// career with us
Application Security Engineer.
Basic Information
Multiple Openings. Provide application security support to development teams, including reviewing and explaining application security tools and processes. Work with application security design and architecture review, secure coding standards, risk mitigation analysis, creating thread modeling diagrams, identifying threats. Provide vulnerability explanations and remediation guidance, and perform configuration of scans using AppSec tools to perform Static Application Security Tests (SAST), Dynamic Application Security Testing (DAST) and Software Composition Analysis (SCA). Provide vulnerability remediation and mitigation guidance that maintains a balance between security and business objectives. Support compliance programs – PCI, NIST CSF, ISO 27001 and the development, implementation, and governance of common controls for products and infrastructure.Experience
Work with Java, .NET, Veracode, AppSpider, HCL Appscan, Burp Suite, Selenium Scripts. 40 hrs/wk. Must have a Master's degree or equivalent in Computer Science, Electr Engineering, Computer & Information Sciences, Information Systems, or a related field (will accept a Bachelor's degree plus 5 years progressive post baccalaureate experience in lieu of Master's) and 1 year experience (or 1 year experience as Systems Analyst, IT Risk, Security & Business Consultant, or related occupation). Must have 1 year experience working with application security design and architecture review, secure coding standards, risk mitigation analysis, creating thread modeling diagrams, identifying threats; using SAST and DAST.Must be willing to
travel/relocate to unanticipated locations throughout the US on short notice for extended periods
of time.
Email or Mail resume with ID# 722 to hr@endeavourtech.io or HR, Endeavour Technologies, Inc., 14101 Sullyfield Circle, Suite 400A, Chantilly, VA 20151.