cover image
VivSoft

VivSoft

www.vivsoft.io

1 Job

89 Employees

About the Company

Innovating the Public Sector with Cutting-Edge Technologies At VivSoft, we tackle complex public sector challenges with innovative solutions. We're collaborating with business leaders in federal, state, and local governments to drive mission success through DevSecOps, Cloud, AI/ML, and Blockchain Technologies. Our Impact: Transforming federal, state, and local government contracts. Partnering with cutting-edge technology and service providers to solve large-scale problems. Our Team: Our rock star engineers come from leading hyper-scale, cloud-native companies. With a unique track record of delivering productized services using Lean methodology, we've driven enterprise transformation at the DoD through AFWERX, DIU, and OTAs. Join Us: If you're passionate about cutting-edge technologies and want to work with automation geeks, AI scientists, and blockchain experts, connect with us today!

Listed Jobs

Company background Company brand
Company Name
VivSoft
Job Title
Application Security Engineer
Job Description
Job Title: Application Security Engineer Role Summary: Secure and modernize enterprise application development pipelines by integrating DevSecOps practices, automating vulnerability scanning, and enforcing rigorous security standards across the SDLC. Expactations: - Embed security controls into reusable CI/CD templates, GitHub Actions, and deployment workflows. - Serve as the primary contact for security findings review, remediation coordination, and compliance reporting. Key Responsibilities: - Review and validate security findings in GitHub Advanced Security. - Approve remediation or dismissal of identified security issues. - Collaborate with federal and FDIC security teams to develop and implement application security processes and standards. - Identify security gaps in current application architectures and design remediation strategies. - Provide guidance and training to developers on resolving security findings. Required Skills: - Bachelor’s degree in Computer Science, Engineering, Information Technology, or equivalent professional experience. - Proficiency with at least one enterprise language (Java, .NET/C#, JavaScript) for code review. - Experience integrating SAST, DAST, and SCA tools into CI/CD pipelines. - Expertise in interpreting SAST, DAST, and manual code review results. - Deep knowledge of OWASP Top 10 and other application security threats (injection, XSS, broken access control). - Understanding of security for cloud (AWS, Azure, GCP), API, and microservices architectures. Required Education & Certifications: - Bachelor’s degree in Computer Science, Engineering, IT, or related field.
United states
Remote
07-10-2025