Application Security Engineer

Role: Application Security Engineer

Year/Option: 1/5

Duration of the Contract: 1+ years

Job Locations: 100% Remote Huntsville, AL

They will need to meet the following requirements. Burp and Veracode are currently the areas of focus.

6+ years of Information Technology experience

3+ years of experience with supporting Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments using Veracode and Burp Suite

2+ years of experience with Java, Python, .NET, or C#

3+ years of experience using the design and implementation of enterprise-wide security controls to secure applications, systems, network, or infrastructure services

Experience with Eclipse, JDeveloper, including pipeline development, or Visual Studio

Experience with securing enterprise web applications and OWASP Top 10, CVSS, CWE, WASC, and SANS-25

Knowledge of federal compliance standards, including NIST 800-53, FIPS, or FedRAMP

Knowledge of Linux or UNIX environments, including navigating and troubleshooting basic website connectivity issues

Ability to obtain a security clearance

HS diploma or GED

Additional Qualifications:

Experience with Interactive Application Security Testing (IAST) capabilities and tools

Experience with HackerOne

Experience with Selenium

Experience writing bash scripts

Experience with OWASP ZAP or Burp Proxy