GuidePoint Security
Application Security Engineer - Mid-Atlantic region (Remote in VA, MD, PA, NC, DE, NJ, or DC)
Remote (Remote)midAdded 2 days ago
About this role
GuidePoint Security seeks a mid-level Application Security Engineer to implement and manage SAST tools, secure CI/CD pipelines, and integrate security practices throughout the software development lifecycle. You'll work remotely across the Mid-Atlantic region, leveraging your software engineering background and application security expertise to help enterprise and government clients reduce risk.
What you'll do
- Deploy, configure, and troubleshoot SAST tools like Semgrep, Snyk, CodeQL, and Checkmarx
- Integrate application security controls into CI/CD pipelines and automation workflows
- Triage and remediate vulnerabilities identified by security scanning tools
- Develop custom SAST rules and validation approaches for automated security testing
- Collaborate with development teams to implement secure coding practices and threat modeling
- Evaluate and recommend additional application security tools (DAST, IAST, API security)
What they're looking for
- SAST tool implementation and operationalization
- CI/CD pipeline tools (GitHub Actions, GitLab, Azure DevOps, Jenkins, CircleCI)
- Full stack software development and modern application architectures
- Scripting and automation with multiple programming languages
- OWASP Top 10 and secure development lifecycle knowledge
- Burp Suite and vulnerability validation
- API security tools and dynamic application testing
- Written and verbal communication
Benefits
- Remote position within VA, MD, PA, NC, DE, NJ, or DC
- Comprehensive medical, dental, and vision insurance with high employer contributions
- HSA contributions up to $1,750 annually for family plans
- Flexible Time Off and 12 corporate holidays
- Mobile phone and home internet allowance
- Retirement plan eligibility after 2 months; pet benefit option
Opens the official application on the employer’s site. No login required.