Application Security Engineer - Veracode SME - Remote

Overview

phia is seeking an Application Security Engineer with hands-on experience using Veracode for application security testing and vulnerability management, working with federal clients to maintain a resilient security posture for highly visible applications.

In Short

• Collaborate with federal clients and application teams.
• Lead security discussions with development teams.
• Conduct application security assessments.
• Perform threat modeling and security requirements analysis.
• Execute application penetration testing.
• Implement OWASP frameworks.
• Develop and maintain security controls.
• Provide guidance on remediating security flaws.
• Stay current with security threats and compliance standards.

Requirements

• Veracode experience is a must.
• 6+ years of IT experience.
• 3+ years with SAST, DAST, and IDE Plug-in environments using Veracode.
• 2+ years with Java, Python, .NET, or C#.
• 3+ years with Burp Suite.
• Experience with enterprise-wide security controls.
• Knowledge of federal compliance standards.
• Ability to obtain a security clearance.
• HS diploma or GED required.
• U.S. citizenship required.

Benefits

• Remote work opportunity.
• Collaborative work environment.
• Opportunity to work with federal clients.
• Continuous learning and improvement in security measures.