Web Application Security Subject-Matter Expert/ Technical Lead

General Dynamics Information Technology (GDIT) is seeking a knowledgeable and experienced Web Application Security Subject-Matter Expert/Technical Lead to support one of our federal customers on an enterprise cyber program in the DC metropolitan area. This hybrid position includes both remote work and periodic on-site support and meetings with the customer. The ideal candidate will demonstrate expertise in operating web vulnerability assessment tools, analyzing results, and securing various web application platforms.

HOW YOU WILL MAKE AN IMPACT

• Operate and maintain automated or manual tools to identify weaknesses such as misconfigurations, missing patches, and other security flaws in web applications.
• Analyze and interpret the results from web vulnerability assessment tools.
• Secure web application platforms including Python, PHP, Java/JavaScript, C#, and SQL.
• Prioritize vulnerability findings to ensure the most critical issues are addressed first by the SMEs.
• Develop content such as reporting and dashboards for vulnerability remediation analysis, status, and tracking.
• Advise on best practices for web application security and improvement of security posture.
• Collaborate with development and operations teams to ensure integration of security measures in the software development lifecycle.
• Stay updated with the latest web application security trends, vulnerabilities, and industry best practices to mitigate emerging threats.

REQUIRED QUALIFICATIONS

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field; or equivalent experience. and 12+ years of related experience.
• Demonstrable knowledge, skills, and experience in using and maintaining automated or manual tools to detect web application vulnerabilities.
• Proven experience operating web vulnerability assessment tools and interpreting their results.
• Strong technical background in securing web application platforms such as Python, PHP, Java/JavaScript, C#, and SQL.
• Ability to prioritize security findings to address the most critical vulnerabilities first.
• Experience in developing content for reporting and dashboards for vulnerability remediation tracking and status updates.
• Strong problem-solving and analytical capabilities for identifying and addressing web application security issues.
• Excellent verbal and written communication skills to collaborate with cross-functional teams and stakeholders.
• Prior experience in the health domain.
• Must have experience supporting a Government agency.
• Must be a US Citizen.

DESIRED QUALIFICATIONS

• Knowledge of secure coding practices and software development lifecycle.
• Familiarity with federal security regulations and compliance standards.
• Experience in creating and implementing security policies and procedures for web applications.
• Certifications such as CISSP, CEH, GIAC Web Application Penetration Tester (GWAPT), or similar are advantageous.

GDIT IS YOUR PLACE: 

• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career
• Professional scientific growth opportunities, including journal subscriptions, conference attendance, and supporting publication journey
• Cutting-edge technology you can learn from
• Rest and recharge with paid vacation and holidays

Join GDIT to lead and enhance web application security efforts for a federal organization, ensuring robust protection against cyber threats.

Apply today to become an essential part of our dedicated team!