Web Application Security SME/Technical Lead

Job Type

Full-time

Description

MBL Technologies, Inc. offers a diverse set of management and technology consulting services to Federal government and commercial markets. Our solutions are tailored to support each client's mission, accounting for their unique needs and operating environments to ensure success. We bring the right people, capabilities, and expertise together to assist our clients with enabling their mission. Together our individual differences drive successful business results.

If you are transitioning from military to civilian life, have prior service, are a retired veteran, or a member of the National Guard or Reserves, or spouse of an active military service member, we encourage you to apply. Please visit our webpage for information on our policies and benefits for the military and veteran community.

Why Work with Us?

• We trust, empower, and believe in our employees to soar to their fullest potential
• We offer a robust benefits package (medical, dental, vision, STD, Accident, Life, Hospital Insurance, FSA, HSA, 401K match, professional development stipend, etc.).
• We love to have fun and give back to the community. Community Service and Employee Engagement events are atop our calendar events
• We genuinely like each other and champion everyone to achieve their own greatness

MBL Technologies is seeking a Web Application Security Subject-Matter Expert (SME) / Technical Lead to provide expert technical support and leadership for a federal cybersecurity program. The SME will lead efforts to identify, assess, and mitigate vulnerabilities across web-based systems and applications, ensuring the protection of mission-critical platforms and data from cyber threats. This role requires deep technical proficiency with web application architectures, security assessment tools, and vulnerability remediation practices, as well as the ability to mentor team members and collaborate with stakeholders across the federal enterprise.

This role is mostly remote; however, it will require occasional onsite meetings in the Bethesda, MD area. With no travel reimbursements allocated. This role is contingent based on contract award.

Key Responsibilities:

• Lead the design, implementation, and management of the agency's web application security program, ensuring alignment with federal cybersecurity policies and frameworks.
• Operate and maintain automated and manual web application vulnerability assessment tools to detect weaknesses such as misconfigurations, missing patches, insecure coding practices, and other security flaws.
• Analyze, interpret, and validate scan results, providing actionable recommendations for remediation and risk reduction.
• Develop and maintain custom scripts, test cases, or configurations to enhance application vulnerability detection and validation.
• Coordinate vulnerability testing across production, staging, and development environments to ensure comprehensive security coverage.
• Serve as the primary technical lead and subject-matter expert for web application security assessments, remediation planning, and vulnerability management strategies.
• Collaborate with developers, system administrators, and cybersecurity operations teams to prioritize and remediate vulnerabilities efficiently.
• Provide guidance on secure coding practices and assist in the development of security standards for web applications and APIs.
• Prioritize findings based on exploitability, potential impact, and risk, ensuring that the most critical vulnerabilities are addressed first.
• Develop and maintain content such as reports, dashboards, and data visualizations to communicate remediation status, risk trends, and vulnerability metrics.
• Provide executive-level and technical reporting on web application security posture, remediation progress, and compliance status.
• Identify systemic weaknesses and propose long-term improvements to enhance application security controls and processes.
• Stay current with emerging web application threats, vulnerabilities, and mitigation technologies to continuously evolve program effectiveness.

Required Qualifications / Skills:

• Demonstrated experience operating and managing web application vulnerability assessment tools (e.g., Burp Suite, Acunetix, Netsparker, Qualys WAS, or OWASP ZAP).
• Strong technical understanding of web application platforms, languages, and frameworks, including Python, PHP, Java/JavaScript, C#, and SQL.
• Proven ability to analyze and interpret vulnerability scan data, develop risk-based remediation plans, and track mitigation activities.
• Experience developing reports, dashboards, and performance metrics for vulnerability management tracking and decision support.
• Excellent analytical, communication, and collaboration skills, with the ability to interface effectively with both technical teams and senior leadership.

Preferred Qualifications / Skills:

• Bachelor's degree in computer science, Information Technology, Cybersecurity, or a related field (preferred).
• Industry-recognized certifications such as CISSP, CSSLP, CEH, GWAPT, GWEB, or CompTIA Security+.
• Experience securing federal web applications and familiarity with NIST SP 800-53, FISMA, and OWASP Top 10.
• Familiarity with DevSecOps practices, CI/CD pipeline security integration, and cloud-based web application architectures (AWS, Azure, GCP).
• Prior experience supporting federal cybersecurity operations or compliance-driven environments.

MILITARY OCCUPATIONAL SPECIALTY CODES (MOS codes):

170A, 170D, 17A, 17B, 17C, 17D, 24B, 25B, 47D, 94F, IT, 17 5309, 6203, 9735, 9740, 9890, 9891

CORPORATE CITIZEN:

MBL Technologies' vision is to make a positive difference - for our people, our customers, and our communities. As such, a commitment to service and excellence has been woven into the very fabric of our culture. MBL employees demonstrate a willingness to consistently go above and beyond and strive for excellence in all we do - championing, protecting, and celebrating the core business through the mission, vision, and values. All are expected to be good corporate citizens, supporting one another and internal corporate initiatives to build a stable business platform and ensure lasting company success.

Benefits:

MBL Technologies offers a competitive salary adjusted for candidate qualifications partnered with an industry-leading benefits package. This package includes incentive plans with corporate and individual-based performance bonuses, 401K, PTO, remote work, health and wellness programs, employee discounts, and learning and development reimbursement.

EEO STATEMENT:

MBL Technologies is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, or protected veteran status.

Apply

---