Application Security Engineer

Overview We are seeking a dynamic and highly skilled Application Security Engineer to join our cybersecurity team. In this vital role, you will champion the security of our software applications and infrastructure, ensuring robust protection against evolving cyber threats. Your expertise will help shape our security posture by implementing best practices aligned with industry standards such as

NIST, ISO 27000

series, and FedRAMP. If you thrive in a fast-paced environment and are passionate about safeguarding digital assets, this opportunity is perfect for you to make a significant impact. Duties Conduct comprehensive vulnerability assessments and penetration testing on web applications and network infrastructure to identify weaknesses before malicious actors do. Develop, implement, and maintain application security policies, standards, and procedures in accordance with NIST standards and ISO guidelines. Collaborate with development teams to integrate security into the Software Development Life Cycle (SDLC), including secure coding practices and system hardening techniques. Manage and configure security tools such as SIEM (Security Information and Event Management) systems, IDS (Intrusion Detection Systems), firewalls (Cisco ASA), VPNs, and network monitoring solutions like SolarWinds or Splunk for real-time threat detection. Perform threat detection & response activities by analyzing logs, network traffic, and system alerts to identify potential security incidents promptly. Lead incident response efforts related to application or network breaches, coordinating recovery actions while documenting lessons learned for continuous improvement. Maintain comprehensive system security plans, including system hardening procedures for operating systems like Debian, CentOS, Ubuntu, macOS, Windows, and openSUSE environments. Requirements Proven experience with computer networking concepts such as LAN/WAN architecture, routing protocols (OSPF, BGP), IPsec VPNs, DHCP, DNS, TCP/IP stack, and network protocols. Strong knowledge of cybersecurity frameworks including NIST standards, ISO 27000 series (ISO <

LOCATION

>), FISMA compliance, FedRAMP requirements, and DIACAP. Hands-on experience with network security devices such as Cisco routers/switches, Juniper equipment, Cisco ISE for identity & access management, Palo Alto or Cisco ASA firewalls. Expertise in vulnerability management tools and techniques including vulnerability research & assessment tools like Nessus or openVAS; familiarity with threat intelligence platforms is a plus. Proficiency in scripting languages such as Python or Bash for automation of security tasks; experience with DevOps tools like Ansible or Terraform is advantageous. Knowledge of cloud computing platforms including AWS (Amazon Web Services), Google Cloud Platform, Azure; understanding of cloud architecture best practices for security is essential. Familiarity with encryption protocols (SSL/TLS), PKI (Public Key Infrastructure), LDAP/Active Directory integration for SSO (Single Sign-On) solutions. Ability to analyze logs using tools like Splunk or New Relic; experience with incident management processes aligned with ITIL standards. Strong understanding of system administration across various operating systems including Windows Server environments, Linux distributions (CentOS, Debian), macOS systems. Excellent problem-solving skills combined with effective communication abilities to articulate complex security issues clearly to technical teams and stakeholders alike. Join us to help build resilient systems that protect critical data assets! Your expertise will be instrumental in advancing our cybersecurity initiatives while working within a collaborative team committed to innovation and excellence in information security.

Benefits:

Health insurance

Work Location:

In person