Responsibilities of the Application Security Engineer EDC Consulting LLC (EDC) is seeking candidates for an Application Security Analyst supporting the U.S. Army in Radford, VA.The Application Security Engineer is a key player in ensuring the security of software applications within our organization. This role involves leading a team to develop security policies, conduct vulnerability assessments, and implement effective security measures. You will collaborate closely with Customer Relationship Managers (CRMs), customers, and Customer System Integrators to manage application security throughout the deployment process. This position is ideal for a proactive leader with deep expertise in application security who is committed to maintaining high security standards and continuous improvement.
The Application Security Engineer will:
Develop and document comprehensive application security policies and procedures.
Conduct regular security assessments and code reviews to identify vulnerabilities and security risks.
Analyze results from security scans, validate reported false positives, and recommend remediations.
Work collaboratively with CRMs, customers, and system integrators to ensure that all application deployments meet security requirements.
Lead and manage a team of security analysts to support application security initiatives.
Respond to and assist in the investigation of security incidents and breaches.
Stay informed about the latest security threats, vulnerabilities, and compliance standards.
Implement secure coding practices and collaborate with development teams to address security findings.
Provide strategic guidance on application security, secure architecture, and design principles.
Automate security testing processes in collaboration with IT and DevOps teams.
Qualifications:
Bachelor’s degree in Computer Science, Information Security, or a related field.
3-5 years of experience in application security or similar roles.
Solid knowledge of web application security principles and common vulnerabilities.
Proficiency with both Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) tools.
Strong programming skills in languages such as Java, Python, C++, or C#.
Familiarity with security frameworks and compliance standards like OWASP, NIST, and ISO 27001.
Understanding of secure coding practices and the OWASP Top 10.
Strong analytical, problem-solving, and interpersonal communication skills.
Experience integrating security practices within DevOps workflows.
Professional security certifications such as CISSP, CSSLP, or CEH.
Experience with cloud security on platforms like AWS, Azure, or GCP.
Familiarity with container security practices related to Docker and Kubernetes.
Knowledge of scripting languages like Python or Ruby.
CompTIA Security+ Certified
Active DOD Security Clearance
About EDC Consulting Founded in 2005 and headquartered in Tysons Corner, VA, EDC Consulting is a small business provider of enterprise solutions and strategic business support to the Federal Government. With more than 150 client engagements successfully delivered, EDC has extensive experience designing, developing, implementing, and maintaining complex business systems and software solutions for a wide range of Department of Defense, Federal, state, and local and commercial clients. EDC is an Oracle Platinum Partner, SAP Partner, and Premier Business Partner of the IBM Corporation. EDC offers a rich corporate culture with driven and determined leadership in a dynamic environment that was founded on openness and success. We enjoy an energetic and fun atmosphere in a culture of mutual respect. At EDC, we build upon the principals and traditions of our military. Personal responsibility, accountability and strong work ethic are a must. Our clients benefit from working alongside a winning team of smart, hard-working, creative, and successful professionals. By becoming part of the EDC team, our employees will share in our entrepreneurial spirit and success.
Please send your resume to resumes@edcconsulting.com. EDC Consulting is an equal opportunity employer.