Web Developer Security Engineer
Microtech
Web Developer Security Engineer
The Web Developer Security Engineer is responsible for securing mission-critical web applications, APIs, and supporting cloud services by integrating security throughout the Software Development Lifecycle (SDLC). This position provides application security engineering, vulnerability management, security monitoring, DevSecOps integration, compliance support, and incident response capabilities to ensure applications are resilient against evolving cyber threats. The Web Developer Security Engineer serves as a technical advisor to development teams, helping design, implement, and validate secure web application architectures while supporting federal cybersecurity compliance requirements.
Responsibilities
Application Security Engineering
- Identify, assess, and remediate web application vulnerabilities, insecure dependencies, configuration weaknesses, and application logic flaws.
- Support the implementation of secure coding practices, application security controls, encryption standards, authentication mechanisms, and secure API integrations.
- Evaluate and recommend security controls for web applications, APIs, mobile-enabled applications, and supporting services.
- Ensure applications align with OWASP Top 10 guidance, secure coding standards, and industry best practices.
DevSecOps, Monitoring & Incident Response
- Integrate security controls into CI/CD pipelines and support automated security testing throughout the software development lifecycle.
- Develop and maintain automation scripts to support security monitoring, threat intelligence integration, compliance validation, and vulnerability management activities.
- Configure and maintain Web Application Firewalls (WAFs), File Integrity Monitoring (FIM) solutions, and other security monitoring capabilities.
- Support incident response activities by investigating security alerts, validating findings, documenting remediation efforts, and recommending security improvements.
- Provide Tier II security engineering support for complex application security issues and escalations.
Compliance, Governance & Security Operations
- Support compliance with federal cybersecurity frameworks, including NIST SP 800-53, FISMA, and FedRAMP requirements.
- Participate in audits, security assessments, authorization activities, and risk management processes.
- Develop security metrics, compliance reporting, and documentation supporting audit readiness and governance requirements.
- Conduct risk assessments and provide remediation guidance for web applications and supporting infrastructure.
- Collaborate with developers, infrastructure teams, cybersecurity personnel, and stakeholders to improve application security posture and operational resilience.
Qualifications
- Bachelor's degree in Computer Science, Cybersecurity, Information Systems, Engineering, or a related field.
- Minimum three (3) years of experience in Web Application Security, Application Security Engineering (AppSec), or Secure Software Development Lifecycle (SSDLC) activities.
- Experience with secure software development, DevSecOps automation, vulnerability remediation, and application security testing.
- Proficiency with modern web development technologies including.NET (C# MVC, WCF), HTML5, CSS3, JavaScript, REST APIs, and SQL.
- Experience with scripting and automation using Python, JavaScript/Node.js, TypeScript, Java, React.js, or similar technologies.
- Experience configuring and managing Web Application Firewalls (WAF), File Integrity Monitoring (FIM), and security monitoring solutions.
- Familiarity with security tools such as SIEM, IDS/IPS, EDR, NDR, Wireshark, and vulnerability assessment platforms.
- Strong understanding of OWASP Top 10, secure coding standards, threat modeling, risk assessment, and vulnerability management.
- Strong analytical, troubleshooting, communication, and documentation skills.
Preferred Qualifications
- Experience supporting federal cybersecurity authorization and compliance processes.
- Experience with NIST SP 800-53, FISMA, FedRAMP, and risk management frameworks.
- Experience implementing advanced DevSecOps practices and CI/CD security automation.
- Knowledge of AWS cloud security, container security, Docker, and Kubernetes.
- Experience designing resilient security architectures and conducting threat modeling exercises.
Preferred Certifications
Candidate must have all of the following:
- CSSLP (Certified Secure Software Lifecycle Professional)
- GWEB (GIAC Web Application Defender)
- CASE (Certified Application Security Engineer)
- OSWE (Offensive Security Web Expert)
- OSCP (Offensive Security Certified Professional)
- Security+
- GSEC
Security Requirements
- Ability to meet all government personnel security and access requirements associated with the program.
