Current jobs related to Cybersecurity Application Security Vulnerability Engineer - Arlington - General Motors

• 

  Cybersecurity Vulnerability Specialist

  7 days ago

  ---

  Arlington, Virginia, United States Department of Homeland Security Full time

  Cybersecurity Vulnerability SpecialistThe Department of Homeland Security (DHS) is seeking a Cybersecurity Vulnerability Specialist to support technical leadership roles in Vulnerability Assessment. This position is part of the DHS Cybersecurity Service, which uses a multi-phase assessment process to qualify applicants for employment.The selected candidate...

• 

  Cybersecurity Vulnerability Specialist

  4 weeks ago

  ---

  Arlington, Virginia, United States Department of Homeland Security Full time

  About the RoleThe Department of Homeland Security (DHS) is seeking highly skilled professionals to support its Vulnerability Assessment program. As a key member of the team, you will play a critical role in identifying, quantifying, and prioritizing vulnerabilities across DHS, Federal, and national critical architectures, networks, applications, and...

• 

  Cybersecurity Vulnerability Analyst

  4 days ago

  ---

  Arlington, Virginia, United States Ampcus Full time

  Cybersecurity Vulnerability AnalystAt Ampcus, we are seeking a highly skilled Cybersecurity Vulnerability Analyst to join our team. As a Cybersecurity Vulnerability Analyst, you will be responsible for analyzing information from multiple sources, synthesizing that information, and providing expert analysis to senior customer stakeholders. You will utilize...

• 

  Cybersecurity Vulnerability Analyst

  3 weeks ago

  ---

  Arlington, Virginia, United States Ampcus Full time

  Cybersecurity Vulnerability AnalystAmpcus is seeking a highly skilled Cybersecurity Vulnerability Analyst to join our team. As a key member of our cybersecurity team, you will be responsible for analyzing and mitigating cybersecurity vulnerabilities to reduce the risk of cyber attacks.Responsibilities:Analyze and assess cybersecurity vulnerabilities to...

• 

  Cybersecurity Vulnerability Analyst

  3 weeks ago

  ---

  Arlington, Virginia, United States Ampcus Full time

  Cybersecurity Vulnerability AnalystAmpcus is seeking a highly skilled Cybersecurity Vulnerability Analyst to join our team. As a Cybersecurity Vulnerability Analyst, you will play a critical role in analyzing and mitigating cybersecurity vulnerabilities to reduce the risk of cyber attacks.Responsibilities:Conduct thorough vulnerability assessments and risk...

• 

  Cybersecurity Vulnerability Analyst

  3 days ago

  ---

  Arlington, Virginia, United States Ampcus Full time

  Cybersecurity Vulnerability AnalystAt Ampcus, we are seeking a highly skilled Cybersecurity Vulnerability Analyst to join our team. As a Cybersecurity Vulnerability Analyst, you will be responsible for analyzing information from multiple sources, synthesizing that information, and providing expert analysis to senior customer stakeholders. Your creativity and...

• 

  Cybersecurity Vulnerability Analyst

  2 weeks ago

  ---

  Arlington, Virginia, United States Ampcus Full time

  Cybersecurity Vulnerability AnalystAmpcus is seeking a highly skilled Cybersecurity Vulnerability Analyst to join our team. As a Cybersecurity Vulnerability Analyst, you will play a critical role in analyzing and mitigating cybersecurity vulnerabilities to reduce the risk of cyber attacks.Responsibilities:Conduct thorough analysis of cybersecurity...

• 

  Cybersecurity Engineer

  3 weeks ago

  ---

  Arlington, Virginia, United States Cybersecurity and Infrastructure Security Agency Full time

  Job SummaryWe are seeking a highly skilled Cybersecurity and Infrastructure Security Agency General Engineer to join our team. As a key member of our National Risk Management Center, you will play a critical role in developing solutions to complex problems related to critical infrastructure.Key ResponsibilitiesApply futures and strategic foresight methods to...

• 

  Cybersecurity Engineer

  3 weeks ago

  ---

  Arlington, Virginia, United States Cybersecurity and Infrastructure Security Agency Full time

  Job SummaryWe are seeking a highly skilled Cybersecurity and Infrastructure Security Agency Engineer to join our team at the Cybersecurity and Infrastructure Security Agency. As a key member of our team, you will be responsible for developing and implementing engineering solutions to protect critical infrastructure systems from cyber threats.Key...

• 

  Vulnerability Assessment Specialist

  4 weeks ago

  ---

  Arlington, Virginia, United States Department of Homeland Security Full time

  Job SummaryThe Department of Homeland Security (DHS) is seeking a skilled professional to support a range of technical roles in Vulnerability Assessment, including Vulnerability Assessment Subject Matter Expert, Supply Chain Risk Management (SCRM) Assessor, Cyber Hygiene Assessor, Penetration Assessment Subject Matter Expert, and Penetration Tester.This...

