Security and Integration Specialist

About The Position

Requirements

• Minimum of five (5) years of experience in information security
• At least three (3) years of experience in web application security and system integration
• Demonstrated experience with WordPress security, hardening, and integrations
• Proven experience supporting federal website projects and compliance requirements
• Bachelor’s degree from an accredited college or university in Computer Science, Cybersecurity, or a related field
• Strong knowledge of web application security principles and best practices
• Experience with vulnerability assessment tools and penetration testing methodologies
• Hands-on experience with WordPress security, including plugin risk management and secure configurations
• Understanding of secure coding practices (e.g., input validation, authentication, authorization)
• Familiarity with security frameworks and compliance standards in federal environments
• Experience with network and application-level security controls
• Ability to identify, analyze, and remediate security vulnerabilities
• Experience integrating security into CI/CD pipelines and DevSecOps environments
• Strong analytical, troubleshooting, and problem-solving skills
• Ability to communicate security risks and recommendations to both technical and non-technical stakeholders
• Able to provide proof of US citizenship
• The ability to obtain a security clearance

Nice To Haves

• Experience with cloud security in environments such as AWS, Azure, or Google Cloud
• Familiarity with SIEM/SOAR tools and security monitoring platforms
• Knowledge of API security and secure integration practices
• Experience with identity and access management (IAM) solutions
• Familiarity with data protection and encryption standards
• Experience supporting Authority to Operate (ATO) processes

Responsibilities

• Design, develop, and integrate security solutions to protect web applications and supporting systems
• Conduct security assessments and vulnerability scans, identifying risks and providing remediation strategies
• Perform ongoing security and vulnerability checks, including penetration testing and code-level analysis
• Develop and maintain security requirements analysis checklists to support quality assurance and web safety
• Ensure secure handling and protection of external IP address capture and related data
• Monitor and evaluate WordPress plugins and integrations for security risks and vulnerabilities
• Ensure compliance with federal cybersecurity requirements, including adherence to agency-specific standards
• Align development and integration efforts with secure coding practices and industry standards
• Apply and enforce best practices based on the OWASP Top 10
• Utilize and manage security scanning tools to detect and mitigate vulnerabilities
• Collaborate with developers, DevOps, and stakeholders to embed security throughout the software development lifecycle (SDLC)
• Document security findings, risk assessments, and remediation activities

Benefits

• Three robust individual and family medical plans to full time employees
• Health Savings Account (HSA) option
• Two tiers of dental coverage
• Vision
• Life & AD&D
• Disability
• Accident
• Hospital indemnity
• Critical illness insurance
• Paid time off
• B&A sponsored trainings and certifications
• Pet insurance benefits
• Commuter transit benefits
• Free subscription to a virtual exercise platform (NEOU)
• 401(k) plan is available to all employees and includes a company matching contribution
• The B&A Cares program: 30/60/90-day wellness check ins, personal development, financial management, and stress management seminars, and more
• A formal mentorship program
• Job shadowing and cross training opportunities
• Brand Ambassador program
• Employee Assistance Program (EAP) - Access to various support resources to include counseling, legal guidance, financial planning, and more
• Monthly teambuilding events
• B&A Annual Wellness Challenges: #StepWithB&A, #WalkDuringLunchWithB&A, #VolunteeringWithB&A, #ExerciseDuringLunchWithB&A, and more