×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Application Security Engineer

Remote / Online - Candidates ideally in
Tacoma, Pierce County, Washington, 98417, USA
Listing for: Edgewater Federal Solutions, Inc.
Remote/Work from Home position
Listed on 2026-06-24
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 150000 - 200000 USD Yearly USD 150000.00 200000.00 YEAR
Job Description & How to Apply Below

Overview

Edgewater is currently seeking an Application Security Engineer who will be a hands‑on subject matter expert in Microsoft Azure cloud technologies, application security, security architectures, security tools, and methodologies. The Application Security Engineer will support our federal customer in Washington DC. This is a hands‑on technical role that will provide the right candidate with an exciting opportunity to develop the federal customer's application security program, working with developers and the organization to meet the strategic security goals of the agency.

This is a remote position but requires the candidate to work at the federal site in Washington DC at least two days a month so candidates local to the Washington, DC area are strongly preferred. Due to the contract and nature of the work, citizenship is required to obtain a Department of Energy security clearance.

Responsibilities
  • Drive the strategic maturation of the agency's Application Security (App Sec) program by defining security standards, scaling automation, and embedding secure development practices across all product life cycles.
  • Perform SAST assessments using Veracode and Git Hub Advanced Security, identifying code‑level vulnerabilities and providing remediation guidance.
  • Conduct and analyze DAST scans, including configuration, execution, and triage of results.
  • Evaluate and prioritize vulnerabilities using industry frameworks such as CVSS, CWE, OWASP Top 10, WASC, and SANS Top 25.
  • Collaborate with development, Dev Ops, and security teams to integrate security controls into CI/CD pipelines and the broader SDLC.
  • Provide expert advice on secure coding principles and assist developers in resolving security findings.
  • Troubleshoot application and connectivity issues in Linux‑based environments.
  • Contribute to the design and implementation of enterprise‑wide application security controls.
  • Ensure alignment with federal security and compliance standards, including NIST 800‑53, FIPS, and FedRAMP.
  • Maintain awareness of emerging threats, vulnerabilities, and best practices in application security.
Qualifications
  • Experience supporting SAST/DAST environments using Veracode.
  • Experience with SCA tools and vulnerability remediation.
  • Experience leveraging CI/CD deployment methodologies and infrastructure as code (IaC).
  • Experience writing playbooks and scripts for automation tools including Terraform, Ansible for IaC.
  • Demonstrate proficiency with a scripting or coding language, preferably Python.
  • Proficiency in automation and scripting, such as Power Shell, Python, Bash, and Terraform.
  • Ability to discuss Information Security concepts such as defense in depth and zero trust.
  • Demonstrate ability to communicate ideas both verbally and in writing to management, business and IT stakeholders, and technical resources in language that is appropriate for each group.
  • Ability to work collaboratively with developers across multiple departments.
  • Ability to work effectively in a fast‑paced, project‑oriented environment.
  • Ability to analyze and prioritize vulnerabilities based on risk.
  • Strong technical acumen, communication, and influence skills.
  • Working knowledge of system hardening (CIS, STIGs regulatory compliance).
  • Experience working with and supporting Unix/Linux and Windows systems.
  • Experience with SCA tools and vulnerability remediation in containers.
  • Container orchestration and container security experience.
  • 3+ years in application security supporting SAST, DAST, and SCA environments.
  • 3+ years of experience designing and implementing application security controls.
  • 3+ years of experience working in Linux‑based environments, including troubleshooting application and connectivity issues.
  • Knowledge of federal security and compliance standards (NIST 800‑53, FIPS, FedRAMP).
Preferred Qualifications
  • Experience in securing Azure cloud infrastructure (i.e., inspection, logging, WAF, VM).
  • Experience with Azure Dev Ops.
  • Practical implementation and architectural experience in encryption techniques, including data at rest and in transit.
  • Prior experience as a software developer is highly preferred.
Requirements
  • Bachelor's degree in computer science or related fields.
  • Minimum of 8…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search