Web Developer Security Engineer
Back to Jobs
DMIGet Smart Job AI Coach in the appFree on iOS and Android 






Web Developer Security Engineer
Location
Remote, US
Experience
Mid
Posted
Jul 10, 2026
Apply by
July 6, 2027
Applicants
0
Early applicantEasy applyFull-timeWork from Home
Job Description
## About DMI
DMI is a leading provider of digital services and technology solutions, headquartered in Tysons Corner, VA. With a focus on end-to-end managed IT services, including managed mobility, cloud, cybersecurity, network operations, and application development, DMI supports public sector agencies and commercial enterprises around the globe. Recognized as a Top Workplace, DMI is committed to delivering secure, efficient, and cost-effective solutions that drive measurable results. Learn more at www.dminc.com
## About the Opportunity
DMI is seeking a Web Developer Security Engineer to embed security throughout the software development lifecycle for a federal agency client. In this role, you will identify and remediate vulnerabilities in web applications and APIs, integrate security controls into application architectures, and support compliance with federal cybersecurity frameworks — functioning at the intersection of development and security.
Duties and Responsibilities:
- Identify, analyze, and remediate critical vulnerabilities, logic flaws, insecure dependencies, and misconfigurations in web applications and APIs
- Drive end-to-end vulnerability lifecycle management, including threat modeling, security assessments, and technical validation of remediation
- Integrate security controls into application architectures and APIs; advise on secure design patterns and data protection mechanisms
- Review and analyze web server and application logs to detect anomalies and indicators of compromise; implement threat intelligence automation
- Deploy, tune, and maintain Web Application Firewalls (WAF) tailored to custom-developed applications and traffic patterns
- Configure and manage File Integrity Monitoring (FIM) solutions to detect and alert on unauthorized changes to web content directories
- Implement DevSecOps principles throughout the CI/CD pipeline; develop security metrics and compliance reporting against established baselines
- Ensure web applications and cloud infrastructure comply with NIST SP 800-53, FISMA, and FedRAMP requirements; participate in audits and risk assessments
- Provide Tier II support for security operations and recommend ongoing security enhancements
## Qualifications
Education and Years of Experience:
- Bachelor's degree or higher in Computer Science, Cybersecurity, Information Systems, Engineering, or a related field
- Minimum 3 years of experience in Web Application Security, Application Security Engineering (AppSec), or SSDLC
- Proficiency in .NET (C# MVC, WCF), HTML5, CSS3, JavaScript, REST APIs, and SQL
- Strong understanding of OWASP Top 10 and secure coding standards
- Experience deploying and managing WAF solutions for custom-developed web applications
- Experience configuring FIM solutions for web content and application directories
- Familiarity with security testing tools, including Wireshark, SIEM, IDS/IPS, NDR, and EDR
- Ability to leverage AI-assisted development tools (e.g., GitHub Copilot, OpenAI API) for security automation and compliance auditing
- Experience implementing DevSecOps principles, including security gate integration in CI/CD pipelines
- Active security certifications across AppSec, offensive security, and foundational security domains, maintained for a minimum of 5 years
Required Skills & Certifications:
- In-depth experience with federal cybersecurity frameworks, including NIST SP 800-53, FISMA, and FedRAMP authorization processes
- Proven background in threat modeling, risk assessment, and security architecture design
- Advanced experience with CI/CD pipeline security gate automation
- Cloud security experience with AWS and container security (Docker, Kubernetes)
Clearance Requirements: Must possess or be eligible to obtain and complete a government security screening and/or a Secret security clearance.
Citizenship Status Required: Must be a U.S. Citizen
Physical Requirements: None required for this position.
Location: Remote, US
## Working at DMI
DMI is a diverse, prosperous, and rewarding place to work. Our culture is shaped by five core values that guide how we work, grow, and succeed together:
- Do What’s Right – We lead with honesty and integrity.
- Own the Outcome – We take responsibility and deliver.
- Deliver for Our Customers – We are relentless about delivering value.