General Information
MicroTech is an award-winning Service-Disabled Veteran-Owned Small Business (SDVOSB) and experienced provider of information technology and communications. MicroTech offers a wide range of professional services focused on providing cutting-edge solutions with the customer at the forefront of every decision we make. Solving complex business challenges is our passion — we provide effective, practical solutions that can increase productivity, and decrease costs. MicroTech has developed a well-earned reputation for best-in-class services and solutions using repeatedly proven ISO 9001 Quality Management System, ISO 20000 IT service management, ISO 27001 Information Security Management System, and ITIL® management qualified business processes. We offer great pay, amazing benefits, and our company culture is strong. MicroTech is devoted to people development and providing high achievers opportunities to grow professionally. As an employee, you are surrounded by intelligent, driven colleagues and have the benefit of a culture that is focused on bringing out the best in everyone. Our benefits include:
- Insurance (medical, dental vision)
- Paid Time Off (PTO): 15 days during the first year; 20 days annually after one year of service
- 401k Plan with Employer Matching Contribution
- 11 Company-Paid Holidays
- Tuition Assistance
- Voluntary Benefit Programs
- Corporate Discounts
MicroTech is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other protected classes.
$115k - $190k
...Web Developer Security Engineer Clearance Requirement: Public Trust (Tier 2) Location: Remote/Hybrid (as approved by customer) Position Overview: Nationwide IT Services (NIS) is seeking a Web Developer Security Engineer to support application security initiatives...SuggestedRemote work- ...Web Developer Security Engineer The Web Developer Security Engineering plays a pivotal role in protecting mission-critical web applications, APIs and sensitive data. The objectives are to embed robust security principles throughout the software development lifecycle...SuggestedWorldwide
$110k - $135k
...POSITION OVERVIEW Reporting to the Program Manager, the Web Developer Embeds security across the SDLC for mission-critical web apps, APIs, and... ...analysis, FIM, WAF management ~3+ Web AppSec / AppSec Engineering / SSDLC ~ Modern web tech incl. .NET (C# MVC, WCF), HTML...Suggested$166k - $253k
...Security Software Engineer Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities... ...The Job We're seeking a Security Software Engineer to develop novel security tooling for securing embedded Linux systems...SuggestedFull timeWork experience placementImmediate start- ...Cybersecurity Systems Engineer/Information Systems Security Engineer (ISSE) Transform technology into opportunity as a Cybersecurity Systems Engineer... ...a general understanding of the architecture being developed or that was developed for each project in order to write...SuggestedFor contractorsInterim role
- ...The Senior Federal Information Systems Security Engineer (ISSE) serves as a technical integrator responsible for ensuring that system-to-system connections across federal boundaries are properly documented, approved, and compliant with all required cybersecurity and interoperability...Contract workWork experience placementRelocation
$71.2k - $166.1k
...Job Description The Senior Federal Information Systems Security Engineer (ISSE) serves as a technical integrator responsible for ensuring that system-to-system connections across federal boundaries are properly documented, approved, and compliant with all required cybersecurity...Contract workTemporary workWork experience placementRelocationFlexible hours$135k - $195k
...Lead Cyber Systems Engineer Systems Planning and Analysis, Inc. (SPA) delivers high-impact, technical solutions to complex national security issues. With over 50 years of business expertise and consistent growth, we are known for continuous innovation for our government...Full timeWork at officeFlexible hours3 days per week- ...deterrence is assured, and the free world remains secure. Founded in 2024, Twenty Technologies... ...Summary We are seeking IT Security Engineer to join our growing technology... ...intrusion detection systems, VPNs, and DMZs. Develop and enforce security policies, standards...Full timeWork at officeFlexible hours
- ...business development efforts for upcoming opportunities with the U.S. Department of State's Bureau of Diplomatic Security (DS) – Training – Technical Security Engineering. The Advisor will play a critical role in refining our understanding of the client landscape, validating...Contract workWork at office
- ...Job Description Job Description We are seeking an experienced Endpoint Engineering & Security Engineer with 8+ years of IT, endpoint engineering, or cybersecurity experience . The ideal candidate will have hands-on expertise in Windows and macOS workstation imaging...Local area
- ...seeks a motivated, career and customer oriented Enterprise AI Security Engineer for a new initiative. This effort supports the rapid design,... ...robust Identity and Access Management (IAM) solutions. · Develop and enforce runtime security policies using tools like Open Policy...Work at office
- ...Position Overview: We are seeking an experienced Senior Security Engineer to work in Washington DC to join our team supporting an Enterprise... ...role, you will manage and maintain security documentation, develop robust security policies, conduct risk assessments, and...For contractorsWork at officeLocal area