• 

  Vulnerability Researcher

  2 weeks ago

  ---

  Arlington, Virginia, United States Two Six Technologies Full time

  Unlock Your Potential in Cybersecurity ResearchAt Two Six Technologies, we're pushing the boundaries of what's possible in cybersecurity and vulnerability research. As a Vulnerability Research Intern, you'll be part of a dynamic team that's dedicated to solving the world's most complex challenges.Key Responsibilities:Collaborate with our team of experts to...

• 

  Cybersecurity Engineer III

  3 days ago

  ---

  Arlington, Virginia, United States Red Gate Group Full time

  Job OverviewAt Red Gate Group, we're seeking a seasoned Cybersecurity Engineer III to support DARPA's Adaptive Capabilities Office (ACO). This role involves working closely with military services to address critical national security challenges.Key ResponsibilitiesDevelop and implement cybersecurity policies, including Assessment and Authorization...

• 

  Cybersecurity Engineer II

  4 weeks ago

  ---

  Arlington, Virginia, United States Red Gate Group Full time

  Job SummaryWe are seeking a highly skilled Cybersecurity Engineer to join our team at the Red Gate Group. As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining the security of our systems and networks.Key ResponsibilitiesDevelop and implement cybersecurity policies and procedures to ensure the security of our...

• 

  Cybersecurity Engineer

  1 week ago

  ---

  Arlington, Virginia, United States Gray Tier Technologies LLC Full time

  Cybersecurity AnalystGray Tier Technologies LLC is seeking an experienced Cybersecurity Analyst to support the implementation and administration of information security policies, procedures, and technologies to ensure the protection of systems, applications, and data in support of the Compartmented Enterprise Services Office (CESO) program.The team will...

• 

  Cybersecurity Engineer II

  1 week ago

  ---

  Arlington, Virginia, United States Red Gate Group Full time

  Job OverviewAt Red Gate Group, we're committed to delivering exceptional services to our clients. To achieve this, we're seeking a highly skilled Cybersecurity Engineer to join our team.Key ResponsibilitiesDevelop and implement cybersecurity policies, ensuring compliance with Assessment and Authorization requirements.Design, implement, and monitor...

• 

  Cyber Vulnerability Consultant

  2 weeks ago

  ---

  Arlington, Virginia, United States Booz Allen Hamilton Full time

  Cyber Vulnerability ConsultantBooz Allen Hamilton is seeking a highly skilled Cyber Vulnerability Consultant to support research programs at the Defense Advanced Research Projects Agency (DARPA) for the Information Innovation Office (I2O). As a Cyber Vulnerability Consultant, you will serve as a strategic technical consultant, providing Science and...

• 

  IT Specialist

  3 days ago

  ---

  Arlington, Virginia, United States Cybersecurity and Infrastructure Security Agency Full time

  Cybersecurity and Infrastructure Security Agency IT Specialist Job DescriptionAt the Cybersecurity and Infrastructure Security Agency, we are seeking a highly skilled IT Specialist to join our team. As an IT Specialist, you will play a critical role in supporting the agency's mission to protect the nation's critical infrastructure and cybersecurity.Key...

• 

  Senior Cybersecurity Engineer

  2 weeks ago

  ---

  Arlington, Virginia, United States Nightwing Full time

  Cybersecurity Expert WantedNightwing, a leading provider of cybersecurity and intelligence services, is seeking a highly skilled Cybersecurity Engineer to join our team. As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining secure systems and networks to protect our clients' sensitive information.Key...

• 

  Cybersecurity Vulnerability Analyst

  1 week ago

  ---

  Arlington, Virginia, United States Erias Ventures Full time

  Job DescriptionErias Ventures is a dynamic and entrepreneurial-minded company that values creative problem-solving, open communication, and empowering employees to make decisions and contribute new ideas.We are seeking a skilled Cybersecurity Vulnerability Analyst to join our team. As a key member of our cybersecurity team, you will conduct research and...

• 

  Senior Cybersecurity Specialist

  4 days ago

  ---

  Arlington, Virginia, United States Nightwing Full time

  Cybersecurity Expert WantedAt Nightwing, we are seeking a highly skilled Cybersecurity Engineer to join our team. As a Cybersecurity Engineer, you will be responsible for designing and implementing secure systems and networks to protect our clients' sensitive information.Key Responsibilities:⁠ ⁠Design and implement secure systems and networks⁠ ...

Cybersecurity Application Security Vulnerability Engineer

2 months ago

---

Arlington, United States General Motors Full time

Overview

Opportunity to work in a hybrid model: Potential to work 4 days onsite and 1 day remote

Why GMF Cybersecurity?

Our Cybersecurity team is tasked with the security engineering, regulatory response, third party risk, and incident response capabilities necessary to secure GM Financial, the captive auto finance subsidiary of General Motors. Reporting directly to the CEO, our Cybersecurity team enjoys unprecedented support to deliver the highest level of security capabilities using cutting edge technologies and automating mundane tasks, allowing our teams to focus on interesting and rewarding security work. As a part of GM, you'll have the opportunity to work on Cybersecurity projects across financial services, automotive, manufacturing, high-tech, and military industries. We are looking for team players who want the freedom to innovate leading edge capabilities to join our growing Cybersecurity team.

