Application Security Engineer - DAST & Burp Suite Enterprise Security Testing
$120k - $140kFull-time
TOMORROW HIRE
Application Security Engineer
Location: Fully Remote (East Coast)
Clearance: Public Trust, Secret Clearance preferred
Employment Type: Full-time
Salary: $120,000-$140,000
Role Overview :
The Application Security Engineer will support the secure development and testing of applications by leveraging specialized tools, implementing security controls, and ensuring compliance with federal standards. This role involves hands-on work with application security testing (SAST, DAST, IAST), vulnerability management, secure coding practices, and collaboration with development teams to protect enterprise web applications in a federal environment.
Responsibilities:
- Support Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments using Veracode and Burp Suite.
- Design and implement enterprise-wide security controls to secure applications, systems, networks, or infrastructure services.
- Secure enterprise web applications, with a focus on mitigating OWASP Top 10 risks, CVSS scoring, CWE, WASC, and SANS Top 25 vulnerabilities.
- Integrate security practices into development workflows using IDEs such as Eclipse, JDeveloper (including pipeline development), or Visual Studio.
- Perform application security testing and automation using tools such as OWASP ZAP, Burp Proxy, Selenium, and Interactive Application Security Testing (IAST) capabilities.
- Write and maintain bash scripts to support security automation, testing, and troubleshooting tasks.
- Participate in vulnerability discovery, triage, and remediation processes, including crowdsourced security programs via platforms like HackerOne.
- Work in Linux or UNIX environments, including navigating file systems and troubleshooting basic website connectivity and security issues.
- Ensure applications and security practices align with federal compliance standards, including NIST 800-53, FIPS, or FedRAMP.
Requirements
- Minimum 6+ years of Information Technology experience with a focus on application and security engineering.
- 3+ years of hands-on experience supporting application security testing , including Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) .
- Demonstrated experience with SAST, DAST, and IDE plug-in integrations using tools such as Veracode and Burp Suite .
- Experience performing authenticated and unauthenticated crawl auditing and DAST scanning using Burp Suite Enterprise Edition, including scan configuration, issue validation, and remediation coordination.
- Experience with Interactive Application Security Testing (IAST) tools and methodologies.
- Proficiency using OWASP ZAP and/or Burp Proxy for web application security testing.
- Experience participating in vulnerability discovery and remediation programs , including HackerOne .
- Experience with test automation tools , including Selenium .
- Proficiency in bash scripting for security automation, testing, and troubleshooting.
- 2+ years of development experience in one or more programming languages, including Java, Python, .NET, or C# .
- Experience integrating security into development workflows using Eclipse, JDeveloper (including CI/CD pipeline development), or Visual Studio .
- 3+ years of experience designing and implementing enterprise-wide security controls to secure applications, systems, networks, or infrastructure services.
- Hands-on experience securing enterprise web applications , with strong knowledge of OWASP Top 10 , CVSS , CWE , WASC , and SANS Top 25 vulnerabilities.
- Knowledge of federal compliance and security frameworks , including NIST 800-53 , FIPS , and FedRAMP .
- Working knowledge of Linux or UNIX environments , including file system navigation and troubleshooting basic website connectivity issues.
- High School Diploma or GED required.
- Public Trust Determination or Active Security clearance (preferred)
Benefits
Salary: $120,000-$140,000
Benefits include Health, Vision, and Dental Insurance, and PTO.
Vacancy posted 20 days ago
Similar jobs that could be interesting for youBased on the Application Security Engineer - DAST & Burp Suite Enterprise Security Testing in Washington DC vacancy
$62k - $141k
...Application Security Engineer The Opportunity: Work together... ...application performance testing, perform security... ...applications, such as Burp Suite. Work with the... ...Application Security Testing (DAST), and IDE Plug-in... ...implementation of enterprise-wide security controls...SuggestedFull timeContract workPart timeWork at officeLocal areaRemote workBooz Allen Hamilton
Washington DC22 hours ago- ...seeking an experienced Application Security Engineer to support the... ...security and integrity of enterprise applications within... ...Security Testing (SAST) and Dynamic Application... ...Security Testing (DAST). The ideal... ...-on experience with Burp Suite Enterprise for DAST...SuggestedFull timeRemote work
MBL Technologies
Washington DC1 day ago - ...Collaborate with a team of engineers to implement *** specific security policies in the CI/CD... ...not limited to SAST, DAST and SCA applications. Work with... ...DAST or IAST across the enterprise Ability to perform... ...Secure SDLC tools like Burp Suite, Fortify, Checkmarx, AppSec...SuggestedContract workWork experience placement
US Tech Solutions
Arlington, VA22 hours ago $100k - $155k
Overview As an Application Security Engineer , you will provide technical expertise and... ...the various layers of an enterprise application stack interact with... ...application security testing scan tools - Invicti, Web Inspect, DAST/IAST suites Experience using Python to...Suggested- Responsible for supporting application security through security testing, vulnerability management, secure design... ...and a team of dedicated security engineers to protect our products throughout... ...Dynamic Application Security Testing (DAST) Software Composition Analysis...Suggested
Bloomberg Industry Group
Arlington, VA2 days ago - ...Application Security Engineer Comtech is a woman-owned small business founded in 1998 and headquartered... ...infrastructure, Cyber security, and enterprise content/data management services. We... ..., integrated build, automated unit testing and deployment processes. Deploy...
