Dunhill Professional Search & Government Solutions

About the Company

Join our Talent Network! http://www.jobs.net/jobs/dunhillsolutions/en-us/

Dunhill Professional Search is an executive search and management recruiting firm that has assisted companies of all sizes in the selection and recruitment of top talent around the nation. We serve clients in a variety of industries including: InformationTechnology, Information Assurance, Government Contracting Solutions, Healthcare IT, CyberSecurity, Big Data, AI/NLP, IoT, Predictive Analytics, Mobile Application Development, Serious Gaming/Virtual Reality, Service-Oriented Architectures, Software as a Service (SaaS), Engineering/Manufacturing, Sales/Marketing (Enterprise/Sales Engineers), Defense/Aerospace.

Dunhill was established in 1952 and, looking back, we find that despite the increase in technology, searching for high impact talented players is still done with the same principles we’ve always employed. Networking, becoming involved and knowledgeable within a client centric industry / skill-set niche, and canvassing deep inside of organizations continue to be the most effective means to locate those hard-to-find candidates that are poised for their next career challenge.

Dunhill Professional Search has been consistently recognized by clients as one of the nation’s finest executive search firms to partner with, and is defined by the integrity and ethics provided to candidates and companies alike.

At Dunhill Professional Search, we are dedicated to helping our clients transform their businesses by finding superior leaders whose contributions translate into performance growth. With our esteemed candidates searching for a new opportunity, we offer a unique blend of becoming your career agent and advisor

Listed Jobs

Company Name

Dunhill Professional Search & Government Solutions

Job Title

Application Security Engineer

Job Description

**Job title** Application Security Engineer **Role Summary** Provide end‑to‑end application security lifecycle management, including vulnerability assessment, secure code review, penetration testing, and continuous improvement of security practices for enterprise applications. **Expectations** - Deliver actionable insights and mitigation plans that accelerate secure production deployments. - Maintain authoritative knowledge of industry standards (OWASP Top 10, SANS 25, CVE, etc.) and emerging threats. - Work with cross‑functional teams to embed secure coding practices into Agile pipelines. **Key Responsibilities** - Define, document, and enforce application security best practices. - Perform automated and manual code reviews using SAST, DAST, and OSA tools. - Conduct penetration tests and evaluate application components for security flaws. - Produce comprehensive reports detailing findings, risk severity, and remediation recommendations. - Analyze and recommend security tools, frameworks, and integrations (e.g., CI/CD, container scanning, GRC). - Mentor developers on secure coding and OWASP/ SANS guidelines. - Participate in remediation reviews and verify fix implementations. **Required Skills** - 5+ years of hands‑on experience with vulnerability management tools: BurpSuite, SonarQube, OWASP/Maven, Fortify, Tenable, STIG Viewer, AWS Security Hub, AWS Inspector, ePO, ServiceNow, Jira, Azure DevOps, eMASS. - Proficiency with SAST, DAST, OSA scanning, container, and infrastructure security. - Strong coding knowledge in at least one language (Java, .NET/C#, etc.) and familiarity with secure coding patterns. - Deep understanding of OWASP Top 10, SANS 25, CVE/Baseline vulnerability lifecycle. - Ability to translate technical findings into clear, actionable recommendations for non‑technical stakeholders. **Required Education & Certifications** - Bachelor’s degree in Computer Science, Engineering, or related technical discipline. - Security+ (or equivalent) certification. - Active Secret security clearance.

Alexandria, United states

Hybrid

Mid level

02-02-2026