1

Application Security Engineer Jobs in Virginia (NOW HIRING)

... Application Security Engineer, Identity and Access Management Engineer, Threat Detection Engineer, Vulnerability Management Engineer, Risk Assessment Engineer, Compliance Security Engineer, Incident ...

... Application Security Engineer, Identity and Access Management Engineer, Threat Detection Engineer, Vulnerability Management Engineer, Risk Assessment Engineer, Compliance Security Engineer, Incident ...

... Application Security Engineer, Identity and Access Management Engineer, Threat Detection Engineer, Vulnerability Management Engineer, Risk Assessment Engineer, Compliance Security Engineer, Incident ...

Perform Static Application Security Testing (SAST) toidentifypotential vulnerabilities in the ... Work with DevOps teams to securely harden Linux based machines and cloudinfrastructure Basic ...

Our client is currently seeking a Security Engineer - IV [ Additional Description ] ****Working ... Devise mitigation techniques for application and system owners. Follow up on resolution of ...

next page

Showing results 1-20

Application Security Engineer information

See Virginia salary details

$29

$65

$95

How much do application security engineer jobs pay per hour?

As of Jul 14, 2026, the average hourly pay for application security engineer in Virginia is $65.83, according to ZipRecruiter salary data. Most workers in this role earn between $56.01 and $74.86 per hour, depending on experience, location, and employer.

What Does an Application Security Engineer Do?

An application security engineer is responsible for ensuring the secure function of software application programs. For this career, you must have advanced training in cybersecurity and familiarity with multiple computer programming languages. Your main job duty is to evaluate lines of programming code to make sure a given application is safe from cyber-attack. You perform penetration testing to see if outside sources can "hack" into the application. You also do threat modeling and security code reviews of programming done by other application programmers.

What are some common challenges faced by Application Security Engineers when integrating security into the software development lifecycle?

Application Security Engineers often encounter challenges such as balancing security requirements with development speed, ensuring all team members understand secure coding practices, and keeping up with evolving threats. They frequently work closely with developers, DevOps, and QA teams to embed security controls without disrupting workflows. Overcoming these challenges requires strong communication skills, a deep understanding of both security and software development, and the ability to advocate for security as a shared responsibility across the organization.

What does an Application Security Engineer do?

An Application Security Engineer is responsible for identifying and mitigating security vulnerabilities in software applications throughout their development lifecycle. They work closely with developers to ensure secure coding practices, conduct security assessments and code reviews, and implement tools for threat detection and prevention. Their primary goal is to protect applications from threats such as data breaches, unauthorized access, and other forms of cyber attacks. They also stay updated on the latest security trends and compliance requirements to keep applications safe.

What are the key skills and qualifications needed to thrive as an Application Security Engineer, and why are they important?

To thrive as an Application Security Engineer, you need a solid background in software development, cybersecurity fundamentals, and vulnerability assessment, often supported by a degree in computer science or a related field. Familiarity with tools such as static and dynamic application security testing (SAST/DAST), penetration testing frameworks, and relevant certifications like CISSP or CEH is common. Attention to detail, problem-solving abilities, and strong communication skills help you effectively identify risks and collaborate with development teams. These skills are crucial for safeguarding applications against evolving threats and ensuring secure software delivery.

What is the difference between Application Security Engineer vs Security Analyst?

AspectApplication Security EngineerSecurity Analyst
CertificationsCEH, CISSP, OSCPCISSP, Security+
Work EnvironmentDevelops security measures, reviews code, tests applicationsMonitors security systems, investigates incidents, analyzes threats
Industry UsageTech companies, software firms, organizations with strong app focusBroad sectors including finance, healthcare, government

Application Security Engineers focus on securing software applications through code review, vulnerability testing, and implementing security measures. Security Analysts monitor and analyze security threats, respond to incidents, and maintain security systems. While both roles require security certifications and work in security-focused environments, Application Security Engineers are more involved in the development and testing of secure applications, whereas Security Analysts focus on threat detection and incident response.

What are the most commonly searched types of Application Security Engineer jobs in Virginia? The most popular types of Application Security Engineer jobs in Virginia are:
What are popular job titles related to Application Security Engineer jobs in Virginia? For Application Security Engineer jobs in Virginia, the most frequently searched job titles are:
What job categories do people searching Application Security Engineer jobs in Virginia look for? The top searched job categories for Application Security Engineer jobs in Virginia are:
What cities in Virginia are hiring for Application Security Engineer jobs? Cities in Virginia with the most Application Security Engineer job openings:
What are popular job titles related to Application Security Engineer jobs in VA? For Application Security Engineer jobs in VA, the most frequently searched job titles are:
Security Engineer (Mobile)

Security Engineer (Mobile)

gTANGIBLE

Arlington, VA

Full-time

Re-posted 11 days ago


Job description

gTANGIBLE Corporation (gTC), www.gtangible.com, is a C corporation and a registered Government contractor that provides services and solutions in:

  • National Security Programs
  • Professional, Administrative, and Management Support
  • Mission and Warfighter Support

We are a Service-Disabled Veteran-Owned Small Business (SDVOSB) and the founder has years of successful experience in the Government contracting arena. Our leadership team is an exceptional group of Government contracting professionals. gTANGIBLE is in the process of identifying candidates for the following position.

Requisition Type: Full Time

Position Status: Contingent
Position Title: Security Engineer (Mobile)

Location: Arlington, VA

Security Clearance:Secret

Duties and Responsibilities

The Security Engineer (Mobile) supports this Transportation Security Administration Information Technology (TSA IT) Task Order (TO) by participating and contributing to the design, implementation and configuration of mobile device deployment architecture. Duties include the following:

  • Develop procedures to conduct security audits and troubleshooting of new mobile devices to the TSA Network Infrastructure.
  • Become familiar with DHS and TSA policies and Technical Standards which includes providing recommendations and updates on policy gaps related to mobile device deployments, upgrades, and maintenance on the TSA Network.
  • Review of mobile application code and conduct testing using both Information Assurance & Cybersecurity Division (IAD) automated testing tools and manual techniques to identify flaws with the code base and framework. Identify weaknesses on APIs and Webservices associated with the mobile application(s). Analyzes and validates test results, removes false positives and submits to stakeholders.
  • Provides Subject Matter Expertise on emerging mobile technologies, languages, and frameworks.

Knowledge and Qualifications

  • At least ten (10) years of technical IT security experience.
  • At least five (5) years of experience performing mobile application security testing, software development and/or testing.
  • At least three (3) years of experience performing mobile application security testing using manual techniques and vulnerability testing tools and/or code review tools for Federal IT systems.
  • Knowledge and experience of mobile device security evaluation tools.
  • Extensive Knowledge of Mobile deployment for iOS, Android devices.
  • Familiar with mobile development frameworks such as ionic, Xamarin, etc.
  • Expertise with Mobile Device Management (MDM).
  • Required Certifications or other relevant certifications.
  • Experience with NIST SP 800-53.
  • Required Certifications: CISSP, CEH, GWAPT or other relevant certifications.
  • Strong organizational, analytical, and technical writing skills to be able to document findings in reports.

gTANGIBLE Corporation is an equal opportunity employer and does not discriminate against any employee or applicant because of race, age, sex, color, physical or mental disability, religion, sexual orientation, marital status, national origin, or political affiliation.

Employment Type: Full-Time