Polar IT is seeking an Application Security Engineer for Booz Allen Hamilton. The role focuses on supporting Static and Dynamic Application Security Testing and implementing enterprise-wide security controls to secure applications and systems.
Responsibilities:
- Supporting Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments using Veracode and Burp Suite
- Design and implementation of enterprise-wide security controls to secure applications, systems, network, or infrastructure services
- Securing enterprise web applications and knowledge of OWASP Top 10, CVSS, CWE, WASC, and SANS-25
- Knowledge of federal compliance standards, including NIST 800-53, FIPS, or FedRAMP
- Navigating and troubleshooting basic website connectivity issues in Linux or UNIX environments
Requirements:
- 6+ years of Information Technology experience
- 3+ years of experience with supporting Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments using Veracode and Burp Suite
- 2+ years of experience with Java, Python, .NET, or C#
- 3+ years of experience using the design and implementation of enterprise-wide security controls to secure applications, systems, network, or infrastructure services
- Experience with Eclipse, JDeveloper, including pipeline development, or Visual Studio
- Experience with securing enterprise web applications and OWASP Top 10, CVSS, CWE, WASC, and SANS-25
- Knowledge of federal compliance standards, including NIST 800-53, FIPS, or FedRAMP
- Knowledge of Linux or UNIX environments, including navigating and troubleshooting basic website connectivity issues
- HS diploma or GED
- Experience with Interactive Application Security Testing (IAST) capabilities and tools
- Experience with HackerOne
- Experience with Selenium
- Experience writing bash scripts
- Experience with OWASP ZAP or Burp Proxy