Application Security Engineer

Job not on LinkedIn

🕒 May 5

🏛️ District of Columbia, Washington – Remote

🏛️ District of Columbia – Remote ☕ Washington – Remote

⏰ Full Time

🟡 Mid-level

🟠 Senior

💻 Application Engineer

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

MBL Technologies Inc.

WebsiteLinkedInAll Job Openings

11 - 50 employees

MBL Technologies Inc. is a Service-Disabled Veteran-Owned Small Business (SDVOSB) that specializes in Digital Solutions, Risk Management, Compliance and Advisory, and Management Consulting. As a small business, MBL’s growth comes directly from our deep understanding of business, project, and information security industries; experienced and dedicated staff; and MBL’s investment in its employees. The MBL environment is expressly designed to inspire all employees to put forth their best. MBL leadership and staff continuously recognize individual successes, milestones, and contributions, and make a point to celebrate these achievements together. MBL maintains an active calendar of company and community-based events to strengthen our unity, skills and expertise, and continue the unique MBL work-life-fun balance that makes MBL a great organization to be a part of and place to work.

📋 Description

• Perform DAST scanning using Burp Suite Enterprise, including configuration, execution, and analysis of scan results. • Conduct SAST assessments using Veracode, identifying code-level vulnerabilities and recommending remediation strategies. • Analyze and prioritize vulnerabilities based on risk, leveraging frameworks such as CVSS, CWE, OWASP Top 10, WASC, and SANS-25. • Collaborate with development, DevOps, and security teams to integrate security into the SDLC and CI/CD pipelines. • Provide guidance on secure coding practices and assist developers with vulnerability remediation. • Support the implementation and maintenance of IDE security plug-ins and secure development tools. • Troubleshoot application and connectivity issues within Linux-based environments. • Contribute to the design and implementation of enterprise-wide application security controls. • Ensure alignment with federal compliance standards, including NIST 800-53, FIPS, and FedRAMP. • Stay current with emerging threats, vulnerabilities, and application security best practices.

🎯 Requirements

• 6+ years of overall Information Technology experience • 3+ years of experience supporting SAST, DAST, and IDE plug-in environments using Burp Suite (with emphasis on Burp Suite Enterprise for DAST) • Experience supporting SAST/DAST environments using Veracode • 3+ years of development experience with Java, Python, .NET, or C# • 3+ years of experience designing and implementing enterprise-wide security controls for applications and systems • Experience with development environments such as Eclipse, JDeveloper, or Visual Studio, including pipeline integration • Strong understanding of application security principles and vulnerability frameworks (OWASP Top 10, CVSS, CWE, WASC, SANS-25) • Knowledge of federal security and compliance standards (NIST 800-53, FIPS, FedRAMP) • 3+ years of experience working in Linux-based environments, including troubleshooting application and connectivity issues • Ability to obtain a security clearance • Bachelor’s degree in Information Technology, Computer Science, or a related field.

🏖️ Benefits

• medical, dental, vision, STD, Accident, Life, Hospital Insurance, FSA, HSA, 401K match, professional development stipend • Community Service and Employee Engagement events are atop our calendar events!