Responsibilities

About the role:

The Cybersecurity Engineer is responsible for performing and evaluating vulnerability scanning, reporting detection results, maintaining scanning systems and procedures; and identifying and mitigate threats to the enterprise network, technical assets, applications, and enterprise users. This team member will identify core requirements, design, and implement security technologies, and work with stakeholders to perform ongoing tuning and alerting on those technologies. Security technologies may include, but are not limited to: vulnerability scanners, Data Loss Prevention (DLP), Security Incident Event Management (SIEM), User Behavior Analytics, Host Intrusion Prevention (HIPS), Web Application Firewall (WAF), DevSecOps Pipelines, and Web/Email Gateway. This team member will be responsible for both technical implementation of systems and communication of security requirements to management and security leadership. Additionally, this team member will be responsible, as necessary, with assisting in investigations into security threats.

JOB DUTIES

• Perform software vulnerability scanning and source code analysis using security testing tools and processes used to expose known and undocumented vulnerabilities in various information systems.
• Conduct source code reviews and software penetration tests to confirm existence of vulnerabilities and communicate findings to support teams for resolution.
• Develop vulnerability data analysis and reporting tools using Python 3, Node.js, React, Express, SQL and other coding technologies as required.
• Using strong interpersonal skills to articulate vulnerabilities to technical and not-technical audiences
• Provide technical understanding of vulnerabilities and exploits using knowledge of coding frameworks and web and cloud application infrastructure (Application Servers, Web Servers, APIs, etc).
• Provide knowledge and support for software and web application migration devices (WAF, API gateways, etc.)
• Using creative thought, technical understanding of exploits, and attacker behaviors provide additional details on how software applications are at risk of penetration.
• Creation of vulnerability reports and metrics to disseminate to groups based on operational hierarchies.
• Prior coding experience in web development
• Prior experience in cloud development, CICD, or DevOps

Qualifications

What makes you a dream candidate?

• Strong technical skills and hands on experience in information security as it relates to server security, client security, user security, network communications, and data storage.
• Practical experience implementing vulnerability security solutions and performing initial tuning and monitoring in the environment.
• Proven expertise developing custom rule sets for tools to identify specific attacks and exploits based on feedback and requirements from business stakeholders including Compliance and Legal Counsel.
• Practical experience scaling vulnerability detection solutions to meet enterprise sizing requirements and performing tuning to manage the amount of alerting that occurs.
• Strong code development skills in one or more of the following: Python 3, Node.js, React, Express, and SQL.
• Strong knowledge of core Information Technology concepts such as TCP/IP networking, Windows & Active Directory, Unix/Linux, Mainframe, Cloud Service Providers, Relational Databases, Data Warehouses, and filesystems.
• Strong knowledge of IT and cloud technologies and methods to secure them, specifically for applications databases, storage area networking, cloud-based storage, and data warehouses.
• Practical experience with data loss, data privacy, regulatory requirements.
• Strong knowledge of the OSI model and security that is associated with each layer.
• Strong understanding of Software Development Lifecycle (SDLC) methodologies.

• Experience in setting appropriate priorities for tasks to be accomplished based on project plans and management priorities are required.
• Proven ability to communicate across multiple levels of stakeholders.
• Ability to interpret and document business and technical requirements.
• Good interpersonal, verbal, and written communication skills.
• Detail oriented with good time and analytical skills.
• Ability to exercise prudent judgment and offer knowledgeable advice.
• Ability to read source code from various languages and understand program logic.
• Ability to work both independently and in a team environment.
• Ability to manage multiple projects and tasks.
• Ability to manage production sensitive situations
• Be a reputable representative of the department

Education & Experience

• A minimum of 1-5 years of experience in large and complex business environments with a successful track record working directly with senior level management with at least 1 year of experience in one or more of the following domains: Cybersecurity, Information Security, Network Engineering, or Network Operations, Information Technology, Application Development.
• Prior experience in Cybersecurity Vulnerability Management strongly preferred.
• A minimum of 1 - 3 years of code development in one or more of the following: Python, Node.js, React, Express.
• A minimum of 1 -3 years of utilization of Linux based systems.
• Hands on experience supporting security requirements of a large, global enterprise environment.
• Bachelor's Degree or equivalent experience strongly preferred
• Cybersecurity related certifications strongly preferred

What We Offer: Benefits effective day 1, 401K, Bonding leave for new parents (12 weeks, 100% paid), Pet insurance, training, certifications

Our Culture: Our team members define and shape our culture - an environment that welcomes innovative ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work - we thrive.

Compensation: Competitive pay

Work Life Balance: Flexible hybrid work environment. 4 days onsite, 1 remote day

Benefits Package: Generous benefits package

---

Report this job