
Posted 7 hours ago
Senior Security Code Reviewer
Ashburn Consulting, LLCSenior Security Code Reviewer
Requirements
U.S. citizenship, DHS EOD suitability, 10+ years application security experience, Checkmarx experience, AWS security expertise, Terraform and Kubernetes experience
Skills
DevSecOpsAWSKubernetes
About the role
Responsibilities
- Conduct security code reviews and risk assessments for applications and enterprise systems
- Use application security testing tools to identify vulnerabilities and provide remediation guidance
- Integrate security testing into DevSecOps and CI/CD pipelines
- Review application architecture, source code, dependencies, infrastructure-as-code, and deployment practices
- Support secure coding standards, developer security training, and technical remediation guidance
- Evaluate and improve cloud, network, and enterprise system security
- Provide technical writing, reporting, and mentoring to engineering and development teams
- Support federal cybersecurity compliance objectives and secure development lifecycle requirements
Requirements
- U.S. citizenship required
- DHS EOD / suitability required
- 10+ years of experience automating application security scanning processes and Zero Trust integration
- Experience with Application Security Testing platforms such as Checkmarx
- Experience automating or supporting Zero Trust Network Access (ZTNA) and Secure Web Gateway (SWG) solutions
- Advanced security engineering experience across on-premises and cloud environments
- Experience implementing AWS security best practices (VPC Flow Logs, Security Lake, audit monitoring)
- Experience building EKS clusters using Terraform and Kubernetes
- Experience creating custom hardened AMI builds
- Experience integrating network security tools such as Palo Alto, AlgoSec, Gigamon, and Corelight
- Experience with vulnerability management, SIEM integrations, and federal regulatory compliance
- Strong technical writing, training, and mentoring skills
Preferred Qualifications
- Experience with Burp Suite, Checkmarx One, PortSwigger, SonarQube, Fortify, SAST, DAST, SCA, or API security testing
- Experience with secure coding in Java, Python, JavaScript, C#, Ruby, SQL, React, Node.js, PowerShell, or Go
- Experience applying OWASP, NIST, DHS, and DevSecOps practices
- Secure software certification (CSSLP, GIAC, EC-Council) preferred
- Prior DHS, DOD, or federal application security experience
About the Company
Ashburn Consulting, LLC specializes in providing network and network security solutions in complex environments to a select set of government and business clients.
ScoutJobs Agent
Get matches like this delivered daily
Sign up free — we'll pull jobs that fit your CV from across the web and rank them for you.
Get started — it's freeSenior Security Code Reviewer
Ashburn Consulting, LLC · Camp Springs
