Cybersecurity (Application Security) Engineer
ARCHIVED
We can't find an active application page for this role right now. It may reopen or be listed elsewhere. Use Next Steps to search for an active apply link and similar live jobs.
----------ONLY W2---------------------ONLY W2-----------------ONLY W2-----------------Title: Cybersecurity (Application Security) EngineerLocation: Reston, VA 20191 Duration: 6 Months Contract Job Description:Terms of EmploymentPosition Type: W2 Contract, 6 monthsLocation: Hybrid (Based out of Reston, VA; regular remote flexibility with occasional monthly/quarterly on-site visits and mandatory on-site final interview)Candidate must reside in DMV areaOverviewWork with a leading firm in the financial and enterprise services industry dedicated to keeping critical infrastructure robust and secure. We are seeking talented Mid-Level Cybersecurity Engineer—to join an elite Application Security team. In this role, you will act as a foundational pillar in embedding advanced security protocols directly into the software development lifecycle, driving cloud migration initiatives, and mitigating software vulnerabilities before deployment.Key ResponsibilitiesDrive the application security program by successfully embedding security gates, automated testing, and compliance frameworks straight into the active SDLC and CI/CD pipelines using Jenkins.Evaluate, manage, and remediate application and software vulnerabilities across various codebases and cloud-native application environments.Partner directly with software development teams to discuss vulnerability findings, explain complex security risks, track SLAs, and ensure proper remediation.Execute deep-dive technical security assessments utilizing static, dynamic, interactive, and software composition testing tools.Perform dynamic application security testing (DAST) and simulate tactical offensive hacking techniques to uncover hidden security flaws within client systems.Required QualificationsProven professional background in software development with strong expertise in Java technologies and a comprehensive understanding of the SDLC.Hands-on experience with application security, software development, secure SDLC, DevSecOps practices, CI/CD automation.Familiarity with application security testing tools such as Checkmarx, Contrast Security, TideLift, Burp Suite, OWASP Dependency Check, Fortinet or similar platforms.Experience working with CI/CD and source code management platforms such as Bitbucket, GitLab, GitHub, Jenkins, or similar tools.Hands-on experience securing AWS cloud environments, including container security (EKS), IAM, EC2, S3, and Lambda functions.Proven experience in vulnerability management and tactical web application testing using Burp Suite.Strong communication and relationship-building skills to successfully interact, present, and collaborate with engineering groups.Must be locally available or willing to travel to the Reston, VA office for a mandatory in-person final-round interview.Preferred QualificationsActive professional cybersecurity or cloud certifications such as CISSP, CISM, or AWS Certified Security Specialty (highly preferred).Recognized certifications in offensive security or penetration testing, such as Certified Ethical Hacker (CEH) (highly preferred).Sincerely,Preetam RajLead Technical RecruiternTech Workforce Inc.D: 410-505-4857 EXT: 726E: preetam@ntechworkforce.compreetam(at)ntechworkforce(dot)com