Web Application Tester, Mid

Key Role:

Help our client understand how security impacts each development phase and service. Perform, consult on, and lead vulnerability identification, new threat exposures, and emerging security technologies. Examine source code using automated tools to find possible vulnerabilities before moving to production. Guide your client through a plan of action and milestones to identify, mitigate, and remediate vulnerabilities to secure their mission critical systems and infrastructure. 

Basic Qualifications:

  • 3+ years of experience working in DevSecOps using secure coding practices with network programming languages, including Java, C#, VB.NET, JavaScript, Python, SQL, and ASP

  • Experience conducting static and dynamic code scanning of applications using automated tools for security vulnerabilities, security design reviews, code analysis, and reviews

  • Experience with performing manual validation of automated security testing results and manual configuration validation of items not covered by automated testing

  • Experience with CI/CD pipeline orchestration and tools, including GitLab, TFS, Jenkins, CX, or SonarQube, including spinning up and down environments for automated testing

  • Knowledge of multiple frameworks, including MVC and Angular

  • Ability to troubleshoot any technical issues preventing successful completion of testing engagements within the scheduled time allotted for the engagement

  • Secret clearance

  • HS diploma or GED

  • Security+ Certification, including Cybersecurity Workforce (CSWF) Cyber IT Certification under 8140/8570.1 IAT Level II or IAM Level I

  • Ability to obtain Server+, Windows Server, or Linux+ Certification within 6 months of start date

Additional Qualifications:

  • Experience with capturing procedures and writing standard operating procedures

  • Experience using WebInspect, Fortify SCA, AppScan, and Burp Suite

  • Knowledge of risk assessment and threat modeling techniques

  • Knowledge of Navy IT sites, systems, and IT infrastructure

  • Ability to manage time well and routinely prioritize tasks by their intended impact

  • Possession of excellent written and verbal communication skills, including communicating clearly and concisely

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

ID15-G

Not ready to apply? Join our talent community and sign up for job alerts.