Senior Application Security Engineer

at Phia
๐Ÿ‡บ๐Ÿ‡ธ United States - Remote
๐Ÿ”’ Cybersecurity๐ŸŸฃ Senior

Job description

At phia we hire talented and passionate people who are focused on collaborative, meaningful work, providing technical and operational subject matter expertise and support services to our partners and clients.

phia is seeking a Senior Application Security Engineer withhands-on experience using Veracode and Burp Suite for application security testing and vulnerability management. The ideal applicant should be proficient in planning, coordinating, and conducting application security testing (SAST/DAST) utilizing static and dynamic analysis tools, interpreting scan results, and providing effective reporting and remediation guidance. This individual will work with a Federal client to maintain a resilient security posture for highly visible applications. With customer approval, this position allows you to work remotely from anywhere within the United States. U.S. citizenship and ability to obtain Public Trust approval is required.

What You’ll Do

  • Collaborate with the federal client and application teams to maintain a robust security posture for high-visibility applications.
  • Plan and conduct comprehensive application security assessments using dynamic and static testing methodologies (SAST/DAST).
  • Lead proactive security discussions with development teams to integrate best practices throughout the software development lifecycle.
  • Perform threat modeling and security requirements analysis.
  • Communicate and collaborate with developers and system owners as part of the CI/CD pipeline.
  • Execute in-depth application testing using industry-standard tools such as Burp Suite.
  • Implement and leverage the latest OWASP frameworks to enhance application security.
  • Develop and maintain security controls to protect applications, systems, and infrastructure services.
  • Provide expert guidance on remediating identified security flaws and vulnerabilities.
  • Stay current with evolving security threats and compliance standards to ensure continuous improvement of security measures.

Required: Education + Experience

  • Expert-level experience using Veracode and Burp Suite
  • 6+ years of Information Technology experience
  • 3+ years of experience with supporting Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments
  • 2+ years of experience with Java, Python, .NET, or C#
  • 3+ years of experience using the design and implementation of enterprise-wide security controls to secure applications, systems, network, or infrastructure services
  • Experience with Eclipse, JDeveloper, including pipeline development, or Visual Studio
  • Experience with securing enterprise web applications in accordance with established frameworks and priorities (OWASP Top 10, CVSS, CWE, WASC, and SANS-25)
  • Knowledge of Federal compliance standards, including NIST 800-53, FIPS, or FedRAMP
  • Knowledge of Linux or UNIX environments, including navigating and troubleshooting basic website connectivity issues
  • HS diploma or GED

Desired Skills and Experience

  • Bachelor’s degree in Computer Science, Information Technology, Information Security, or a related field
  • Experience with Interactive Application Security Testing (IAST) tools and methodologies
  • Experience with HackerOne
  • Experience with Selenium
  • Skill in writing bash scripts for automation
  • Hands-on experience with OWASP ZAP or Burp Proxy
  • Certifications in application security or related fields (e.g., CSSLP, OSCP, GWAPT)

Security Clearance

  • U.S. Citizenship required
  • Applicants selected will be subject to a security investigation; Public Trust determination is required

If you thrive on complex problem-solving, enjoy providing innovative solutions, and want to have a meaningful impact on national security, let’s explore the possibility of working for phia!

#LI-LC1

Who You Are

A proactive problem solver that appreciates the challenges of working in a fast-paced, dynamic environment.

Intellectually curious with a genuine desire to learn and advance your career.

An effective communicator, both verbally and in writing.

Customer service-oriented and mission-focused.

Critical thinker with excellent problem-solving skills

If your experience and qualifications arenโ€™t a match for this position, you will remain in our database for consideration for future opportunities that may be a better fit.

Who We Are

phia, LLC is a Northern Virginia-based, small business established in 2011 with a focus on Cyber Intelligence, Cyber Security/Defense, Intrusion Analysis & Incident Response, Cyber Architecture & Capability Analysis, Cyber Policy & Strategy, and Information Assurance/Security. we proudly support various agencies and offices within the Department of Defense (DoD), Federal government, and private/commercial entities.

phia values work-life balance and offers the following benefits to full-time employees:

Comprehensive medical insurance to include dental and vision

Short Term & Long-Term Disability

401k Retirement Savings Plan with Company Match

Tuition and Professional Development Assistanceย Flex Spending Accounts (FSA)

phia does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity, or any other reason prohibited by law in the provision of employment opportunities and benefits.

Please be aware job applicants have rights under federal employment laws. You can find more information about The Family Medical Leave Act (FMLA), Know Your Rights (EEO), and Employee Polygraph Protection Act (EPPA) on The U.S. Department of Labor (DOL)โ€™s website HERE. Frequently Asked Questions - United States Department of Labor

Share this job:
Please let Phia know you found this job on Remote First Jobs ๐Ÿ™

Similar Remote Jobs

Phia logo

Phia

Cyber, Intelligence, Technology

  • 11-50 employees
  • Founded in 2011
  • 1 remote job
View all jobs

Latest Jobs at Phia

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service ๐Ÿ™

Apply