Application Security Engineer job opportunity at SciTec.



Date2026-02-03T22:16:39.992Z bot
SciTec Application Security Engineer
Experience: 2-years
Pattern: Full-time
apply Apply Now
Salary:
Status:

Job

Copy Link Report
degreeGeneral
loacation Boulder, United States Of America
loacation Boulder....United States Of America

SciTec, a wholly owned subsidiary of Firefly Aerospace, is a dynamic non-traditional defense contractor that delivers advanced technologies in support of U.S. National Security and Defense. For the past forty-five plus years, we have supported Department of Defense customers by developing innovative remote sensing algorithms, tools, and techniques to deliver world-class data exploitation capabilities supporting missile defense; intelligence, surveillance, & reconnaissance; space domain awareness; and aircraft survivability missions. Important Notice: SciTec exclusively works on U.S. government contracts that require U.S. citizenship for all employees. Applicants that do not meet this requirement will not be considered. SciTec has an immediate opportunity for a talented engineer to support our programs delivering Next-Generation Missile Warning software. This is a unique opportunity to join a small business delivering core capabilities for National defense. You will work within a fast-paced team delivering end-to-end software processing of Overhead Persistent InfraRed (OPIR) sensor data for Missile Warning, Missile Defense, Battlespace Awareness, and Technical Intelligence. We are seeking an Application Security Engineer to help secure mission-critical software systems by identifying, analyzing, and mitigating application-level vulnerabilities. This role focuses on hands-on security analysis, tooling integration, and working directly with software engineers to embed security into the development lifecycle. The ideal candidate combines strong technical security skills with the ability to collaborate effectively with developers in a DevSecOps environment. Responsibilities Perform application security analysis using both automated and manual techniques, including: Static code analysis (SAST) Software composition analysis (SCA) Fuzzing Manual code and design reviews Identify, analyze, and help remediate application vulnerabilities Support software engineers in integrating security considerations into system and application designs Integrate and maintain application security tooling within CI/CD and DevSecOps pipelines Design, implement, and improve continuous integration security analysis tooling Tune and maintain security tools to reduce false positives and improve signal quality Assist development teams in understanding findings and implementing effective fixes Support threat modeling and secure design reviews Stay current with emerging vulnerabilities, attack techniques, and mitigation strategies Document findings, recommendations, and best practices Perform other duties as assigned Bachelor’s degree plus 2+ years of professional experience in cybersecurity or software development, or equivalent experience 2+ years of experience focused on application/software security Experience analyzing source code for security flaws Familiarity with secure software development practices Strong analytical, problem-solving, and communication skills Detail-oriented with strong written and verbal communication abilities Ability to qualify for and maintain a DoD or DoE Secret security clearance Ability to meet DoD 8140.01 Cyberspace Workforce Management requirements within six months of hire Good verbal and written communication skills Attention to detail Candidates who have any of the following skills will be preferred: Active DoD Secret clearance or higher Experience identifying, exploiting, and remediating application vulnerabilities Credit for published CVEs is a strong plus Proficiency in one or more programming languages such as C++, Python, JavaScript, Rust Experience configuring and operating static analysis tools (e.g., Coverity, Klocwork, SonarQube) Experience configuring and operating software composition analysis tools (e.g., Snyk, Sonatype, Anchore, JFrog Xray) Experience with fuzzing frameworks (AFL, AFL++, honggfuzz, or similar) Experience with debugging, runtime instrumentation, or reverse engineering, including tools such as: strace eBPF Ghidra or IDA Pro Familiarity with threat modeling methodologies and frameworks such as MITRE ATT&CK Experience working in DevSecOps or Agile development environments *Resumes, Cover Letters, and Applications which are generated by AI will not be considered for employment. Colorado Residents: In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.

Other Ai Matches

Staff / Sr Staff Cybersecurity Engineer Applicants are expected to have a solid experience in handling Job related tasks
Test Infrastructure Engineer Applicants are expected to have a solid experience in handling Job related tasks
Sr Staff Systems Engineer Applicants are expected to have a solid experience in handling Job related tasks
Senior Data Center Engineer Applicants are expected to have a solid experience in handling Job related tasks
Staff /Senior Staff Rust Software Engineer Applicants are expected to have a solid experience in handling Job related tasks
Integration, Verification, Test Lead Applicants are expected to have a solid experience in handling Verification, Test Lead related tasks
Senior Staff Java Developer Applicants are expected to have a solid experience in handling Job related tasks
Master Scheduler (Microsoft Project) Applicants are expected to have a solid experience in handling Job related tasks
Staff / Sr Staff DevSecOps Engineer Applicants are expected to have a solid experience in handling Job related tasks
Program Manager Applicants are expected to have a solid experience in handling Job related tasks
Staff / Sr Staff Full Stack UI Engineer Applicants are expected to have a solid experience in handling Job related tasks
Senior Storage Engineer Applicants are expected to have a solid experience in handling Job related tasks
Senior C++ Software Engineer Applicants are expected to have a solid experience in handling Job related tasks
Associate / Staff Mission Data Analyst (Clearance Required) Applicants are expected to have a solid experience in handling Job related tasks
Staff / Sr Staff C++ Software Engineer Applicants are expected to have a solid experience in handling Job related tasks
Linux System Administrator Applicants are expected to have a solid experience in handling Job related tasks
Staff / Sr Staff Cybersecurity Engineer Applicants are expected to have a solid experience in handling Job related tasks
MCS Site Reliability Engineer Applicants are expected to have a solid experience in handling Job related tasks
Senior Software Platform Engineer Applicants are expected to have a solid experience in handling Job related tasks
Principal Network Architect Applicants are expected to have a solid experience in handling Job related tasks
Staff / Sr. Staff Full Stack Developer (Clearance Required) Applicants are expected to have a solid experience in handling Job related tasks
Redhat Openshift Engineer Applicants are expected to have a solid experience in handling Job related tasks
DoD Skillbridge Internship for Transitioning Military Service Members Applicants are expected to have a solid experience in handling Job related tasks