Full-Time

Application Security Engineer

Confirmed live in the last 24 hours

Booz Allen

Booz Allen

Global consulting in strategy and technology

Compensation Overview

$60.4k - $137kAnnually

Senior

Washington, DC, USA

The position may require periodic in-office work at a Booz Allen or client site facility.

Category
Cybersecurity
IT & Security
Required Skills
Python
Java
.NET
C#
Linux/Unix
Requirements
  • 6+ years of experience with Information Technology
  • 3+ years of experience with Java, Python, .NET, or C#
  • 3+ years of experience with Burp Suite and Veracode supporting Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments
  • 3+ years of experience using the design and implementation of enterprise-wide security controls to secure applications, systems, network, or infrastructure services
  • Experience with Eclipse, JDeveloper, or Visual Studio, including pipeline development
  • Experience securing enterprise web applications and OWASP Top 10, CVSS, CWE, WASC, and SANS-25
  • Knowledge of federal compliance standards, including NIST 800-53, FIPS, or FedRAMP
  • Knowledge of Linux or UNIX environments, including navigating and troubleshooting basic website connectivity issues
  • HS diploma or GED
Responsibilities
  • Work together with the client and application community to maintain a resilient security posture for highly visible applications
  • Remediate application security flaws in conjunction with the application security team
  • Lead security discussions with the application teams to prescribe security best practices within their development lifecycle
  • Perform dynamic and static application performance testing
  • Perform security requirements creation or generation-level threat modeling leveraging tools, including SD Elements
  • Perform application-level testing using applications such as Burp Suite
  • Work with the latest OWASP frameworks
Desired Qualifications
  • Experience with the Security Compass SD Elements security requirements tool
  • Experience with Interactive Application Security Testing (IAST) capabilities and tools
  • Experience with OWASP ZAP or Burp Proxy

Booz Allen Hamilton provides consulting services focused on strategy, technology, and engineering. The firm works with a variety of clients, including government agencies, corporations, and non-profits, primarily in the defense, intelligence, and civil sectors. Their services help clients tackle complex technical and strategic challenges, utilizing their expertise in areas like cybersecurity, data analytics, and digital transformation. Booz Allen's business model includes long-term contracts and project-based work, allowing them to generate revenue while delivering tailored solutions. What sets Booz Allen apart from competitors is their deep industry knowledge combined with advanced technological capabilities, which enables them to help clients manage modern threats and improve their operations. The company's goal is to foster an inclusive and diverse work environment that encourages innovation and collaboration among employees.

Company Size

N/A

Company Stage

IPO

Headquarters

McLean, Virginia

Founded

1914

Simplify Jobs

Simplify's Take

What believers are saying

  • Booz Allen's investment in Second Front Systems enhances secure software deployment capabilities.
  • The acquisition of PAR Government Systems boosts Booz Allen's national defense solutions.
  • Booz Allen's involvement in Synthetaic's funding round expands AI capabilities in image data analysis.

What critics are saying

  • Increased competition in AI and data analytics could impact Booz Allen's market share.
  • Over-reliance on government contracts may pose financial risks due to spending shifts.
  • The sale of SnapAttack to Cisco might weaken Booz Allen's cybersecurity market position.

What makes Booz Allen unique

  • Booz Allen excels in cybersecurity, data analytics, and digital transformation services.
  • The firm has a strong presence in defense, intelligence, and civil sectors.
  • Booz Allen's inclusive work environment fosters innovation and collaboration.

Help us improve and share your feedback! Did you find this helpful?

Benefits

Health Insurance

Life Insurance

Disability Insurance

401(k) Retirement Plan

Paid Vacation

Professional Development Budget

Remote Work Options

Flexible Work Hours

Company News

Stock Titan
Feb 5th, 2025
Major Cybersecurity Deal: Cisco Snaps Up Booz Allen's SnapAttack Platform

Cisco completes acquisition of SnapAttack, a cyber threat hunting platform originally developed by Booz Allen Hamilton, strengthening its cybersecurity detection portfolio.

PR Newswire
Feb 3rd, 2025
Hidden Level Expands Role In National Security With $100M Investment In Drone Detection Systems

As Evolving Drone Threats Continue to Intensify, Hidden Level Sees Strategic Growth as it Executes on a Number of U.S. Government ContractsSYRACUSE, N.Y., Feb. 3, 2025 /PRNewswire/ -- Hidden Level, a leader in passive radar and radio frequency sensing technology for detecting and precisely locating drones and other threats around you, today announced $65 million in Series C funding led by DFJ Growth with participation from Booz Allen Ventures, Revolution Capital, Costanoa Ventures, Washington Harbour Partners, Veteran Ventures, Founders Circle Capital, and others. This investment comes on the heels of the company's $35 million Series B which closed only 6 months prior, bringing the company's funding over the last 12 months to $100M, solidifying its position as a robust technology player in the rapidly evolving national security and critical infrastructure landscape.The rapid proliferation of unmanned aerial systems (UAS) has introduced significant challenges to national security and the protection of critical infrastructure for the U.S. and its allies. From espionage to the potential for hostile actions, drones represent a growing threat in both military and civilian environments

The Quantum Insider
Jan 14th, 2025
SEEQC Secures $30M for Quantum Computing

SEEQC has secured $30 million in funding, led by NordicNinja and Booz Allen Ventures, to advance its digital Single Flux Quantum (SFQ) chip platform. This technology integrates quantum and classical functions on a single processor, reducing costs by up to 97% and energy usage by 100,000 times. With partnerships including NVIDIA and NASA, SEEQC aims to scale quantum computing to enterprise-grade systems, focusing on applications in AI and materials science.

TechCrunch
Nov 13th, 2024
Exclusive: Starfish Space raises $29M to launch satellite-servicing spacecraft missions

Starfish Space has closed a new tranche of funding led by a major defense tech investor as it looks to launch three full-size satellite servicing and

SecurityWeek
Oct 23rd, 2024
Reality Defender Banks $33M to Tackle AI-Generated Deepfakes

New York startup raises $33 million in an expanded Series A round to build technology to detect deepfake and AI-generated media.