Apply on Employer Site

Booz Allen Hamilton · 1 week ago

Application Security Engineer

Washington, DC

Full-time

Hybrid

Mid, Senior Level

$62K/yr - $141K/yr

6+ years exp

Booz Allen Hamilton is a consulting firm seeking an Application Security Engineer to maintain a resilient security posture for highly visible applications. The role involves remediating security flaws, leading security discussions, and performing application testing using various tools and frameworks.

ConsultingCyber SecurityIT InfrastructureManagement ConsultingSecurity

Growth Opportunities

No H1B

U.S. Citizen Only

Responsibilities

Work together with the client and application community to maintain a resilient security posture for highly visible applications

Remediate application security flaws in conjunction with the application security team

Lead security discussions with the application teams to prescribe security best practices within their development lifecycle

Perform dynamic and static application performance testing, perform security requirements creation or generation-level threat modeling leveraging tools, including SD Elements, and perform application-level testing using applications, such as Burp Suite

Work with the latest OWASP frameworks

Qualification

Application Security TestingJavaPythonBurp SuiteOWASP frameworksEnterprise security controlsVeracodeLinux/UNIXSoft skills

Required

6+ years of experience with Information Technology

3+ years of experience with Java, Python, .NET, or C#

3+ years of experience with Burp Suite supporting Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments

3+ years of experience using the design and implementation of enterprise-wide security controls to secure applications, systems, networks, or infrastructure services

Experience with Veracode and Eclipse, JDeveloper, including pipeline development, or Visual Studio

Experience with securing enterprise web applications and OWASP Top 10, CVSS, CWE, WASC, and SANS-25

Knowledge of federal compliance standards, including NIST 800-53, FIPS, or FedRAMP

Knowledge of Linux or UNIX environments, including navigating and troubleshooting basic website connectivity issues

Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements

HS diploma or GED

Preferred

Experience with the Security Compass SD Elements security requirements tool

Experience with Interactive Application Security Testing (IAST) capabilities and tools

Experience with OWASP ZAP or Burp Proxy

Benefits

Health

Life

Disability

Financial

Retirement benefits

Paid leave

Professional development

Tuition assistance

Work-life programs

Dependent care

Company

Booz Allen Hamilton

Glassdoor4.2

Booz Allen Hamilton is a consulting firm that specializes in analytics, technology, and engineering.

Founded in 1914

Mclean, Virginia, USA

10001+ employees

http://www.boozallen.com

Funding

Current Stage

Public Company

Total Funding

$3.03B

2025-03-11Post Ipo Debt· $650M

2023-08-01Post Ipo Debt· $650M

2020-08-13Post Ipo Debt· $700M

Leadership Team

Kristine Anderson

Chief Operating Officer

Mike Wikan

Senior Technology Consultant/Creative Director

Recent News

Morningstar.com

Booz Allen Hamilton Backs Fiscal Year Guidance After Treasury Cancels Contracts

2026-02-07

PR Newswire

Defense Capital Shift: The $29B Autonomous Shield Market

2026-02-05

Washington Technology

Pentagon chooses 7 for military data collection, analysis contract

2026-02-04

Company data provided by crunchbase