- Think Bold, Act Smart – We innovate with purpose.
- Win Together – We collaborate and celebrate our success.
These values aren’t just ideals—they show up in how we support every part of your well-being:
- Convenience/Concierge – Virtual health visits, commuter perks, pet insurance, and entertainment discounts that make life easier.
- Development – Annual performance reviews, tuition assistance, and internal career growth opportunities to help you thrive.
- Financial – Generous 401(k) matches, life and disability insurance, and financial wellness tools to support your future.
- Recognition – Annual awards, service anniversaries, referral bonuses, and peer-to-peer shoutouts that spotlight your achievements.
- Wellness – Healthcare coverage, wellness programs, flu shots, and biometric screenings to support your health.
DMI values employees for their talents and contributions, and we take pride in helping our customers achieve their goals. Because when we live our values, we all win together.
\\\\\\\\\\\\\\\\\ No Agencies Please \\\\\\\\\\\\\\\\\
Applicants selected may be subject to a government security investigation and must meet eligibility requirements for access to classified information. US citizenship may be required for some positions.
Key Responsibilities
- Identify, analyze, and remediate critical vulnerabilities, logic flaws, insecure dependencies, and misconfigurations in web applications and APIs
- Drive end-to-end vulnerability lifecycle management, including threat modeling, security assessments, and technical validation of remediation
- Integrate security controls into application architectures and APIs; advise on secure design patterns and data protection mechanisms
- Review and analyze web server and application logs to detect anomalies and indicators of compromise; implement threat intelligence automation
- Deploy, tune, and maintain Web Application Firewalls (WAF) tailored to custom-developed applications and traffic patterns
- Configure and manage File Integrity Monitoring (FIM) solutions to detect and alert on unauthorized changes to web content directories
- Implement DevSecOps principles throughout the CI/CD pipeline; develop security metrics and compliance reporting against established baselines
- Ensure web applications and cloud infrastructure comply with NIST SP 800-53, FISMA, and FedRAMP requirements; participate in audits and risk assessments
- Provide Tier II support for security operations and recommend ongoing security enhancements
Requirements
- Bachelor's degree in Computer Science
- Cybersecurity
- Information Systems
- Engineering
- or a related field
Skills Required
Web Application SecurityApplication Security EngineeringSSDLC.NETC# MVCWCFHTML5CSS3JavaScriptREST APIsSQLOWASP Top 10Secure Coding StandardsWAFFile Integrity MonitoringSecurity Testing ToolsWiresharkSIEMIDS/IPSNDREDRAI-assisted Development ToolsGitHub CopilotOpenAI APIDevSecOpsCI/CD Pipeline SecurityAWSDockerKubernetesNIST SP 800-53FISMAFedRAMPThreat ModelingRisk AssessmentSecurity Architecture DesignProblem SolvingAttention to DetailCollaboration
Benefits
- Virtual health visits
- Commuter perks
- Pet insurance
- Entertainment discounts
- Annual performance reviews
- Tuition assistance
- Internal career growth opportunities
- 401(k) matches
- Life and disability insurance
- Financial wellness tools
- Annual awards
- Service anniversaries
- Referral bonuses
- Healthcare coverage
- Wellness programs
- Flu shots
- Biometric screenings
App exclusive · Free
Smart Job AI Coach
Your personal interview coach on every job — readiness tips, profile improvements, and role-specific prep. Available only in the Pulse Job app.
Interview readiness
See how prepared you are and what to improve for each role.
Personalized tips
Actionable suggestions based on your profile and the job.
After you apply
Keep coaching momentum from job detail through application success.
Similar roles for you
Matched using this role's title and skills. Open the job search anytime to see every listing.

Web Developer Security Engineer
MicroTech
Full-timeEasy applyWork from Office
WashingtonMid

Web Developer / Application Security (AppSec) Engineer
Assyst
Full-timeEasy applyWork from Office
Washington DCMid

Full Stack Developer (3–11+ Years Experience)
Datamatics Technologies
Full-timeWork from Office
RiyadhMid

Full Stack Developer (3–11+ Years Experience)
Datamatics Technologies
Full-timeWork from Office
BengaluruMid

Full Stack Developer (3–11 Years Experience)
Datamatics Technologies
Full-timeWork from Office
KarachiMid

Back End Developer
Datamatics Technologies
Full-timeWork from Office
KarachiMid