Comtech LLC
Washington DC2 days ago $110k
...seek a highly motivated and experienced Application Security Engineer to join our growing security team.... ...conducting security assessments with SAST and DAST tools, reading source code, threat... ...both Static Application Security Testing (SAST) and Dynamic Application...Full time- ...outstanding team. Accenture Security helps organizations... ..., cyber defense, application security and managed... ...experienced Lenel OnGuard Engineer / Application Support... ...systems across enterprise and operational technology... ...a market competitive suite of benefits including...Work experience placementLive inWork at officeLocal area
Accenture
Arlington, VA2 days ago - ...Application Security Engineer We're looking for an Application Security Engineer who lives in the code. Braintrust is a real-time, high-availability... ...JavaScript and Python snippets Own our SAST, DAST, SCA, and secret-scanning tooling end-to-end, keeping signal...Flexible hours
Brain Trust Inc
Washington DC1 day ago $104k - $156k
...Overview As an Advanced Security Engineer focused on Endpoint... ...employee endpoints and the enterprise systems they access. You will... ...Experience securing cloud-native applications / SaaS solutions and... ...Network Security, Penetration Testing, Security Architecture Design...Remote workRelativity
Washington DC22 hours ago- ...a search for an experienced Senior Application Security Engineer in Washington, DC. The ideal candidate... ...; Building threat models for enterprise applications to identify attack vectors... ...Provides guidance and support to self-testing, security control assessment, preparation...
- ...monitoring technology spans the lifecycle of supply chain risk, bringing speed and clarity to enterprise response. Job Overview: The Application Security Engineer will secure Interos.ai's AWS cloud environments, containerized workloads, application stack,...
RIT Solutions, Inc.
Washington DC2 days ago $98.9k
...What you can expect The Security Engineer is responsible for... ...assessment, and security testing (web application, native application, web... ...testing using tools like Burp Suite and Coverity. Identifying... ...collaboration platform for the enterprise, and today help people...Work at officeRemote workZoom Corporation
Washington DC2 days ago$86.8k - $198k
...pivotal member of our Enterprise Cybersecurity (ECS)... ...vulnerabilities and reinforce our security posture. This unique... ...dynamic penetration testing and product... ...frameworks, including Burp Suite Pro, Metasploit, or... ...computerscience, product,or application security Nice If You...Full timeContract workPart timeWork at officeLocal areaRemote work- ...conducting a search for a Mid‑Level Application Engineer - Cyber Security Analytics Engineer. We are seeking... ...and manage software tools to support Enterprise Management. This role involves... ...responsible for program design, coding, testing, debugging, and documentation. User...
- ...crucial skill that they are seeking expertise in here is securing AI systems. The hiring manager needs someone who can enhance... ...AWS cloud security architecture and services Cloud application security engineering Docker and Kubernetes security Infrastructure...Remote work
RIT Solutions, Inc.
