Application Security Engineer

Tysons Corner, VA


Apply Save

Type: Contract

Category: Security

Industry: Financial Services

Reference ID: JN -022026-105561

Date Posted: 02/17/2026

Shortcut: http://careers.eliassen.com/d8dHIn


Description:

Hybrid 3 days onsite in Tysons Corner, VA

 

A private, non‑governmental entity that functions as a self‑regulatory organization, responsible for oversight, enforcement, and dispute resolution within the securities industry, following the consolidation of earlier regulatory organizations. The organization is currently seeking an Application Security Engineer to support its technology and security initiatives.

 

We can facilitate w2 and corp-to-corp consultants. For our w2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance.

 

Rate: $70.00 to $80.00/hr. w2

 


Responsibilities:

Responsibilities

  • Perform security assessments and manual application penetration testing using Burp Suite and related proxy tools.
  • Triage SAST, DAST, and IAST results to identify, prioritize, and support remediation of vulnerabilities.
  • Integrate application security controls into CI/CD pipelines to support DevSecOps.
  • Maintain documentation for findings, remediation plans, and compliance requirements.
  • Develop and interpret security policies and procedures and participate in compliance efforts.
  • Develop and deliver general security awareness and technology-specific training for developers and assurance engineers.
  • Evaluate and recommend emerging security products and technologies.
  • Leverage GenAI technologies to scale security reviews and automate code analysis.
  • Evaluate application security tools and capabilities including SAST, DAST, IaC, and secrets detection.
  • Monitor and stay current with emerging security threats and countermeasures.
  • Conduct AWS configuration reviews.

Experience Requirements:

Experience Requirements

  • 5+ years of experience in cybersecurity and application security.
  • Hands-on experience with SAST, DAST, and IAST tools.
  • Proficiency with manual application penetration testing using Burp Suite or similar tools.
  • Strong knowledge of OWASP Top 10 issues and remediation practices.
  • Understanding of AWS services and security configurations.
  • Experience integrating security into CI/CD using tools such as Jenkins and GitLab.
  • Proficiency in one or more programming languages, with Java, Python, or JavaScript preferred.
  • Strong background in security engineering, system and network security, authentication and security protocols, cryptography, and application security.
  • Experience with infrastructure or application-level vulnerability testing and auditing.
  • Experience consistently implementing security solutions.
  • Familiarity with GenAI tools (preferred).
  • Software development background (preferred).
  • Certifications such as GWAPT, OSWE, or Burp Suite Certified Practitioner (preferred).

Education Requirements:

Education Requirements

  • Bachelor's degree in computer science, computer engineering, or a related technical field.
  • Certifications such as GWAPT, OSWE, or Burp Suite Certified Practitioner.
  • AWS-related certifications (preferred).

Recruitment Transparency Notice
 
Eliassen Group values transparency in our recruitment practices. Please be advised that Eliassen Group utilizes artificial intelligence (AI) tools as part of its initial application screening process. You may receive email and SMS notifications from the Eliassen Virtual Recruiting Team (noreply@eliassen.com, 781-808-2924) inviting you to complete a brief voice screening as part of your application process. These tools assist our hiring teams in different ways, including but not limited to, assistance in reviewing application materials to help identify candidates whose qualifications most closely match the requirements of the position. All AI-assisted evaluations and responses are reviewed by human recruiters before any hiring decisions are made. The use of AI in our process is intended to support fairness, efficiency, and consistency, and Eliassen Group takes measures to prevent bias or discrimination in connection with its hiring practices. By proceeding, you acknowledge, agree, and consent to Eliassen Group’s use of these tools, including AI tools, as part of the application and hiring process.
 
Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range.

W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), dental, vision, pre-tax accounts, other voluntary benefits including life and disability insurance, 401(k) with match, and sick time if required by law in the worked-in state/locality.
Please be advised- If anyone reaches out to you about an open position connected with Eliassen Group, please confirm that they have an Eliassen.com email address and never provide personal or financial information to anyone who is not clearly associated with Eliassen Group. If you have any indication of fraudulent activity, please contact InfoSec@eliassen.com.
 
