ArlingtonVARecruiter Since 2001
the smart solution for Arlington jobs

Lead Application Security Engineer - FULLY REMOTE - FULLY REMOTE

Company: Optomi
Location: Arlington
Posted on: January 12, 2022

Job Description:

Optomi, in partnership with a non-profit trade organization is seeing a Lead Application Security Engineer. In this role you will be responsible for collaborating with various application development teams, project managers and DevOps team members to improve the security of applications across the SDLC. The Engineer will require a thorough knowledge of Agile SDLC methodologies and DevSecOps practices. The candidate shall have strong secure application development, testing and automation experience. The Engineer will review the results of static code security tests, validate the results of the vulnerability findings and provide guidance on remediation efforts.
Apply today if your background includes: - 5 years of application security experience. - 5 years of software development experience and/or full-stack engineering. - 5 years remediating OWASP top 10 security vulnerabilities - Proficiencies with popular programming languages .NET, C++, C# and JavaScript. - Strong familiarity with OWASP Top 10 web vulnerabilities and how to engineer software to avoid them - Knowledge of and experience working in an Agile SDLC model - Experience working with Application Security Tools, preferably Checkmarx, Burp and IBM Appscan. - Experience integrating SAST capabilities into a CI/CD pipeline. - Experience with scripting languages (PowerShell, Python, Ruby, Perl, etc.) - An advanced understanding of varying application development architectures, platforms and methodologies. - Demonstrated ability to develop strategies and lead large and complex endeavors. - Ability to stay current with evolving technologies and effectively educate leadership on trends and opportunities - Strong proficiency in active listening and the ability to learn quickly - Robust expertise and experience with cloud and container platforms. - One or more of the following or similar certifications: GPEN, GWAPT, GWeb, OSCP, CASS, CISSP, eCPPT, Amazon AWS or Azure Specialty certifications.
Responsibilities: - Serve as a subject matter expert for security in application projects. - Perform functional requirement review, design review and influence best practices are followed during the SDLC. - Manage SAST and DAST scans and conduct vulnerability review with the development team. - Assist the Application Security team in developing, maintaining and executing the application security program. - Develop and maintain integration between application security products, bug trackers and CI/CD tools. - Develops reportable observations, findings and recommendations to relay to application developers and IT leadership. - Manage the lifecycle of vulnerabilities discovered during application security scans. - Participate in Red Team activities and Internal Penetration Testing. - Strong communication skills, with the ability to explain the technical details of OWASP Top 10 and other vulnerabilities from C-levels to developers in a large professional environment.

Keywords: Optomi, Arlington , Lead Application Security Engineer - FULLY REMOTE - FULLY REMOTE, Engineering , Arlington, Virginia

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Log In or Create An Account

Get the latest Virginia jobs by following @recnetVA on Twitter!

Arlington RSS job feeds