scanning tools such as Nessus, Qualys, or OpenVAS.
- Experience with web application security testing tools such as Metasploit, Burp Suite, or Kali Linux.
- Knowledge of OWASP Top 10 and CWE/SANS Top 25.
- Experience with programming languages such as Python, Ruby, or Perl.
- Strong understanding of security vulnerabilities and remediation techniques.
- Excellent written and verbal communication skills.
- Ability to work independently or in a team environment.
- Willingness to work on-site 3 days a week.
- Expertise in implementing, administrating and operating information security technologies such as firewalls, IDS/IPS, SIEM, Antivirus, network traffic analyzers and malware analysis tools.
- Utilizes advanced experience with scripting and tool automation such as Perl, PowerShell, Regex.
- Develops, leads, and executes information security incident response plans.
- Develops standard and complex IT solutions & services, driven by business requirements and industry standards.
- May also leverage dynamic and static code assessment tools to measure vulnerability of applications throughout the SDLC.
- BS Degree in IT, Cybersecurity, or Engineering, or equivalent experience
-
Reverse Engineer/Vulnerability Researcher
3 hours ago
Core One Washington, United States Full timeReverse Engineer and Vulnerability Researcher · Join our team at Core One Our mission is to be at the forefront of devising analytical, operational, and technical solutions to our Nation's most complex national security challenges. In order to achieve our mission, Core One value ...
-
Security Engineer/Vulnerability Management
3 weeks ago
Bering Straits Native Corporation (BSNC) Washington, United StatesOverview: · Visit our website at to apply · SUMMARY · Bering Global Solutions, LLC a subsidiary of Bering Straits Native Corporation is currently seeking a looking for a Security Engineer/Vulnerability Management for a project in Washington D.C. This position is remote howe ...
-
Lead Vulnerability Engineer
1 week ago
Tik Tok Washington, United StatesResponsibilities · TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. TikTok has global offices including Los Angeles, New York, London, Paris, Berlin, Dubai, Singapore, Jakarta, Seoul and Tokyo. · Why Join Us · C ...
-
ASRC Federal Holding Company Washington, United StatesASRC FEDERAL Broadleaf Division is seeking a Vulnerability and Patch Management Engineer to support our customer located at the Pentagon. · JOB DESCRIPTION: · The candidate shall have an in-depth knowledge of multi-platform engineering; planning, coordinating, and executing patch ...
-
Experis Washington, United StatesOne of our premier clients in the DC metro area is seeking a Security Engineer for a long term role. This role is hybrid- requiring going on site 1 day a week & possibly other strategic meetings as needed. This must be filled by someone with a TS/SCI or eligible for one Strong pe ...
-
Vulnerability and Patch Management Engineer(Mid)
3 weeks ago
ASRC Federal Holding Company, LLC Washington, United StatesThe candidate shall have an in-depth knowledge of multi-platform engineering; planning, coordinating, and executing patch management operations, creating baselines and configuring hardened systems. Candidate will have strong experience with centrally Management, Vulnerability, En ...
-
Experis Washington, United StatesOne of our premier clients in the DC metro area is seeking a Security Engineer for a long term role. This role is hybrid- requiring going on site 1 day a week & possibly other strategic meetings as needed. This must be filled by someone with a TS/SCI or eligible for one Strong pe ...
-
Senior Application Cyber Security Engineer
1 week ago
Vega Consulting Solutions, Inc Washington, United StatesVega Consulting Solutions, Inc. is searching for a Senior Application Security Engineer for a 6 month Contract opportunity for our direct client. This position is hybrid based. Prefer candidates that are located on the Wash. DC, Virginia or Maryland. There will be periodic travel ...
-
Linux System Engineer
1 week ago
Comptech Associates Washington, United StatesPURPOSE OF THE JOB · We are seeking experienced Senior Engineers to join our software maintenance and support team. As a Senior Engineer, you will be responsible for providing maintenance and support for Rel 7.7 software products. Your expertise in Corgi, Pacemaker for RHEL HA, P ...
-
Senior Application Security Engineer
1 week ago
Dexian Washington, United StatesPosition: Senior Application Security Engineer · Location: Washington DC (Hybrid) · Job Type: 3 months contract - Possible extension · Job description: · Role: Senior Application Security Engineer · Client seeks a skilled professional to assist with Application Security Engine ...
