Application Security Engineer - TS/SCI

System Engineering Bethesda, Maryland


Application Security Engineer – TS/SCI    
Xcelerate Solutions is seeking an Application Security Engineer supporting DIA-NMEC under our 10-year DOMEX Technology Platform (DTP) contract. We are seeking a talented Mid-Level Application Security Engineer to join our dynamic team and contribute to the security posture of our software development lifecycle. We are looking for someone who can demonstrate strong cross functional collaboration in areas such as, but not limited to, development, production, and QA in a dynamic, secure, fast paced environment. Have impact as part of a mission focused, solutions oriented, and adaptive team that values innovation, collaboration, and professional development. While most work is conducted on-site at our client location in Bethesda, MD, we offer a flexible schedule and, occasionally, some tasks may be performed remotely. Percentage of remote work will vary based on client requirements/deliverables. Come join out award-winning organization and work with some of the most talented and brightest minds in the GOVConn industry.     
Bethesda, MD (Hybrid)    
  • Integrate security best practices into the software development life cycle (SDLC) and ensure security is embedded from design to deployment.
  • Utilize Microfocus Fortify and other SAST tools to analyze source code for vulnerabilities.
  • Work closely with development teams to remediate identified security issues.
  • Implement and manage Black Duck SCA tools from Synopsys to identify and manage open-source component risks.
  • Provide guidance on secure usage of third-party libraries and components.
  • Conduct security assessments using Microfocus WebInspect and other DAST tools.
  • Collaborate with development teams to address and remediate dynamic security findings.
  • Implement and manage container security tools, with a focus on Anchore, to ensure secure container deployments.
  • Provide recommendations for secure container orchestration.
  • Work on ensuring systems and applications comply with Security Technical Implementation Guide
Minimum Requirements:    
  • Bachelor’s degree in computer science, Information Security, or related field and 3+ years of prior experience in application security with a focus on SAST, SCA, DAST or Master’s with 1-2 years of prior experience in application security with a focus on SAST, SCA, DAST
  • Must possess TS/SCI clearance with the ability to obtain and maintain TS/SCI with Polygraph.
  • Experience in system integrations testing through a full system development life cycle, including implementing test plans, test cases and test processes.
  • Strong experience with Microfocus Fortify, Black Duck, Microfocus WebInspect, Anchore, or similar products.
  • Knowledge of secure coding practices and integration into SDLC
  • Familiarity with common security frameworks and standards
  • Strong programming/scripting skills
  • Excellent communication and collaboration skills
  • Working in an Agile project management environment
  • Enthusiastic with the ability to work well on a team and a self-starter who can work on their own.
Preferred Qualifications:      
  • Knowledge of Atlassian software such as JIRA, JIRA Service Desk, and Confluence
  • Experience with data engineering tools such as Kubernetes/Rancher, Cloudera
  • Experience with Configuration Management and IaC tools such as Salt or Ansible
  • Experience with scripting languages, CI/CD tools, Elasticsearch, or Gitlab
  • Experience working in an air-gapped environments
  • Experience working in large computing environments (> 1,000 end-points) 
About Xcelerate Solutions:      
Founded in 2009 and headquartered in McLean, VA, Xcelerate Solutions ( is one of America's fastest-growing companies. Xcelerate’s culture is defined by our diversified workforce of dynamic and versatile professionals, supported with growth and development opportunities that contribute to individual and company growth. This strong commitment to our employees has been recognized by our inclusion on the Washington Business Journal’s “50 Best Places to Work” list as well as being a “Great Place to Work” certified company with a 4.6 star, and a 99% CEO approval Glassdoor rating. Come find out why Xcelerate Solutions is one of the DC Metro top employers!    
Xcelerate Solutions is an Equal Employment Opportunity/Affirmative Action Employer. We evaluate qualified applicants without regard to race, color, national origin, religion, age, equal pay, disability, veteran status, sex, sexual orientation, gender identity, genetic information, or expression of another protected characteristic. As part of this commitment to the full inclusion of all qualified individuals, Xcelerate provides reasonable accommodations if needed because of an applicant's or an employee's disability.    
Pay Transparency Notice: Xcelerate Solutions will not discharge or in any other manner