SRA International, Inc., A CSRA Company Application Security Specialist in Arlington, Virginia
Clearance Level Must Currently Possess:
No Active Clearance Required
Clearance Level Must Be Able to Obtain:
No Active Clearance Required
Designs, tests, and implements secure operating systems, networks, security monitoring, tuning and management of IT security systems and applications, incident response, digital forensics, loss prevention, and eDiscovery actions.
Conducts risk and vulnerability assessment at the network, system and application level.
Conducts threat modeling exercises.
Develops and implements security controls and formulates operational risk mitigations along with assisting in security awareness programs.
Involved in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access.
Researches, evaluates and recommends new security tools, techniques, and technologies and introduces them to the enterprise in alignment with IT security strategy.
Prepares security reports to regulatory agencies. Audits and manages access management.
BS or equivalent + 9 yrs related experience, or MS + 7 yrs related experience
5+ years of practical experience in Application Security (AppSec)
Subject matter expert in Application Security
Expert Penetration tester; Certified (CEH, GPEN, OSCP, etc)
3+ years of experience with the following tools:
Automated Dynamic Testing tools such as IBM Security Appscan or HP Webinspect
Static Application Security Testing tools such as HP Fortify, IBM Appscan Source, or Checkmarx
Experience with source code reviews (manual and automated)
Able to explain security issue remediation
Experience with the following tools:
Burp Suite Professional and its accompanying utilities (Proxy, Spider, Intruder, and Repeater)
Able to provide application security strategy input
Experience with threat modeling
# of Openings:
Scheduled Weekly Hours:
T elecommuting Options:
Telecommuting Not Allowed
USA VA Arlington - 3501 N Fairfax Dr (VAC008)
Additional Work Locations:
CSRA is committed to creating a diverse environment and is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
THINK NEXT. NOW.
CSRA is tomorrow’s thinking, today. To “Think Next. Now.” is to imagine a better future and to deliver it, today. For our customers, our partners, and ultimately, all the people our mission touches, CSRA is realizing the promise of technology to change the world through next-generation thinking and meaningful results.
We understand that our customers' missions require new methods and imaginative thinking. We bring together government IT professionals, emerging technologies, and the brightest, cutting-edge advisors in the industry to deliver a broad range of innovative, next-generation IT solutions and professional services to help our customers modernize their legacy systems, protect their networks and assets, and improve the effectiveness and efficiency of mission-critical functions for our warfighters and our citizens.
Everywhere you look, CSRA is there. We’re in our nation’s infrastructure, in training and education, in cyber security, in serving veterans who served us—and, so much more. Take some time to learn more about CSRA. You might be surprised to learn how we touch your life.
We are a company of 18,000+ smart, talented individuals, yet we enjoy a start-up culture that inspires us to make a difference while delivering results in this rapidly evolving world. Join our team and use your skills and expertise to support the safety, security, health and well-being of the nation.