-
Information Engineer
2 weeks ago
General Dynamics Information Technology Washington, United StatesInformation Engineer - Information Assurance (IA) - Active Top Secret/SCI Eligibility Required · As a INFORMATION ENGINEER with GDIT, you perform all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent acc ...
-
Systems Administrator
2 weeks ago
General Dynamics Information Technology Washington, United StatesJob Description Summary: · Systems Administrator · Seize your opportunity to make a personal impact as a Systems Administrator with GDIT. A career in enterprise IT means connecting and enhancing the systems that matter most. At GDIT you'll be at the forefront of innovation and pl ...
-
CyberArk System Engineer
1 week ago
Eliassen Group Washington, United StatesJob Summary: Apply for a career-defining opportunity as a CyberArk Senior Systems Engineer, where you will lead the charge in strengthening the security posture of our client through the implementation and maintenance of a cutting-edge Privileged Access Management (PAM) solution. ...
-
Cloud Security Engineer
1 week ago
Constellation West Washington, United StatesConstellation West is seeking a highly motivated Cloud Engineer to join our team in pursuing a contract with the USDA. This presents a distinctive chance for an experienced Federal Government contractor with CCSP and AZ-900 certifications to contribute to the writing and speak on ...
-
Unix System Administrator
1 week ago
HRUCKUS Washington, United StatesVeteran Firm Seeking a Unix System Administrator for an Onsite Role in Washington, DC · My name is Stephen Hrutka. I lead a Veteran-owned consulting firm in Washington, DC, focused on strategic sourcing, supply chain management, and IT Staffing. · We want to fill a Unix System Ad ...
-
Linux Systems Administrator
2 weeks ago
General Dynamics Information Technology Washington, United StatesSystems Administrator · - Active Top Secret Required · Seize your opportunity to make a personal impact as a · Systems Administrator · with GDIT. A career in systems administration means connecting and enhancing the systems that matter most. At GDIT, people are our differentiator ...
-
Network Administrator III
2 weeks ago
General Dynamics Information Technology Washington, United StatesNetwork Administrator · Level III · DC metro area · Please note this role requires experience working within a Special Access program. · The primary function will be to organize, install, and support government organization's computer systems, including local area networks (LANs) ...
-
Senior Application Security Engineer
3 weeks ago
TalentRemedy Washington, United StatesThe Sr. Application Security Engineer is a technology and process focused security professional with extensive experience in Development Operations, Software Engineering, Application Security and/or Information Security disciplines. This individual will be at the forefront of our ...
-
Cyber Vulnerability Analyst
3 weeks ago
Global Engineering & Technology, Inc. Washington, United StatesTHIS IS A HYBRID-REMOTE POSITION. · In its majority, work will be performed remotely, from the employee's place of residence. · Pre-planned travel to Oak Ridge, Tennessee, or Amarillo, Texas, for on-site interaction, support, and inspections will be required up to 15% of the ti ...
-
Reverse Engineer
3 hours ago
Edjuster Washington, United StatesBasic Qualifications: · Education Requirements: · Requires a Bachelor's degree in Engineering, or a related Science or Mathematics field. Also requires 2+ years of job-related experience or a Master's degree · Clearance Requirements: · Department of Defense Top Secret securit ...
Apps and Server Vulnerability Engineer - Washington, United States - Serigor Inc
Description
Job Title: Apps and Server Vulnerability Engineer (Onsite)Location: Washington, DC
Duration:12 Months+
Job Description:
We are looking for a talented and experienced Application and Server Vulnerability Assessment Engineer to join our team. The ideal candidate will be responsible for performing comprehensive security assessments of web applications, mobile applications, and servers, including penetration testing and vulnerability assessment. The successful candidate will have a strong understanding of security vulnerabilities and threats, as well as experience in remediation techniques.
Key Responsibilities:
SkillsRequired / DesiredAmountof Experience1-5 yrs. implementing, administering, and operating IS tech such as firewalls, IDS/IPS, SIEM, Antivirus, net traffic analyzers, and malware analysisRequired3Years1-5 yrs. utilizing advanced experience with scripting and tool automation such as Perl, PowerShell, RegexRequired3Years1-5 yrs. developing, leading, and executing information security incident response plansRequired3Years1-5 yrs. developing standard and complex IT solutions & services, driven by business requirements and industry standardsRequired3YearsBS Degree in IT, Cybersecurity, Engineering, or equivalent experienceRequired