Application Cyber Security Engineer
Role details
Job location
Tech stack
Requirements
Our direct client is seeking a mid-level, SW application focused, Cyber Security Engineer who has strong AWS Cloud Vulnerability Management and application testing experience leveraging one or more of the following tools - Checkmarx, Contrast Security, TideLift, Burp Suite, OWASP Dependency Check, or Fortinet - within a Java / AWS Cloud Environment.
Location: Hybrid, onsite in Reston VA every month (1x) F2F final interview in REston VA. is required. Plus monthly visits
This 6 month+ contract position is Hybrid (onsite 1x per month in Reston VA) and requires an final onsite/F2F interview in Reston VA as well.
Hands-on experience with application security, software development, secure SDLC, DevSecOps practices, CI/CD automation. Experience with one or more programming or scripting languages such as Java, JavaScript, Python with focus on secure coding practices and vulnerability management. Deep understanding of operating systems (Linux/Windows), networking protocols, and scripting /programming languages like python. Experience with container security, Kubernetes, Helm, Docker, and cloud native workload protection. Familiarity with application security testing tools such as Checkmarx, Contrast Security, TideLift, Burp Suite, OWASP Dependency Check, Fortinet or similar platforms. Experience with vulnerability identification, triage, remediation validation, and risk-based prioritization. Experience working with CI/CD and source code management platforms such as Bitbucket, GitLab, GitHub, Jenkins, or similar tools. Experience supporting security automation, metrics reporting, and vulnerability management integrations with tools such as Jira, ServiceNow, or risk management platforms Hands-on experience securing cloud environments, preferably AWS. Professional certifications such as the Offensive Security Certified professional (OSCP) or Certified Ethical Hacker (CEH) preferred.