About Eliassen Group:
 
Eliassen Group is a leading strategic consulting company for human-powered solutions. For over 30 years, Eliassen has helped thousands of companies reach further and achieve more with their technology solutions, financial, risk & compliance, and advisory solutions, and clinical solutions. With offices from coast to coast and throughout Europe, Eliassen provides a local community presence, balanced with international reach. Eliassen Group strives to positively impact the lives of their employees, clients, consultants, and the communities in which they operate.
 
Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
 
Don’t miss out on our referral program! If we hire a candidate that you refer us to then you can be eligible for a $1,000 referral check!
 

  • Security Analyst

     Washington, DC

    Description: Hybrid 3 days onsite / 2 days remote in Rockville, MD or Tysons Corner, VA Our client is a leading independent regulatory organization overseeing brokerage firms and registered financial professionals for compliance with federal securities...

    Date Posted: 02/17/2026 Recommended

  • Cybersecurity Architect

     Tustin, CA

    Description: Onsite in Tustin, CA Our client seeks an experienced Security Architect with prior experience in law enforcement, government, or public safety IT environments and familiarity with CJIS, NIST, FedRAMP, or state compliance frameworks. Due to...

    Date Posted: 02/13/2026 Recommended

  • AI Engineer

     Pittsburgh, PA

    Description: Hybrid 3 days onsite, 2 days remote in Pittsburgh, PA Our client is scaling enterprise generative AI and agent-based solutions across business functions. The team operates across data, application, and AI layers, emphasizing secure archite...

    Date Posted: 02/10/2026 Recommended

  • Senior Business Data Analyst

     Westlake, TX

    Description: Hybrid Every other week onsite/5 days in either Westlake, TX, Smithfield, RI or Merrimack, NH Our client is seeking a Senior Business Data Analyst to drive the enablement of large-scale, event-driven platforms and services. In this role, y...

    Date Posted: 01/25/2026 Recommended

  • Senior Cybersecurity Engineer

     Washington dc, DC

    Description: Hybrid 2-3 days onsite in Washington, DC Our client seeks a senior cybersecurity engineer to deliver NSA CSfC-compliant architectures for secure communications in classified environments. The role drives implementation of Data-at-Rest and ...

    Date Posted: 02/10/2026 Recommended

  • Senior Cloud Application Engineer

     Cincinnati, OH

    Description: Onsite in Cincinnati, OH Our client is a large U.S. financial institution headquartered in Cincinnati with extensive branch and ATM networks across multiple states. The organization ranks on the Fortune 500 and is among the largest banks i...

    Date Posted: 02/01/2026 Recommended

  • Sr. Network Engineer

     Anaheim, CA

    Description: Onsite in Anaheim, CA Our client is a large, member-focused financial services cooperative serving Southern California, offering comprehensive financial services across many branches. The organization provides broad access to ATMs and digi...

    Date Posted: 02/06/2026 Recommended

  • AI Cyber Defense Engineer

     Anywhere

    Description: Remote Our client is a large U.S. financial institution headquartered in Cincinnati, Ohio, operating over one thousand branches across multiple states. The organization is a Fortune 500 company and one of the largest banks in the United St...

    Date Posted: 02/21/2026 Recommended

  • Infrastructure Architect

     Santa Ana,, CA

    Description: Onsite in Santa Ana, CA The Infrastructure Architect will work on-site to lead enterprise IT architecture strategy, design hybrid cloud infrastructure, ensure compliance with public safety standards such as CJIS, and act as a senior techni...

    Date Posted: 02/13/2026 Recommended

  • Senior DevOps Engineer

     Westlake, TX

    Description: Hybrid Every other week onsite/5 days in Westlake, TX We are seeking a DevOps Engineer to support software delivery pipelines with an emphasis on CI/CD oversight, automation, cross-team release management, and security for tools such as Je...

