Wordpress Security and Integration Specialist
About The Position
This position is for a proposal and pending funding. PCI-P is seeking a Security and Integration Specialist to design, implement, and maintain secure web application environments, with a strong focus on WordPress platforms and integrations. This role is responsible for safeguarding digital assets through proactive security measures, vulnerability assessments, and alignment with federal cybersecurity standards. The ideal candidate will combine hands-on technical expertise with a strong understanding of secure coding practices, web integrations, and regulatory compliance to ensure the integrity, confidentiality, and availability of web systems.
Requirements
- Minimum of five (5) years of experience in information security
- At least three (3) years of experience in web application security and system integration
- Demonstrated experience with WordPress security, hardening, and integrations
- Proven experience supporting federal website projects and compliance requirements
- Strong knowledge of web application security principles and best practices
- Experience with vulnerability assessment tools and penetration testing methodologies
- Hands-on experience with WordPress security, including plugin risk management and secure configurations
- Understanding of secure coding practices (e.g., input validation, authentication, authorization)
- Familiarity with security frameworks and compliance standards in federal environments
- Experience with network and application-level security controls
- Ability to identify, analyze, and remediate security vulnerabilities
- Experience integrating security into CI/CD pipelines and DevSecOps environments
- Strong analytical, troubleshooting, and problem-solving skills
- Ability to communicate security risks and recommendations to both technical and non-technical stakeholders
Nice To Haves
- Experience with cloud security in environments such as AWS, Azure, or Google Cloud
- Familiarity with SIEM/SOAR tools and security monitoring platforms
- Knowledge of API security and secure integration practices
- Experience with identity and access management (IAM) solutions
- Familiarity with data protection and encryption standards
- Experience supporting Authority to Operate (ATO) processes
Responsibilities
- Design, develop, and integrate security solutions to protect web applications and supporting systems
- Conduct security assessments and vulnerability scans, identifying risks and providing remediation strategies
- Perform ongoing security and vulnerability checks, including penetration testing and code-level analysis
- Develop and maintain security requirements analysis checklists to support quality assurance and web safety
- Ensure secure handling and protection of external IP address capture and related data
- Monitor and evaluate WordPress plugins and integrations for security risks and vulnerabilities
- Ensure compliance with federal cybersecurity requirements, including adherence to agency-specific standards
- Align development and integration efforts with secure coding practices and industry standards
- Apply and enforce best practices based on the OWASP Top 10
- Utilize and manage security scanning tools to detect and mitigate vulnerabilities
- Collaborate with developers, DevOps, and stakeholders to embed security throughout the software development lifecycle (SDLC)
- Document security findings, risk assessments, and remediation activities
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Career Level
Mid Level
Number of Employees
11-50 employees
