JOBSEARCHER

Web Developer Security Engineer

ARCHIVED

We can't find an active application page for this role right now. It may reopen or be listed elsewhere. Use Next Steps to search for an active apply link and similar live jobs.

Job Title: Web Developer Security EngineerLocation: Washington, D.C. Metro (Hybrid/Remote)Department | Reports To: Federal Programs | Cybersecurity & Application SecurityAbout Prestige Development Group (PDG)Prestige Development Group (PDG) specializes in providing innovative human capital management solutions tailored to meet the needs of both private and public sector organizations. We are a certified SBA HUBZone and Economically Disadvantaged Woman-Owned Small Business dedicated to fostering diversity, inclusion, and operational excellence.Position SummaryThe Web Developer Security Engineer is responsible for securing mission-critical web applications, APIs, and cloud-based environments supporting federal programs. This role integrates security throughout the software development lifecycle by identifying and remediating vulnerabilities, implementing secure coding practices, supporting compliance initiatives, and strengthening application security posture. The position works closely with development, cybersecurity, infrastructure, and operations teams to ensure applications remain resilient against evolving cyber threats while meeting federal security requirements.Key ResponsibilitiesIdentify, analyze, and remediate web application vulnerabilities, insecure dependencies, misconfigurations, and security weaknesses.Support vulnerability management activities including threat modeling, security assessments, remediation validation, and risk reduction efforts.Integrate security controls into web applications, APIs, and supporting services using secure-by-design principles.Implement secure communication protocols, encryption mechanisms, and application security controls.Analyze web server and application logs to identify anomalies, threats, and indicators of compromise.Support incident response investigations involving web application security events.Develop automation scripts and processes to improve threat detection, security monitoring, and compliance reporting.Maintain documentation related to vulnerabilities, remediation activities, security controls, and operational procedures.Support compliance initiatives aligned with NIST SP 800-53, FISMA, FedRAMP, and related federal cybersecurity frameworks.Participate in audits, risk assessments, security reviews, and authorization activities.Collaborate with development, infrastructure, cybersecurity, and operations teams to improve application security posture.Support implementation of DevSecOps practices and automated security controls throughout CI/CD pipelines.Contribute to continuous improvement efforts focused on application security and secure software delivery.QualificationsRequired:Bachelor's degree in Computer Science, Cybersecurity, Information Systems, Engineering, or related field.5+ years of experience in Application Security, Web Application Security, Secure Software Development, DevSecOps, or related disciplines.Experience supporting secure software development and vulnerability remediation efforts.Strong understanding of OWASP Top 10, secure coding standards, and web application security best practices.Experience developing or supporting applications utilizing technologies such as .NET, C#, HTML5, CSS3, JavaScript, REST APIs, and SQL.Experience performing log analysis, security monitoring, and investigation of application security events.Experience deploying, configuring, and maintaining Web Application Firewalls (WAFs).Experience supporting File Integrity Monitoring (FIM) solutions and security monitoring technologies.Familiarity with SIEM, IDS/IPS, EDR, NDR, and other cybersecurity monitoring platforms.Experience implementing DevSecOps principles and integrating security controls into CI/CD pipelines.Ability to conduct risk assessments, analyze cyber threats, and develop remediation recommendations.Strong written and verbal communication skills.Ability to work independently and collaboratively across multidisciplinary teams.Ability to successfully complete and maintain a government background investigation.Current security certification such as CSSLP, GWEB, CASE, OSWE, OSCP, Security+, GSEC, or equivalent.PreferredExperience supporting federal government environments.Experience supporting NIST SP 800-53, FISMA, FedRAMP, and security authorization activities.Experience with threat modeling, security architecture reviews, and secure application design.Experience implementing advanced DevSecOps practices and automated security controls.Experience with AWS cloud security and container security technologies, including Docker and Kubernetes.Experience leveraging AI-assisted development tools to support security monitoring, automation, and compliance activities.Experience developing security metrics, audit reporting, and compliance documentation.Compensation & BenefitsCompensation will be determined based on experience, qualifications, and location. Benefits may include medical, dental, and vision insurance; paid time off; paid holidays; retirement savings options; and professional development opportunities.Equal Employment Opportunity (EEO) StatementThe company is an equal opportunity employer committed to creating an inclusive environment for all employees. We prohibit discrimination and harassment of any kind based on race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, disability, genetic information, or any other protected characteristic as outlined by federal, state, or local laws.Americans With Disabilities Act (ADA) StatementThe company is committed to providing reasonable accommodations for individuals with disabilities during the job application and hiring process.Background Check PolicyEmployment is contingent upon the successful completion of a background check and any role-specific verification required.How To ApplyInterested candidates are encouraged to submit their resume and cover letter through the company's application process. Applications will be reviewed on a rolling basis until the position is filled.