Application Security Engineer
USA, MD, Annapolis Junction (304 Sentinel Dr) - Non Client Site
Full Time Senior-level / Expert USD 75K - 172K
Booz Allen Hamilton
Using tomorrow’s technologies, Booz Allen advances the nation’s most critical civil, defense, and national security missions.The Opportunity:
Products and applications are more connected than ever. Companies are rapidly trying to evolve and scale to protect their most critical assets. As an Application Security engineer, you’re eager to build, manage, and secure applications from ideation to post launch. We need you to design and implement effective security solutions to solve some of our clients’ toughest challenges.
As a lead application security engineer at Booz Allen, you can use your technical skills to affect mission-forward change. You’ll guide your team as they use the latest software development, cloud, and security technologies to improve your client’s environment. You'll guide clients and your team on implementing Application Security tools, practicing DevSecOps, and ensuring that code and applications are secure. Using your platform expertise, you’ll lead your team as you inform strategy and design while ensuring standards are met throughout the software development life cycle.
You’ll recommend resources that will help your client manage and securely adopt best practices. Additionally, you’ll continue to strengthen your DevSecOps skills while supporting the development of critical applications and products.
Work with us to for implement DevSecOps for good.
Join us. The world can’t wait.
You Have:
- 8+ years of experience in the development of software, tools, and processes to drive DevSecOps maturity by securing code, testing products, monitoring, and pushing releases across environments
- 4+ years of experience troubleshooting, triaging, and resolving vulnerabilities in code and CI/CD pipelines
- 2+ years of experience developing enterprise cloud-native solutions
- Experience with mentoring or supervising employees within a collaborative team environment
- Experience with Infrastructure as Code, including AWS CloudFormation, Azure ARM, or Hashicorp Terraform
- Knowledge of integrated development environments (IDEs) and version control
- Ability to perform independent research to learn and apply concepts and technologies
- Ability to create and present information at executive-level meetings
- Ability to travel up to 20% of the time
- Bachelor's degree and 4+ years of experience in DevSecOps or 8+ years of experience in DevSecOps in lieu of a degree
Nice If You Have:
- Experience designing and implementing logging strategies for security data
- Experience developing enterprise cloud-native solutions involving Kubernetes, Docker, AWS, Jenkins, or Azure
- Experience deploying SAST or DAST tools
- Experience with remediation of critical code vulnerabilities
- Experience with creating and improving continuous automation across multiple technical stacks
- Experience triaging and resolving issues related to both open source and commercial tools in public cloud environments
- Knowledge of scripting languages such as Python, Linux Shell Script
- Master’s degree
Compensation
At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.
Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $75,600.00 to $172,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees. This posting will close within 90 days from the Posting Date.Identity Statement
As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.
Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.
- If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
- If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.
EEO Commitment
We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.
Tags: Application security Automation AWS Azure CI/CD Cloud DAST DevSecOps Docker Jenkins Kubernetes Linux Monitoring Open Source Python SAST Scripting SDLC Strategy Terraform Travel Vulnerabilities
Perks/benefits: Career development Health care Medical leave
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.