- ...Security Engineer - Senior Washington, DC, USA Full Time Top Secret Clearance Security Engineer Our Client is seeking a Senior Security Engineer - Cyber Threat Mitigation Lead to work in our Washington, DC office to lead a cross functional team...Full timeTemporary workWork experience placementWork at officeFlexible hours
$300k - $405k
...Security Engineer, Detection & Response San Francisco, CA | New York City, NY | Seattle, WA; Washington, DC About Anthropic Anthropic... ...have the potential to greatly benefit society. However, developing advanced AI also comes with risks if not properly safeguarded...Work at officeVisa sponsorshipFlexible hours- ...Performed: AnaVation is looking for a Security Engineer to assist the client leadership with... ...and processes are implemented, and developing appropriate security-related documentation... ...Crowdstrike ~ Tenable/Nessus ~ Qualys ~ Web App Scanning tools (e.g., Burpsuite)...Temporary workImmediate startRemote work
$180k - $200k
...is our specialty, we also focus on ICAM, Zero Trust, digital engineering and transformation, and enterprise AI and intelligent automation... ...and share in the many benefits and opportunities we offer. Security Engineer III Responsibilities: Leads enterprise security...For contractors$93.4k - $176.2k
...ingenuity for clients across defense, national security, public safety, civilian, and military... ...are: ** We are seeking a Security Engineer to assist in the design, development,... ...values and our experience that hiring and developing great people who reflect different...Live inWork at officeLocal area- ...Security Engineer Tech tammina solutions Job Description The security engineering position provides support to a Security Operation... ...results analysis, process improvement SourceFIRE management and web interface Splunk ES Document management; process,...Contract work
$63 - $70 per hour
...Security Engineer Tech Tammina LLC Job Description Hi, Trying to reach you.. I just came across your resume and want to see if you may... ...analysis, process improvement 3. SourceFIRE management and web interface 4. Splunk ES 5. Document management; process, procedural...Hourly payContract workRelocationWork visa- ...Employer: Amazon Development Center U.S., Inc. Position: Security Engineer III - AMZ25957.4 Location: Arlington, VA Multiple Positions... ...Infrastructure security and Internal security processes. 6. Develop security review tools utilizing Java and Soot Framework for...
$145k - $180k
...Everforth ECS is seeking a Senior Security Engineer to work in our Washington, DC office. ECS Federal is a leading information security... ...are meeting client's expectations. Design and develop cybersecurity or cybersecurity-enabled Design hardware, operating...Long term contractPermanent employmentFull timeWork at officeImmediate start- ...Evolver Federal is seeking a Senior Security Engineer to fulfill a requirement for a potential government client. The Senior Security Engineer... ...management platforms. Support Tier 2/3 SOC analysts by developing advanced correlation rules for Splunk and optimizing...Contract workFlexible hours
- ...Security Engineer Detection & Response Security is at the foundation of OpenAI's mission to ensure that artificial general intelligence... ...operational response. Engineer detection pipelines and tooling: develop rule lifecycle management, measurement/quality loops (...
$140k - $160k
...Overview Edgewater is currently seeking a hands-on Senior Security Architect/Azure Cloud Security Engineer to support secure Azure development, application modernization, and cloud migration of our federal customer in the Washington DC area. This is a hybrid position...Contract workLocal areaRemote work$237.6k - $297k
...Security Engineer, Detection & Response We are seeking a Senior Security Engineer with a specialty in Detection and Incident Response to... ...precision detections across cloud services and enterprise SaaS, develop automation that shortens response timelines, and mature the...Full time$300k - $405k
...Detection And Response Engineer Anthropic's mission is to create reliable, interpretable... ...of Anthropic's technology stack Develop and deploy novel tooling that may leverage... ...improvement Work cross functionally with other security and engineering teams Note: This...Work at officeVisa sponsorshipFlexible hours$40k
...federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on... ...that matter at a national scale. The Junior Security Engineer supports 24x7 enterprise cybersecurity operations by monitoring...Contract workRemote work- ...Title: IT Security Engineer *Local to DMV area Descripiton: The Contractor shall perform the following duties and responsibilities... ...configuration management processes. Assist in developing a disaster recovery and business continuity plan. Identify and...For contractorsWork experience placementLocal areaRemote work
- ...Junior Security Engineer Remote Grant Leading Technology is seeking a candidate for Junior Security Engineer to join our dynamic team. The candidate will support a large-scale IRS modernization initiative focused on enhancing the security, resilience, and compliance...Temporary workLive inImmediate startRemote work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Web Developer Security Engineer. Be the first to apply!
- web associate Washington DC
- web production specialist Washington DC
- education content developer Washington DC
- web developer internship remote Washington DC
- ecommerce web developer Washington DC
- website content developer Washington DC
- senior web developer Washington DC
- freelance web developer no experience Washington DC
- remote junior web developer Washington DC
- web developer specialist Washington DC


