Application Security Engineer - Mid-Atlantic region (Remote in VA, MD, PA, NC, D

GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation's top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.Required Experience :Proficiency with the implementation, operationalization, and troubleshooting of Static Application Security Testing (SAST) tools such as Semgrep, Snyk, CodeQL, Checkmarx, Veracode, etc.Understanding of Continuous Integration / Continuous Delivery (CI/CD) pipeline tools and processes (e.g. GitHub Actions, GitLab Runners, Azure DevOps, Jenkins, CircleCI, etc.)Experience in software engineering, ideally full stack software development, including modern technologies and application architecturesStrong scripting and automation experience using one or more programming languagesSolid working knowledge of application security fundamentals including the OWASP Top 10, threat modeling, and implementing secure coding practices throughout the Software Development Lifecycle (SDLC)Excellent written and verbal communication skillsPreferred :Experience writing or adapting custom SAST rules (Semgrep or CodeQL)Familiarity with additional Application Security tools (e.g. Interactive (IAST), Dynamic (DAST) and API security, SCA, etc.)Familiarity with API Security tools (e.g., NoName, Traceable, Salt, Cequence)Practical hands-on experience validating vulnerabilities and proficiency with Burp SuiteStrong working knowledge of Secure Development Lifecycles and experience triaging and remediating technical vulnerabilities identified by web application scanning toolsUnderstanding of automated security testing approaches and toolsExperience in building and operating security tools within CI/CD pipelinesExperience with proactive integration of security into the development processPast experience as an application security practitioner or software engineerEducational & Professional Credentials :Bachelor's degree in a relevant discipline or equivalent experience3-5 years of security engineering experience in the Information Security industryWhy GuidePoint?GuidePoint Security is a rapidly growing, profitable, privately-held value added reseller that focuses exclusively on Information Security. Since its inception in 2011, GuidePoint has grown to over 1000 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 4,200 customers.Firmly-defined core values drive all aspects of the business, which have been paramount to the company's success and establishment of an enjoyable workplace atmosphere. At GuidePoint, your colleagues are knowledgeable, skilled, and experienced and will seek to collaborate and provide mentorship and guidance at every opportunity.This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation.Some added perks....Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)100% employer-paid medical premiums (employee only $0 deductible and HSA plans) along with 75% employer-paid family contributions100% employer-paid dental premiums (employee only) along with 75% employer-paid family contributions12 corporate holidays and a Flexible Time Off (FTO) programHealthy mobile phone and home internet allowanceEligibility for retirement plan after 2 months at open enrollmentPet Benefit Option

#J-18808-Ljbffr