Security Engineer - Software 3

Eliassen Group
Tysons, United States of America
17 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
$ 166K

Job location

Tysons, United States of America

Tech stack

Java
JavaScript
Amazon Web Services (AWS)
Software System Penetration Testing
User Authentication
Burp Suite
Static Program Analysis
Computer Security
Computer Engineering
Continuous Integration
Python
Network Security
Open Web Application Security
Software Engineering
Software Security
Generative AI
Gitlab
GWAPT
Information Technology
Devsecops
Jenkins
Static Application Security Testing
Programming Languages
Dynamic Application Security Testing

Job description

  • Perform application security assessments and manual penetration testing using tools such as Burp Suite and proxy tools.
  • Triage SAST, DAST, and IAST results to identify, prioritize, and support remediation of vulnerabilities.
  • Integrate security practices into CI/CD pipelines to support DevSecOps initiatives.
  • Maintain documentation of findings, remediation plans, and compliance requirements.
  • Develop and interpret security policies and procedures and participate in compliance efforts.
  • Develop and deliver security awareness and technology training.
  • Evaluate and recommend new and emerging security products and technologies.
  • Leverage GenAI technologies to scale reviews and automate code analysis.
  • Evaluate security tooling and capabilities including SAST, DAST, IaC, and secrets detection tools.
  • Stay current with emerging threats and countermeasures.
  • Train and explain common security issues to raise awareness among developers and assurance engineers.
  • Perform AWS configuration reviews.

Requirements

  • 5+ years of experience in cybersecurity and application security.
  • Familiarity with SAST, DAST, and IAST tools.
  • Understanding of AWS.
  • Deep understanding of OWASP Top issues and remediation guidelines.
  • Proficiency in one or more programming languages, preferably Java, Python, or JavaScript.
  • Understanding of CI/CD tools such as Jenkins and GitLab.
  • Familiarity with GenAI tools is a plus.
  • Strong technical knowledge across security engineering, system and network security, authentication and security protocols, cryptography, and application security.
  • Software development background is a plus.
  • Experience implementing security solutions consistently.
  • Experience with infrastructure or application-level vulnerability testing and auditing.
  • Certifications such as GWAPT, OSWE, or Burp Suite Certified Practitioner are beneficial.

Education Requirements: Bachelor's degree in computer science, computer engineering, or a related field.

Benefits & conditions

We can facilitate w2 and corp-to-corp consultants. For our w2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance.

Rate: $70.00 to $80.00/hr. w2, Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range.

W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), dental, vision, pre-tax accounts, other voluntary benefits including life and disability insurance, 401(k) with match, and sick time if required by law in the worked-in state/locality. If anyone reaches out to you about an open position connected with Eliassen Group, please ensure that you are working directly with us by confirming the following:

When you work with Eliassen Group, all email communication will come from an Eliassen.com address, never Gmail, Yahoo, etc.

About the company

Eliassen Group is a strategic consulting firm that helps organizations reach further and achieve more through our technology, business advisory, and life sciences solutions. For nearly 40 years, we have combined exceptional people, deep domain expertise, and intelligent capabilities to expand our clients' capacity and accelerate meaningful outcomes. We are driven by a purpose to positively impact the lives of our employees, clients, consultants, and the communities we serve.

Apply for this position