Full-Time
Application Security Engineer
Posted on 1/11/2025
GuidePoint Security
501-1,000 employees
Provides cybersecurity guidance and integration services
Mid
Remote in USA
Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions).
You match the following GuidePoint Security's candidate preferences
Employers are more likely to interview you if you match these preferences:
- 2-3 years experience working in Application Security
- Understanding of Integrated Development Environment (IDE) and Continuous integration / Continuous Delivery (CI/CD) Pipeline tools and processes (e.g. Azuer Dev Ops, Jenkins, Bamboo, etc.)
- Strong working knowledge of Secure Development Lifecycles and experience remediating technical vulnerabilities identified by web application scanning tools, Information Systems architecture, security control design, and development experience
- Deep knowledge of manual testing tools such as Burp Suite Pro
- Knowledge of and experience with SAST/DAST/SCA Application Security tools. Invicti (DAST) or Checkmarx (SAST/SCA) experience highly preferred
- Experience with the integration of tools into development pipelines
- Understanding of a broad range of Application Security issues as well as their mitigation strategies
- Understanding of Application Security related vulnerabilities
- Experience with reviewing source code written in JavaScript, Python, Java, C++, PHP, or C# a plus
- Written communication skills for written interactions with clients
- Strong communication skills that include the ability to clearly articulate thoughts and distill complex problems into digestible pieces of information
- Personal drive and passion to not only continue growing yourself but also the Application Security Engineering practice
- Run client SAST/DAST/SCA tools, review outputs and provide recommendations
- Implement integrations for tools into pipelines, ticketing systems, etc.
- Bachelor's degree in Computer Science or Information Security preferred
- Standard industry certifications are preferred
GuidePoint Security specializes in providing expert guidance for navigating the cyber landscape, offering services that include insights into the evolving threat landscape and aligning product decisions with resource capacity. They also assist with product comparisons and integration to optimize cybersecurity resources, focusing on technologies such as threat intelligence, security assessments, and cybersecurity product integration.
Company Stage
Growth Equity (Non-Venture Capital)
Total Funding
N/A
Headquarters
Reston, Virginia
Founded
2011
Simplify's Take
What believers are saying
- Increased demand for cloud security solutions boosts GuidePoint's market potential.
- Growing interest in Phishing as a Service enhances GuidePoint's training offerings.
- Zero Trust security models drive federal sector growth for GuidePoint.
What critics are saying
- Emerging cybersecurity firms offer competitive services, threatening GuidePoint's market share.
- Rapid evolution of cyber threats requires continuous innovation from GuidePoint.
- Cybersecurity talent shortage may hinder GuidePoint's operational scalability.
What makes GuidePoint Security unique
- GuidePoint Security offers Phishing as a Service to enhance cybersecurity training.
- Recognized as a Trusted Cloud Provider by the Cloud Security Alliance.
- Strategic partnerships with Onspring and Orca Security expand service offerings.
Help us improve and share your feedback! Did you find this helpful?
Benefits
Health Insurance
Dental Insurance
Paid Holidays
Unlimited Paid Time Off
Remote Work Options
Phone/Internet Stipend
401(k) Retirement Plan
Pet Insurance