Full Stack Cybersecurity Engineer IIBAM Tech • Arlington, VA, United States

Full Stack Cybersecurity Engineer II

BAM Tech • Arlington, VA, United States

1 day ago

Job type

Full-time

Job description

Full Stack Cybersecurity Engineer II

BAM is a dynamic, multi-disciplinary firm with leading-edge skills in information technology, software development and applied research. Serving government and commercial markets, BAM is committed to its customers and to delivering strong leadership, sound solutions, and innovative thinking.

BAM is seeking a Full Stack Cybersecurity Engineer II to join its team. The Full Stack Cybersecurity Engineer II will play a pivotal role in building secure, scalable applications that protect critical systems and data. This mid-level position blends full stack development expertise with a strong cybersecurity focus, ensuring our platforms remain resilient against evolving threats. Collaborating across IT, DevOps, and compliance teams, you’ll help shape secure system design and strengthen our organization’s overall security posture.

Key Responsibilities :

Develop and maintain full-stack applications using modern frameworks (e.g., Angular, .NET).
Design and implement cloud-native solutions on platforms such as AWS, Azure, or Google Cloud.
Collaborate with scrum team members to deliver intuitive and responsive user interfaces.
Build and manage RESTful APIs and microservices.
Implement and maintain secure CI / CD pipelines with automated security testing and policy enforcement.
Ensure application security, scalability, and performance.
Troubleshoot and resolve technical issues across the stack.
Participate in code reviews and contribute to best practices and standards.
Document system architecture, workflows, and development processes.

Design, implement, and manage application security solutions including SAST / DAST / IAST tools, dependency scanning, container security, and security orchestration platforms.

Conduct application security assessments and code reviews.

Support incident response activities for application security events, including investigation, containment, and recovery.

Develop and maintain secure coding standards and DevSecOps policies

Collaborate with development and infrastructure teams to ensure secure application configurations and deployment practices.

Assist in compliance efforts for standards such as RMF, NIST SP 800-53, and CMMC as they relate to application security.

Participate in threat modeling, security architecture reviews, and secure design sessions.

Stay current with emerging application threats, vulnerabilities, and secure development practices.

Required Qualifications :

Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field.

5+ years of experience in full-stack development.

Proficiency in front-end technologies (HTML, CSS, JavaScript, Angular).

Experience with back-end development (.NET, Node.js, Python).

5+ years of experience in application security engineering or DevSecOps roles.

Hands-on experience with application security tools and platforms (e.g., Veracode, Checkmarx, SonarQube, Snyk, Aqua Security).

Strong understanding of secure software development lifecycle (SDLC), application security principles, and container security.

Familiarity with security frameworks and compliance standards (e.g., NIST, ISO, CIS) and their application to software development.

Excellent analytical and problem-solving skills with a focus on application-layer security.

Preferred Qualifications :

Certifications such as CISSP, CSSLP, Security+, or GIAC (GWEB, GWAPT).

Experience with cloud security (AWS, Azure, GCP) and cloud-native application security.

Experience with serverless architectures and event-driven design.

Deep knowledge of DevSecOps practices, CI / CD security, and infrastructure as code security.

Experience in government contracting or regulated industries with secure development requirements.

Familiarity with scripting languages (e.g., Python, PowerShell) for automation.

This is a remote role.

SBIR

Create a job alert for this search

Cybersecurity Engineer • Arlington, VA, United States

Related jobs

Cybersecurity Engineer

Veracity • Washington, DC, United States

Full-time

DESCRIPTION OF RESPONSIBILITIES.Responsible for supporting the operations of cybersecurity personnel, applications, and appliances employed to defend the cyber terrain, to include but not limited t...Show more

Last updated: 5 days ago • Promoted

Cybersecurity Engineer (DOTCOM )

PLANIT Group • Washington, DC, United States

Full-time

Cybersecurity Engineer (DOTCOM ).Cybersecurity Engineer (DOTCOM ).Cybersecurity Engineer (DOTCOM.Federal customer in the Washington, DC area. The ideal candidate will work as part of a small cross-f...Show more

Last updated: 4 days ago • Promoted

Cybersecurity Engineer

HugoNet • Washington, DC, United States

Full-time

Responsible for performing tasks to ensure applications, systems, and networks satisfy cybersecurity requirements.This includes planning, implementing and maintaining controls to ensuring the avail...Show more

Last updated: 9 days ago • Promoted

Cybersecurity Engineer

The Johns Hopkins University Applied Physics Laboratory • Laurel, MD, United States

Temporary

Do you want to contribute your technical expertise to U.Nation from highly capable and motivated nation-state adversaries?. Would you enjoy shaping and conducting a varied portfolio of activities, s...Show more

Last updated: 29 days ago • Promoted