Application Security Engineer

Job not on LinkedIn

4 days ago

Apply Now

Receive Emails with Similar Jobs

VivSoft

WebsiteLinkedInAll Job Openings

Government • Artificial Intelligence • Enterprise

VivSoft is a federal-focused technology company that builds productized, mission-focused software and services to accelerate government efficiency. The firm combines Data/AI and human-machine teaming, cloud/DevSecOps and software factories, and digital experience (UI/UX) to deliver scalable, templated solutions for government customers. VivSoft supports government contracting vehicles (OTAs, CSOs, SBIR), partners with prime contractors, and moves prototypes into production to solve complex, repeating mission problems.

51 - 200 employees

Founded 2011

🏛️ Government

🤖 Artificial Intelligence

🏢 Enterprise

📋 Description

• Using GitHub Advanced security, review security findings of the organization. • Review, validate, and approve request to remediate security findings. • Review, validate, and approve request to dismiss security findings. • Collaborate with Federal POC and FDIC security team to create and implement application security processes and standards. • Identify gaps and design solutions to improve application security at the FDIC. • Provide guidance to FDIC developers in regard to remediating findings when needed.

🎯 Requirements

• Bachelor’s degree in Computer Science, Engineering, Information Technology, or related field, or equivalent professional experience. • Proficiency in at least one or two major enterprise languages (e.g., Java, .Net, C#, JavaScript) to effectively review code and understand development context. • Experience integrating security tools (SAST/DAST/SCA) into CI/CD pipelines to automate vulnerability scanning. • Proficient in conducting and interpreting results from SAST (Static Analysis Security Testing) DAST (Dynamic Analysis Security Testing) Manual Code Review for security flaws • Deep understanding of the OWASP Top 10 and other common application security attack vectors (e.g., injection, XSS, broken access control). • Knowledge of security considerations for large, complex enterprise architectures, which may include Cloud Security (AWS, Azure, or GCP), API security, and microservices.

🏖️ Benefits

• Comprehensive Medical, Dental, and Vision Plans (Healthcare benefits are 100% employer-paid for employees only) • Life Insurance • Paid Time Off (Flexible/Combined PTO, Bereavement Leave, 11 Company Paid Holidays) • 401K Retirement Plan with employer match • Professional Development Training Reimbursement