SIGN IN
Cyber Command Application Security Vulnerability Assessment Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Compu-Vision Consulting Inc. · 19 hours ago

Cyber Command Application Security Vulnerability Assessment Engineer

positionBrooklyn, NY
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$90/hr - $95/hr
date12+ years exp
Compu-Vision Consulting Inc. is seeking a Cyber Command Application Security Vulnerability Assessment Engineer to enhance their application security efforts. The role involves identifying and providing remediation guidance for vulnerabilities, operating SAST/DAST tooling, and collaborating with development teams to ensure security best practices are implemented.
ConsultingInformation TechnologyOutsourcingSoftware
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Operate and maintain industry-standard SAST/DAST tooling, including HCL AppScan, Veracode, and Burp Suite, to ensure continuous security coverage
Scope application assessments by identifying all critical components and APIs required to establish a comprehensive security baseline
Configure and fine-tune scan profiles and parameters to eliminate noise, reduce false positives, and ensure repeatable, high-fidelity results
Manage the full lifecycle of authenticated and unauthenticated scans, including the coordination of application profiles, security profiles, and automated schedules
Validate automated scanner findings through manual testing and exploit reproduction to confirm technical impact
Document false positives with detailed root-cause analysis and technical justification for audit trails
Identify recurring vulnerability patterns and systemic architectural weaknesses across application portfolios
Generate defensible vulnerability reports that include step-by-step evidence for engineering teams and high-level summaries for management
Prioritize remediation efforts by correlating technical severity with business criticality and data sensitivity
Partner with development teams to translate complex security findings into clear, actionable technical requirements that can be easily ingested into their remediation workflows
Prescribe specific coding guidance and design-level mitigations to resolve identified vulnerabilities
Implement compensating controls when direct remediation is not technically feasible or requires long-term architectural changes
Lead working sessions and technical walkthroughs to assist developers in accelerating the 'time-to-fix.'
Lead structured knowledge transfer sessions to train full-time staff on assessment methodologies and security best practices

Qualification

Application SecurityVulnerability AssessmentsSAST/DAST toolsOWASP Top 10NIST 800-53CVSSCloud-native appsAgile/SDLC understandingManual testingTechnical communication

Required

Minimum of 12 years of hands-on experience in Application Security, Vulnerability Assessments, or Penetration Testing
Advanced proficiency in applying OWASP Top 10 and NIST 800-53 standards
Practical experience operating and configuring SAST/DAST tools (e.g. AppScan, Veracode, Burp Suite)
Proven ability to explain technical vulnerabilities to developers and provide specific, design-level remediation guidance
Proficiency in using CVSS (Common Vulnerability Scoring System) to correlate technical severity with business impact and data sensitivity

Preferred

Experience testing cloud-native apps (AWS/Azure/GCP), APIs, and microservices
Strong understanding of Agile/SDLC cycles to effectively coordinate with developers and project managers
Proficiency in manual testing to validate automated findings and identify complex business logic flaws
Background working with large, deep-dive complex organizations or government/public sector environments

Company

Compu-Vision Consulting Inc.

twittertwitter
company-logo
Compu-Vision Consulting Inc. is a dynamic IT consulting enterprise.
dateFounded in 1998
location
North Brunswick, New Jersey, USA
people-size51-200 employees
web-link
http://www.compuvis.com/

H1B Sponsorship

Compu-Vision Consulting Inc. has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2024 (2)
2022 (1)
2021 (9)
2020 (12)

Funding

Current Stage
Growth Stage

Recent News

Private Equity Wire
CVC to manage up to $2bn in private credit mandates for AIG
2026-01-22
capital-riesgo.es
AIG and CVC announce strategic partnership
2026-01-20
Alternative Credit Investor
CVC to manage $2bn private credit mandates for insurer AIG
2026-01-20
Company data provided by crunchbase