    Date Posted: 02/21/2026 Recommended

  • Software Engineer

     Merrimack, NH

    Description: Hybrid 2 weeks per month onsite in Merrimack, NH The Common Platform Solutions team within Asset Management provides standardized technology stacks, frameworks, and reusable components that accelerate delivery. This role reports to a direc...

    Date Posted: 02/05/2026 Recommended

  • Security Administrator

     Cincinnati, OH

    Description: Hybrid 4 days week onsite, then 3 days onsite/2 remote in Cincinnati, OH We are hiring a Security Administrator for our client, a leading plumbing, sewer, and water damage company headquartered in Cincinnati, Ohio. The role will secure ent...

    Date Posted: 02/03/2026 Recommended

  • Information Security Engineer (Ping Identity)

     Anywhere

    Description: Remote Our client is a large U.S. financial institution headquartered in Cincinnati, Ohio, with a broad regional branch and ATM network across multiple states. The organization is a principal subsidiary of a public bank holding company and...

    Date Posted: 02/08/2026 Recommended

  • Site Reliability Engineer

     Westlake, TX, NC

    Description: Hybrid Every other week onsite/5 days in either Westlake, TX or Merrimack, NH We have an excellent opportunity to join our client as a Site Reliability Engineer in a dynamic environment. This 12-month contract, with likelihood of extension...

    Date Posted: 02/18/2026 Recommended

  • Principal Systems Analyst

     Merrimack, NH

    Description: Hybrid Every other week onsite/5 days in either Merrimack, NH or Smithfield, RI Our client seeks a Principal Systems Analyst to lead entitlement strategy and identity governance across enterprise platforms. The role will align access model...

    Date Posted: 02/14/2026 Recommended

  • Senior Integrator- Windows Server Engineering

     Washington, DC

    Description: Onsite in Washington, DC Our client is a premier technology integrator delivering technical, engineering, intelligence, and enterprise IT solutions. The organization designs, develops, and sustains offerings that support diplomatic mission...

    Date Posted: 01/26/2026 Recommended

  • Cybersecurity Firewall Analyst

     Charlotte, NC

    Description: Hybrid 3 on in Charlotte, NC We have an opportunity to join our client as a Cybersecurity Firewall Analyst on a 12-month contract with likelihood to extend. The organization is a stable and growing enterprise where consultants have deliver...

    Date Posted: 02/21/2026 Recommended

  • Mid-Level Google Cloud Platform Engineer

     Washington, DC

    Description: Onsite in Washington, DC The organization seeks a Google Cloud Platform Engineer who will blend administration, engineering, and customer engagement to enable large-scale migrations and integrations from Microsoft 365 to Google Cloud. The ...

    Date Posted: 02/12/2026 Recommended

  • Technical Lead

     Charlotte, NC

    Description: Hybrid 3 On in Charlotte, NC The organization seeks a Technical Lead to provide technical direction and architectural leadership for backend platform services, application integrations, and data-driven systems. The role will partner with s...

    Date Posted: 02/18/2026 Recommended

  • Senior Full Stack React.js / Node.js Developer

     Englewood, CO

    Description: Hybrid 4 days on-site in Englewood, CO The organization is a leading telecommunications and media provider serving over 26 million customers across 41 states under a nationally recognized brand. It ranks among the largest cable and pay TV ...

    Date Posted: 02/19/2026 Recommended

  • GRC Business Analyst

     Boston, MA

    Description: Hybrid Tues, Wed, Thurs onsite in Boston, MA Our client is an American real estate investment trust that owns, develops, and operates wireless and broadcast communications infrastructure across several countries. The organization enables s...

    Date Posted: 02/20/2026 Recommended

  • Tactical Network Engineer

     Wahiawa, HI

    Description: Onsite in Wahiawa, HI Our client supports tactical communications modernization for defense stakeholders by delivering systems engineering, integration, and field support across ATH, OTM, and SATCOM networks. The team coordinates closely w...

