Web Developer Security Engineer

about 5 hours ago

Washington, DC, USASenior

Responsibilities

Identify, analyze, and remediate web application vulnerabilities and security weaknesses.
Support vulnerability management activities throughout the software development lifecycle.
Integrate security controls into web applications and APIs using secure-by-design principles.
Support implementation of secure communication protocols and data protection mechanisms.
Analyze web server and application logs to identify anomalies and indicators of compromise.
Support incident response activities related to web application security events.
Develop automation scripts to improve threat detection and compliance reporting.
Maintain documentation related to security findings and operational procedures.
Support compliance with federal cybersecurity frameworks.
Participate in audits, risk assessments, and security reviews.
Collaborate with teams to improve application security posture.
Support implementation of DevSecOps practices throughout CI/CD pipelines.

Bachelor’s degree in Computer Science, Cybersecurity, or related field.
Minimum of 5 years of experience in Application Security or related disciplines.
Experience supporting secure software development and vulnerability remediation.
Strong understanding of OWASP Top 10 and web application security best practices.
Experience with modern web technologies such as .NET, C#, HTML5, and JavaScript.
Experience performing log analysis and security monitoring.
Experience deploying and maintaining Web Application Firewalls (WAFs).
Familiarity with security testing tools like SIEM and IDS/IPS.
Ability to perform risk assessments and provide remediation recommendations.
Strong written and verbal communication skills.
Ability to work independently and collaboratively.
Ability to complete a government background investigation.
Current security certification(s) such as CSSLP, OSCP, or equivalent.