IT Security Specialist / Application Security Engineer (Level IV)

Overview

Remote
Depends on Experience
Contract - W2
Contract - 24 Month(s)

Skills

Security Specialist
Application Security Engineer
application security
vulnerability management
Azure security engineering
Compliance
DevSecOps
CI-CD
security pipelines
NIST
FISMA
Fortify
Checkmarx
Veracode
Snyk
AppScan
CSSLP
CCSP
OSCP
GWEB
Azure Security Engineer

Job Details

We are seeking a senior IT Security Specialist / Application Security Engineer to support a federal client. The role focuses on application security, vulnerability management, Azure security engineering, and compliance in a cloud-based environment.

Key Responsibilities:

  • Perform application security assessments including SAST/DAST, manual code reviews, and vulnerability remediation

  • Design and support Azure security solutions (Sentinel, Defender, Log Analytics, Intune, WAF)

  • Implement and maintain DevSecOps / CI-CD security pipelines

  • Conduct risk assessments and ensure compliance with NIST/FISMA standards

  • Support incident response, vulnerability management, and security operations

  • Develop and maintain security documentation (SSPs, SARs, POA&Ms)

Required Skills & Experience:

  • 8+ years in cybersecurity / application security

  • Hands-on experience with SAST/DAST tools (Fortify, Checkmarx, Veracode, Snyk, AppScan)

  • Experience with manual code reviews (Java, .NET, Python, C#)

  • Strong Azure security experience

  • CI/CD and DevSecOps experience

  • Knowledge of NIST, FISMA, federal security standards

Certifications (Preferred):
CSSLP, CCSP, OSCP, GWEB, Azure Security Engineer

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.