Washington DCa month ago $62k - $141k
Job Number: R0238924 Enterprise Cybersecurity Penetration Tester... ...assessments to identify security risks within applications, security controls, and... ...'ll perform penetration testing, including internet, intranet... ...frameworks, including Burp Suite Pro and Metasploit...Contract workLocal area$62k - $141k
Enterprise Cybersecurity Penetration Tester and Operator, Mid... ...assessments to identify security risks within applications, security controls, and network... ...’ll perform penetration testing, including internet,... ...exploitation frameworks, including Burp Suite Pro and Metasploit*...Full timeContract workPart timeWork at officeLocal areaRemote work$237.6k - $297k
...Security Engineer, Product Security We are seeking a highly technical... ..., AWS, CI/CD, SAST, DAST, and terraform orchestration... .... Perform Static Application Security Testing (SAST) and Dynamic Application... ...leading models, and help enterprises and governments build,...Full timeScale AI
Washington DC2 days ago$105k - $130k
...organizations and individuals. Applications Engineer The Applications... ...supervision, ensuring stable, secure, and scalable application... ...coordinate user acceptance testing (UAT) for new or upgraded applications... ...Copilot, AI tools, and enterprise governance considerations....Temporary workWork at officeRemote workKatten Muchin Rosenman LLP
Washington DC22 hours ago- ...Team. Job Title: AI Cyber Engineer (Enterprise Security & Autonomous Remediation)... ...across infrastructure, applications, and AI systems. Generate... ...and adversarial testing to proactively identify weaknesses... ...Security tools: SAST, DAST, SCA, SIEM, SOAR, CNAPP, CSPM...Shift work
Ampcus
Washington DC1 day ago - ...Application Engineer We are seeking a skilled and experienced Application... ...program design, coding, testing, debugging, and... ...the health and status of security tool suites through IT system management... ...and deficiencies within the Enterprise IT/IC GovCloud security tool...Relocation packageFlexible hours
Fullscope
College Park, MD4 days ago - ...Job Description: Senior Application Developer / Engineer / Programmer Position Title: Senior... ...role in designing, developing, securing, and maintaining enterprise-grade applications in AWS... ...remediation, debugging, and unit testing within CI/CD pipelines Develop...
Diverse Agile Solutions LLC
Washington DC4 days ago $140k - $170k
...Application Engineer - US New York City; Washington, D.C. Gibson Dunn... ...for the full lifecycle of key enterprise applications—ensuring reliability, performance, security, and continuous improvement.... ...implementations. Perform comprehensive testing and quality assurance to...Contract workWork at officeLocal areaFlexible hoursGibson Dunn
Washington DC4 days ago$100k - $155k
Steampunk is seeking an Application Security Engineer in McLean, Virginia. This role involves providing expertise to remediate vulnerabilities and uphold security practices across enterprise applications. Ideal candidates need to have experience in application security...$87.1k - $157.45k
...The Application Packaging Engineer supports the SEC ISS contract by delivering secure, standardized software packaging and deployment services for enterprise endpoints. This role builds, tests, and deploys application packages aligned with SEC endpoint baselines, operational...Contract workRemote workLeidos
Washington DC1 day ago$47.85 - $57.85 per hour
...close workflow gaps. Involves design, building, testing, and implementation of Epic integration application systems. Works with clinicians to create or adapt... .... Accenture Flex offers a market competitive suite of benefits including medical, dental, vision, and...Hourly payWork experience placementLive inWork at officeLocal areaFlexible hoursAccenture
Arlington, VA4 days ago- ...Lead Security Engineer At B&A, we foster and embrace... ...Engineer to lead application security across a large... ...application security testing, threat modeling, and... ...Testing (SAST/DAST) , vulnerability assessments... ...threat modeling for enterprise applications...Full timeWork at officeLocal area
Bart and Associates Inc
Suitland, MD22 hours ago - ...Lead Security Engineer This position supports Revolutional's federal... ...customer as part of an application transformation and... ...you will define and drive enterprise security engineering strategy... ...Conduct penetration testing, threat modeling, SAST/DAST scanning, vulnerability...For contractors
Harmonia | Revolutional
Suitland, MD2 days ago $135k - $170k
...Title: Lead Security Engineer Location: Remote / Hybrid... ...Decennial Transformation and Application Modernization (DTAM)... ...leadership across enterprise security initiatives,... ...management, security testing, audits, and... ...Security Testing (SAST/DAST) tools Infrastructure...Full timeContract workWork at officeRemote workIworks
Suitland, MD7 days ago
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Application Security Engineer - DAST & Burp Suite Enterprise Security Testing. Be the first to apply!
Related searches
- application support engineer Washington DC
- senior application security engineer Washington DC
- application engineering manager Washington DC
- project application engineer Washington DC
- network applications engineer Washington DC
- technical application engineer Washington DC
- cnc applications engineer Washington DC
- hydraulic application engineer Washington DC
- application system engineer Washington DC
- application engineer Washington DC