Application Security Engineer
Clearance Required: Public Trust
Location: Remote, USA
Position Type: Full-Time About the company:
At VivSoft, we aim to solve complex federal problems using emerging and open technologies in a collaborative and rewarding environment. VivSoft is a diverse team of strategists, engineers, designers, and creators experienced in building high performance effective softwares, with impactful organizational design and organizational dynamics for software delivery. We build secure Software Factories based on DoD reference designs and NIST Frameworks for Cloud and DevSecOps. These factories deliver AI/ML Applications, Data Science Platforms, Blockchain and Microservices for DoD, Healthcare and Civilian Agencies Job Summary:
We are seeking an Application Security Engineer to support the modernization of a large-scale enterprise software development platform. This role focuses on securing CI/CD pipelines, enforcing DevSecOps best practices, and implementing automated security testing throughout the SDLC. The engineer will work closely with development and platform engineering teams to embed security into reusable templates, GitHub Actions, and deployment workflows, ensuring applications are built and deployed securely across environments. Key Responsibilities:
- Using GitHub Advanced security, review security findings of the organization.
- Review, validate, and approve request to remediate security findings.
- Review, validate, and approve request to dismiss security findings.
- Collaborate with Federal POC and FDIC security team to create and implement application security processes and standards.
- Identify gaps and design solutions to improve application security at the FDIC.
- Provide guidance to FDIC developers in regard to remediating findings when needed.
- Bachelor’s degree in Computer Science, Engineering, Information Technology, or related field, or equivalent professional experience.
- Proficiency in at least one or two major enterprise languages (e.g., Java, .Net, C#, JavaScript) to effectively review code and understand development context.
- Experience integrating security tools (SAST/DAST/SCA) into CI/CD pipelines to automate vulnerability scanning.
- Proficient in conducting and interpreting results from
- SAST (Static Analysis Security Testing)
- DAST (Dynamic Analysis Security Testing)
- Manual Code Review for security flaws
- Deep understanding of the OWASP Top 10 and other common application security attack vectors (e.g., injection, XSS, broken access control).
- Knowledge of security considerations for large, complex enterprise architectures, which may include Cloud Security (AWS, Azure, or GCP), API security, and microservices.
- Comprehensive Medical, Dental, and Vision Plans (Healthcare benefits are 100% employer-paid for employees only)
- Life Insurance
- Paid Time Off (Flexible/Combined PTO, Bereavement Leave, 11 Company Paid Holidays)
- 401K Retirement Plan with employer match
- Professional Development Training Reimbursement
Recommended Jobs
Explore Leesburg: Advance Your Nursing Career in Style!
Registered Nurse - Perioperative Nurse - Operating Room - Travel - (OR RN) Explore the charming town of Leesburg as a travel OR Nurse, specializing in perioperative care! Picture yourself in a state-…
Infrastructure Technology Consultant
The Prospective Group (TPG) is seeking an Infrastructure Technology Consultant (Architect) whose role within the Department of State's Information Resource Management (IRM) Systems Inte…
Senior Cyber Security Engineer
Clarity Innovations is a trusted national security partner, dedicated to safeguarding our nation’s interests and delivering innovative solutions that empower the Intelligence Community (IC) and Depar…
MGR ENGINEERING 2
Req ID: 43023 Team: E37 WELDING AND NDT ENGINEERING Entity: Newport News Shipbuilding US Citizenship Required for this Position: Yes Full-Time Shift: 1st Relocation: No relocation ass…
Senior Electrical Engineer
Where do people love what they do, and being great at what they do? At Swisslog, that’s where! Our teams are the heart of a world-leading Robotics company that’s harnessing the power of technology …
Network Engineer, Journeyman TS/SCI Clearance Required
cFocus Software seeks a Network Engineer, Journeyman to join our program supporting the US Navy. This position is on site in Suffolk, VA. This position requires a TS/SCI clearance. Qualifications: …
Electro-Mechanical Technician
Description Electro-Mechanical Technician Liquid Robotics is currently seeking a skilled Electro-Mechanical Technician. Reporting to the Manufacturing Manager, this position entails handling, clea…
Patient Services Supervisor - Chesapeake General Hospital
Job Description Patient Services Supervisors are responsible for a variety of specialized duties related to the receipt, interpretation, and follow-through of patient diet orders in hospital an…
Server / Wait Staff
Join the Waffle House Family – Now Hiring Servers! At Waffle House, we're not just in the food business—we're in the people business! We're looking for full-time and part-time servers to join our …
Behavior Technician (BT) - Training Provided
Behavior Technician (Training Provided) | Richmond, VA Clinic-Based | Full-Time & Part-Time Opportunities Start Your Career in ABA. Make a Lasting Impact. At the Autism Center of Exce…