Description
Are you ready to join Leidos all-star team' Through training, teamwork, and exposure to challenging technical work, let Leidos show how to accelerate your career path.

The Leidos National Security Sector has an exciting opening for you as our next TS/SCI cleared Application Security Engineer supporting DIA-NMEC under our 10-year DOMEX Technology Platform (DTP) contract. We are seeking a talented Mid-Level Application Security Engineer to join our dynamic team and contribute to the security posture of our software development lifecycle. We are looking for someone who can demonstrate strong cross functional collaboration in areas such as, but not limited to, development, production, and QA in a dynamic, secure, fast paced environment. Have impact as part of a mission focused, solutions oriented, and adaptive team that values innovation, collaboration, and professional development. While most work is conducted on-site at our client location in Bethesda, MD, we offer a flexible schedule and, occasionally, some tasks may be performed remotely. Percentage of remote work will vary based on client requirements/deliverables.

As an integral member of the team, you will work closely with other infrastructure, network engineers, and system engineers on the following key tasks:

• Integrate security best practices into the software development life cycle (SDLC) and ensure security is embedded from design to deployment.
• Utilize Microfocus Fortify and other SAST tools to analyze source code for vulnerabilities.
• Work closely with development teams to remediate identified security issues.
• Implement and manage Black Duck SCA tools from Synopsys to identify and manage open-source component risks.
• Provide guidance on secure usage of third-party libraries and components.
• Conduct security assessments using Microfocus WebInspect and other DAST tools.
• Collaborate with development teams to address and remediate dynamic security findings.
• Implement and manage container security tools, with a focus on Anchore, to ensure secure container deployments.
• Provide recommendations for secure container orchestration.
• Work on ensuring systems and applications comply with Security Technical Implementation Guide

You demonstrate clear devotion to the DevOps and Infrastructure as Code (IaC) mindset and meet the following qualifications:

• Bachelor's degree in computer science, Information Security, or related field and 3+ years of prior experience in application security with a focus on SAST, SCA, DAST or Master's with 1-2 years of prior experience in application security with a focus on SAST, SCA, DAST
• Must possess TS/SCI clearance with the ability to obtain and maintain TS/SCI with Polygraph.
• Experience in system integrations testing through a full system development life cycle, including implementing test plans, test cases and test processes.
• Strong experience with Microfocus Fortify, Black Duck, Microfocus WebInspect, Anchore, or similar products.
• Knowledge of secure coding practices and integration into SDLC
• Familiarity with common security frameworks and standards
• Strong programming/scripting skills
• Excellent communication and collaboration skills
• Working in an Agile project management environment
• Enthusiastic with the ability to work well on a team and a self-starter who can work on their own.

You will wow us even more if you have some of these:

• Knowledge of Atlassian software such as JIRA, JIRA Service Desk, and Confluence
• Experience with data engineering tools such as Kubernetes/Rancher, Cloudera
• Experience with Configuration Management and IaC tools such as Salt or Ansible
• Experience with scripting languages, CI/CD tools, Elasticsearch, or Gitlab
• Experience working in an air-gapped environments
• Experience working in large computing environments (> 1,000 end-points)

#NMECDTP
Original Posting Date: 2024-01-30While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range: Pay Range $87,100.00 - $157,450.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
About Leidos Leidos is a Fortune 500® innovation company rapidly addressing the world's most vexing challenges in national security and health. The company's global workforce of 47,000 collaborates to create smarter technology solutions for customers in heavily regulated industries. Headquartered in Reston, Virginia, Leidos reported annual revenues of approximately $15.4 billion for the fiscal year ended December 29, 2023. For more information, visit www.Leidos.com .
Pay and Benefits Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available here .
Securing Your Data Beware of fake employment opportunities using Leidos' name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system - never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other person a l information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at [email protected] .
If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission .
Commitment to Diversity All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.