Web Application Security Subject Matter Expert / Technical Lead

Position Title : Web Application Security Subject Matter Expert / Technical Lead

Location : Bethesda, MD | Hybrid- Not Remote

Cybervance is a rapidly growing information security and information technology company based in Washington, D.C., and we are an equal opportunity employer. We design, develop, and manage the successful execution of training programs for government and private sector organizations. Cybervance believes in creating innovative solutions to deliver measured results.

We are seeking an experienced Web Application Security Subject-Matter Expert (SME) / Technical Lead to provide expert-level guidance and technical oversight for enterprise web application security operations. The SME will lead vulnerability assessments, secure coding reviews, and remediation strategies to protect mission-critical applications from cyber threats and ensure compliance with organizational and federal security standards.

This role requires deep hands-on experience with web application vulnerability assessment tools, application security frameworks, and remediation practices. The ideal candidate will possess both the technical depth to identify vulnerabilities and the leadership skills to drive enterprise-level mitigation and continuous improvement.

Responsibilities

• Lead web application security operations across enterprise environments, including vulnerability assessment, threat modeling, and secure application architecture reviews.
• Operate and maintain automated and manual web vulnerability assessment tools to identify misconfigurations, missing patches, insecure code, and other weaknesses that could expose applications to cyberattacks.
• Analyze and interpret vulnerability assessment results, translating findings into actionable remediation plans and risk-reduction strategies.
• Develop and implement processes for prioritizing vulnerabilities, ensuring critical weaknesses are addressed first, and remediation efforts align with organizational risk management priorities.
• Collaborate with developers, DevOps teams, and system owners to remediate findings in application code and configurations.
• Secure web application platforms built on Python, PHP, Java / JavaScript, C#, and SQL by ensuring adherence to secure coding and configuration best practices.
• Develop and maintain content and reporting mechanisms, including dashboards and metrics for vulnerability remediation progress, compliance tracking, and management reporting.
• Provide technical leadership and mentoring to cybersecurity engineers and developers on secure application development and vulnerability mitigation techniques.
• Recommend and implement enhancements to web application security tools, processes, and automation for continuous improvement.
• Stay current on emerging web vulnerabilities, exploitation techniques, and best practices for defense-in-depth and web security hardening.

Experience

Required Skills & Qualifications

Preferred Qualifications

#J-18808-Ljbffr