Application Security Engineer

Booz Allen HamiltonWashington, DC
Match Resume

About The Position

The Application Security Engineer will collaborate with clients and the application community to maintain a robust security posture for highly visible applications. This role involves remediating application security flaws in conjunction with the application security team and leading security discussions to integrate best practices into the development lifecycle. Key tasks include performing dynamic and static application performance testing, conducting security requirements creation or generation-level threat modeling using tools like SD Elements, and performing application-level testing with applications such as Burp Suite. The engineer will also work with the latest OWASP frameworks.

Requirements

  • 6+ years of experience with Information Technology
  • 3+ years of experience with Java, Python, .NET, or C#
  • 3+ years of experience with Burp Suite supporting Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments
  • 3+ years of experience using the design and implementation of enterprise-wide security controls to secure applications, systems, networks, or infrastructure services
  • Experience with Veracode and Eclipse, JDeveloper, including pipeline development, or Visual Studio
  • Experience with securing enterprise web applications and OWASP Top 10, CVSS, CWE, WASC, and SANS-25
  • Knowledge of federal compliance standards, including NIST 800-53, FIPS, or FedRAMP
  • Knowledge of Linux or UNIX environments, including navigating and troubleshooting basic website connectivity issues
  • Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements
  • HS diploma or GED

Nice To Haves

  • Experience with the Security Compass SD Elements security requirements tool
  • Experience with Interactive Application Security Testing (IAST) capabilities and tools
  • Experience with OWASP ZAP or Burp Proxy

Responsibilities

  • Work together with the client and application community to maintain a resilient security posture for highly visible applications
  • Remediate application security flaws in conjunction with the application security team
  • Lead security discussions with the application teams to prescribe security best practices within their development lifecycle
  • Perform dynamic and static application performance testing
  • Perform security requirements creation or generation-level threat modeling leveraging tools, including SD Elements
  • Perform application-level testing using applications, such as Burp Suite
  • Work with the latest OWASP frameworks

Benefits

  • health benefits
  • life benefits
  • disability benefits
  • financial benefits
  • retirement benefits
  • paid leave
  • professional development
  • tuition assistance
  • work-life programs
  • dependent care
  • recognition awards program

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Senior

Education Level

High school or GED

Number of Employees

5,001-10,000 employees

Job Search Resources

Similar Application Security Engineer job opportunities

Security Engineer, Application Security
Mercor
Mercor • New York, NY7d • Onsite
Security Engineer - Application Security
Fragomen
Fragomen • Ontario, CA6d
Application Security Engineer
EdgeConneX
EdgeConneX • Herndon, VA12d • Hybrid
Application Security Engineer
Clear Capital | CubiCasa
Clear Capital | CubiCasa • Reno, NV7d • $80,000 - $110,000
Application Security Engineer
Awardco
Awardco • Lindon, UT7d
🔥 New JobApplication Security Engineer
MicroStrategy
MicroStrategy • Tysons, VA15h • Onsite
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service