Web Developer Security Engineer - Loch Harbour Group

Key Responsibilities

• Design, develop, and harden web applications using secure coding practices and frameworks.
• Implement and automate Secure Software Development Lifecycle (SSDLC) processes, integrating security testing into CI/CD pipelines.
• Conduct vulnerability assessments, prioritize remediation, and track fixes across mission‑critical systems.
• Maintain compliance with federal cybersecurity frameworks (e.g., NIST, FedRAMP) and produce required documentation.
• Collaborate with development, operations, and risk teams to embed security controls and promote a security‑first culture.

Requirements

• 5+ years of experience in web development with a strong focus on application security.
• Hands‑on expertise in SSDLC, DevSecOps tooling (e.g., Jenkins, GitLab CI, SAST/DAST solutions), and vulnerability remediation.
• Deep knowledge of federal cybersecurity compliance frameworks and ability to produce audit‑ready artifacts.
• Proficiency in at least one backend language (e.g., Python, Java, C#) and modern front‑end technologies.
• Strong analytical mindset, excellent communication skills, and ability to work in fast‑paced, mission‑critical environments.