Application Security Engineer

Overview

The main function of the senior application security engineer is to plan, coordinate and implement application security practices in each phase of software development life cycle though testing, remediation support, tool evaluation, etc. This role involves evaluating security vulnerabilities, security tools, implementing security solutions, and leveraging latest solutions to secure code review capabilities.

• Perform security assessments and manual penetration testing using tools such as Burp Suite and other proxy tools.
• Triage static (SAST), dynamic (DAST), interactive (IAST) analysis results to identify, prioritize and remediate security vulnerabilities.
• Integrate security practices into CI/CD pipeline to support Dev Sec Ops  initiative.
• Maintain documentation of security findings, remediation plans, and compliance requirements.
• Develop and interpret security policies and procedures. Participate in security compliance efforts.
• Develop and deliver training materials and perform general security awareness and specific security technology training.
• Evaluate and recommend new and emerging security products and technologies.
• Leverage GenAI technologies to scale application security reviews and automate code analysis.
• Evaluate various application security tools/capabilities i.e., SAST, DAST, IaC, Secrets detection tools.
• Stay current with emerging security threats and countermeasures.
• Ability to train or explain the common security issues to raise the security awareness among developers and assurance engineers.
• Perform AWS configuration reviews.

• Bachelor's degree in a technical field such as computer science, computer engineering or related field required.
• 5+ years of experience required in Cyber security and application security.
• Familiarity with SAST, DAST, IAST tools.
• Understanding of AWS is required.
• Deep understanding of OWASP top issues and remediation guidelines.
• Proficiency in one or more programming language (Java, Python, JavaScript is preferred).
• Understanding of CI/CD tools such as Jenkins and Git Lab.
• Familiarity with GenAI tools is a plus.
• Strong experience and detailed technical knowledge in security engineering, system and network security, authentication and security protocols, cryptography, and application security.
• Candidates with software development background is a plus.
• Consistent implementation of security solutions.
• Experience in infrastructure or application-level vulnerability testing and auditing.
• Certifications like GWAPT, OSWE, Burp Suite Certified Practitioner are good to have.

• Security, Application security, OWASP, Cyber security, Java, SAST

• Meet with development teams on a regular cadence to support the secure development lifecycle (SDLC).
• Perform web application penetration testing on new features and releases.
• Use Burp Suite for: o Web app pentesting, o Writing custom plugins, o Customizing workflows
• Triage SAST/DAST findings and guide engineering teams: o Requires strong code comprehension, o Experience reading intentionally vulnerable code, o Able to review code in:
  Python, Java, Spring
• Hands on experience using SAST/DAST tooling.

This is a Contract position based out of Rockville, MD.

The pay range for this position is $75.00 - $85.00/hr eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:

• Medical, dental & vision
• Critical Illness, Accident, and Hospital
• 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
• Life Insurance (Voluntary Life & AD&D for the employee and dependents)
• Short and long-term disability
• Health Spending Account (HSA)
• Transportation benefits
• Employee Assistance Program
• Time Off/Leave (PTO, Vacation or Sick Leave)

Workplace Type:
This is a hybrid position in Rockville, MD.

This position is anticipated to close on Feb 5, 2026.

We re partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change.

That s the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

About TEKsystems and TEKsystems Global Services

We re a leading provider of business and technology…