Skip to main content

GuidePoint Security

Application Security Engineer - Mid-Atlantic region (Remote in VA, MD, PA, NC, DE, NJ, or DC)

Remote (Remote)midAdded 2 days ago

About this role

GuidePoint Security seeks a mid-level Application Security Engineer to implement and manage SAST tools, secure CI/CD pipelines, and integrate security practices throughout the software development lifecycle. You'll work remotely across the Mid-Atlantic region, leveraging your software engineering background and application security expertise to help enterprise and government clients reduce risk.

What you'll do

  • Deploy, configure, and troubleshoot SAST tools like Semgrep, Snyk, CodeQL, and Checkmarx
  • Integrate application security controls into CI/CD pipelines and automation workflows
  • Triage and remediate vulnerabilities identified by security scanning tools
  • Develop custom SAST rules and validation approaches for automated security testing
  • Collaborate with development teams to implement secure coding practices and threat modeling
  • Evaluate and recommend additional application security tools (DAST, IAST, API security)

What they're looking for

  • SAST tool implementation and operationalization
  • CI/CD pipeline tools (GitHub Actions, GitLab, Azure DevOps, Jenkins, CircleCI)
  • Full stack software development and modern application architectures
  • Scripting and automation with multiple programming languages
  • OWASP Top 10 and secure development lifecycle knowledge
  • Burp Suite and vulnerability validation
  • API security tools and dynamic application testing
  • Written and verbal communication

Benefits

  • Remote position within VA, MD, PA, NC, DE, NJ, or DC
  • Comprehensive medical, dental, and vision insurance with high employer contributions
  • HSA contributions up to $1,750 annually for family plans
  • Flexible Time Off and 12 corporate holidays
  • Mobile phone and home internet allowance
  • Retirement plan eligibility after 2 months; pet benefit option
Apply on the employer's site

Opens the official application on the employer’s site. No login required.