Application Security Engineer
Clearance Required: Public Trust
Location: Remote, USA
Position Type: Full-Time About the company:
At VivSoft, we aim to solve complex federal problems using emerging and open technologies in a collaborative and rewarding environment. VivSoft is a diverse team of strategists, engineers, designers, and creators experienced in building high performance effective softwares, with impactful organizational design and organizational dynamics for software delivery. We build secure Software Factories based on DoD reference designs and NIST Frameworks for Cloud and DevSecOps. These factories deliver AI/ML Applications, Data Science Platforms, Blockchain and Microservices for DoD, Healthcare and Civilian Agencies Job Summary:
We are seeking an Application Security Engineer to support the modernization of a large-scale enterprise software development platform. This role focuses on securing CI/CD pipelines, enforcing DevSecOps best practices, and implementing automated security testing throughout the SDLC. The engineer will work closely with development and platform engineering teams to embed security into reusable templates, GitHub Actions, and deployment workflows, ensuring applications are built and deployed securely across environments. Key Responsibilities:
- Using GitHub Advanced security, review security findings of the organization.
- Review, validate, and approve request to remediate security findings.
- Review, validate, and approve request to dismiss security findings.
- Collaborate with Federal POC and FDIC security team to create and implement application security processes and standards.
- Identify gaps and design solutions to improve application security at the FDIC.
- Provide guidance to FDIC developers in regard to remediating findings when needed.
- Bachelor’s degree in Computer Science, Engineering, Information Technology, or related field, or equivalent professional experience.
- Proficiency in at least one or two major enterprise languages (e.g., Java, .Net, C#, JavaScript) to effectively review code and understand development context.
- Experience integrating security tools (SAST/DAST/SCA) into CI/CD pipelines to automate vulnerability scanning.
- Proficient in conducting and interpreting results from
- SAST (Static Analysis Security Testing)
- DAST (Dynamic Analysis Security Testing)
- Manual Code Review for security flaws
- Deep understanding of the OWASP Top 10 and other common application security attack vectors (e.g., injection, XSS, broken access control).
- Knowledge of security considerations for large, complex enterprise architectures, which may include Cloud Security (AWS, Azure, or GCP), API security, and microservices.
- Comprehensive Medical, Dental, and Vision Plans (Healthcare benefits are 100% employer-paid for employees only)
- Life Insurance
- Paid Time Off (Flexible/Combined PTO, Bereavement Leave, 11 Company Paid Holidays)
- 401K Retirement Plan with employer match
- Professional Development Training Reimbursement
Recommended Jobs
NCIS SQL Database Administrator | Active TS clearance
Public Trust: None Requisition Type: Regular Your Impact Own your opportunity to work with the largest government agency in the nation. Make an impact by advancing the Department of Defens…
Security Officer - Armed Part Time
Security Officer - Armed Part Time at Allied Universal summary: Part-time armed security officer position at a financial institution in Richmond, VA responsible for armed foot patrols, access cont…
Sales Associate
Spieldenner Financial Group is seeking independent, motivated, career-minded individuals to join our Mortgage Protection team. Our team members help American families protect their largest asset: th…
CDL A Truck Driver (Roanoke)
Hiring CDL-A Truck Drivers BIG EARNING POWER — Top drivers net up to $130K per year FREEDOM TO GROW — Company & 1099 positions, multiple trailer & freight options ROLL RIGHT. REST RIGHT. …
FPGA Design Engineer (Active Secret Clearance required)
Location: Reston VA and Camden NJ, fully onsite (No relocation assistance) Number of openings: 2-4 Benefits: None/Contract Start Date: 2 weeks after offer Clearance Level: Activ…
EMT or Paramedic - PRN
Medcor is looking to hire an EMT or Paramedic on a PRN basis (as-needed) to be an Onsite Health Technician at our construction site clinic in Leesburg, VA. The hours for this position are Monday - Sa…
Full Stack Software Engineer - Top-Secret with SCI eligibility
Program Overview About The Role Peraton is seeking a highly skilled Full Stack Software Engineer to support our Federal Strategic Cyber program. This role offers a dynamic hybrid work envir…
Specialty Representative, Psychiatry - Virginia Beach, VA
Company Description AbbVie's mission is to discover and deliver innovative medicines and solutions that solve serious health issues today and address the medical challenges of tomorrow. We striv…
License Practical Nurse
Compassionate & Committed LPNs Wanted! Guggenheimer Health & Rehab Center | Lynchburg, VA Full-Time | Part-Time | Per Diem Shifts Available: 7:00 am-7:00 pm, 7:00 pm-7:00 am Rate of pay: $…
Shipbuilding Project/Task Supervisor
Responsibilities for this Position Location: USA VA Norfolk Full Part/Time: Full time Job Req: RQ213341 Type of Requisition: Regular Clearance Level Must Currently Possess: Non…