Senior Application Security Engineer - Mid-Atlantic region (Remote in VA, MD, PA, NC, DE, NJ, or DC)

📋 Description

• Implement, operate, and troubleshoot SAST tools (Semgrep, Snyk, CodeQL, etc.)
• Manage CI/CD pipelines and tooling (GitHub Actions, Jenkins, CircleCI, etc.)
• Develop software, ideally full-stack, with modern tech and architectures
• Script and automate using one or more programming languages
• Enforce secure coding across the SDLC; apply OWASP Top 10
• Communicate clearly with stakeholders and teams

🎯 Requirements

• SAST tools: Semgrep, Snyk, CodeQL, Checkmarx, Veracode
• CI/CD tooling: GitHub Actions, GitLab Runners, Azure DevOps, Jenkins, CircleCI
• Full-stack software development experience
• Strong scripting and automation in one or more languages
• Knowledge of OWASP Top 10, threat modeling, secure SDLC
• Excellent written and verbal communication

🎁 Benefits

• Remote workforce primarily (U.S.-based; some travel)
• Medical insurance: Zero Deductible PPO; GPS pays most
• Dental insurance: GPS pays 100% for employees
• 12 holidays and Flexible Time Off
• Mobile phone and home internet allowance
• Retirement plan eligibility after open enrollment