ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking an Application Security Engineer who has experience ensuring network security by supporting application security reviews, code reviews and dynamic testing in the federal market. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.

 

Required Skills

  • 3+ years of experience with one or more of the following programming languages: Java, Python, .NET, or C#
  • 3+ years of experience with using the design and implementation of enterprise-wide security controls to secure applications, systems, network, or infrastructure services
  • 3+ years of experience with supporting Veracode Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments
  • Experience with Eclipse, JDeveloper, including pipeline development, or Visual Studio
  • Experience with securing enterprise web applications and OWASP Top 10, CVSS, CWE, WASC, and SANS-25
  • Knowledge of web protocols and a command line tool
  • Knowledge of federal compliance standards, including NIST 800-53, FIPS, or FedRAMP
  • Knowledge of Linux or UNIX environments, including navigating and troubleshooting basic website connectivity issues

Desired Skills

  • Experience with the SecurityCompass SDElements security requirements tool
  • Experience with Interactive Application Security Testing (IAST) capabilities and tools
  • Experience with OWASP ZAP or Burp Proxy

Location

  • Washington, D.C

Security Clearance

  • Must be a U.S Citizen

Sound like the job for you?

Send us a link to your resumé or portfolio to become part of our talent pool.

Click here to apply