    Date Posted: 02/12/2026 Recommended

  • Software Engineer

     Austin, TX

    Description: Hybrid 2-3 days onsite in Austin, TX We’re looking for a Software Engineer to join our Enterprise Integrations Team. In this role, you’ll design, build, and maintain integration workflows between internal systems and a variety of SaaS appl...

    Date Posted: 02/11/2026 Recommended

  • Java Backend Services Developer

     Cincinnati, OH

    Description: Onsite in Cincinnati, OH Our client is a large U.S. financial institution headquartered in Cincinnati with a significant branch and ATM footprint across multiple states. The organization is a Fortune 500 company and one of the largest bank...

    Date Posted: 01/25/2026 Recommended

  • Senior Technical Lead

     St. Louis, MO

    Description: Hybrid 3 days in office/week in St. Louis, MO Our client is a leading regional retailer and ranks among the top privately held organizations in the United States. The team focuses on emerging technologies that advance in-store automation, ...

    Date Posted: 02/15/2026 Recommended

  • Mid Systems Engineer, CyberArk

     Washington, DC

    Description: Onsite in Washington, DC Our client is a premier technology integrator delivering technical, engineering, intelligence, and enterprise IT solutions. The organization designs, develops, and sustains offerings that empower missions across do...

    Date Posted: 02/11/2026 Recommended

  • Sr. Telecommunications Design Engineer III

     Washington dc, DC

    Description: Onsite in Washington, DC As a Sr. Telecommunications Design Engineer III, you will serve as a senior authority for O&M and long-range planning while delivering hands-on technical leadership. Our client is focused on people and builds high-...

    Date Posted: 02/11/2026 Recommended

  • Sr. Senior Platform Engineer III

     Washington dc, DC

    Description: Onsite in Washington dc, DC The organization is pursuing a Sr. Senior Platform Engineer III to support mission-critical federal workloads through Kubernetes platform engineering, CI/CD, and infrastructure automation. The role operates with...

    Date Posted: 02/11/2026 Recommended

  • Backend Software Engineer

     Charlotte, NC

    Description: Hybrid 3 days onsite in Charlotte, NC Our client is a Fortune 500 electric power company serving approximately 7.4 million customers across six states in the Southeast and Midwest. Headquartered in Charlotte, NC, the organization offers lo...

    Date Posted: 02/21/2026 Recommended

  • Network Engineer SME

     Cambridge, MA

    Description: Hybrid 3 days per week in Cambridge, MA The organization is a premier technology integrator across engineering, intelligence, and enterprise IT, employing approximately 15,000 professionals worldwide. It designs, develops, and sustains sol...

    Date Posted: 01/26/2026 Recommended

Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status. Eliassen Group’s Affirmative Action Plan (AAP) is available for inspection by any employee or applicant for employment upon request, during normal business hours of Monday through Friday, 8:30am to 5:30pm EST. Interested persons should contact Phaedra Wells at pwells@eliassen.com for assistance. It is unlawful in Massachusetts and Maryland to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Applicants with disabilities that believe they require an accommodation or assistance with a position, please email our HR team at hradmin@eliassen.com. This email inbox is designed exclusively to assist job seekers whose disability prevents them from being able to apply online. Emails sent for other purposes will not receive a response.


Please be advised that a number of fraudulent job postings have been released under the Eliassen Group brand.

Unfortunately, fraudulent job postings can happen. If anyone reaches out to you about an open position connected with Eliassen Group, never provide personal or financial information to anyone who is not clearly associated with Eliassen Group

If anyone seemingly from Eliassen Group has ever requested this personal information in the past or does so in the future, please contactInfoSec@eliassen.com.

Please ensure that you are working directly with us by confirming the following:

  • When you work with Eliassen Group, all email communication will come from an Eliassen.com address, never Gmail, Yahoo, etc.
  • Eliassen Group will never ask you for personal information (home address, bank account, or check routing number) until you have worked with someone clearly associated with Eliassen Group, as indicated above