Application Security and Compliance Engineer

(Remote Full-Time)

Occasional travel to NYC if required

Company Information:

NexGen Technologies Inc. is a leading IT services firm specializing in delivering innovative high-quality solutions to our federal government clients. Our core competencies include IT professional support services software development cloud services IT Operations Agile project management and GIS services.

Job Summary:

We are looking for an Application Security and Compliance Engineer to lead security validation of Power Platform and web-based application deliverables. This individual will have a strong understanding of secure coding practices vulnerability types and remediation techniques. This position will work closely with members of NexGens internal and client teams including but not limited to subject matter experts technical leads and project managers to ensure customer satisfaction and drive innovative solutions while maintaining security standards. This position is remote.

Supervisory Responsibilities:

• There are no supervisory responsibilities.

Essential Duties and Responsibilities (as assigned):

• Conduct static and dynamic code analysis using SonarQube Veracode OWASP ZAP or equivalent tools.
• Maintain and report on secure code health metrics.
• Review CI/CD pipelines and implement DevSecOps practices.
• Manage source code inventory documentation and component checklists for final delivery.
• Ensure full compliance with technical and governance standards.
• Collaborate with developers and solution architects to resolve vulnerabilities before handoff.
• Support audit readiness and contribute to knowledge transfer documentation.
• Compile and inventory all app components scripts and configurations.
• Validate the final package against functional and non-functional requirements.
• Conductsecurity scanningusing tools likeSonarQube Veracode and/or OWASP ZAP.
• Ensure all code passes security and quality thresholds before acceptance.
• Maintain traceability and audit logs of commits and approvals.
• Package and transfer full source code and documentation to GitHub or storage repository.
• Other duties may be assigned.

Technical Skills:

• 5 years of application security experience (DevSecOps AppSec or Secure SDLC).
• Familiarity with Git-based repositories and code deployment practices.
• Hands-on experience with one or more of the following: SonarQube Veracode OWASP ZAP Checkmarx.
• Excellent documentation and compliance reporting skills.

Preferred Skills:

• Experience with Power Platform Azure DevOps or Microsoft cloud stack preferred.
• Prior work on government projects or education clients (K12).
• Familiarity with technical and governance standards.
• Experience working with Waterfall delivery teams in regulated environments.

Education and Certifications:

• Bachelors degree in Management Information Systems Computer Science or related discipline.

Physical Requirements:

• Must be able to remain in a stationary position 50% of the time.
• Must be able to consistently use a keyboard mouse computer and other office productivity tools.
• Must be able to speak and hear using online meeting tools such as Zoom and Teams and be comfortable on and off camera for videoconferencing calls.
• For remote positions a minimum standard internet speed for optimal performance of 50 x 25 (50 MBPS download x 25 MBPS upload) is required.
• For remote positions a dedicated workspace free from ongoing interruptions is required to protect sensitive but unclassified federal information.

Additional Requirements:

• Exceptional written and verbal communication skills with a keen eye for detail and clarity.
• The successful candidate will also be able to pass background screening prior to employment.
• US Citizenship or legal permanent residence or US work authorization with minimum 3 years of continuous US presence is required due to federal contract requirements.

NexGen Technologies Inc. is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

Compensation: $45 to $60 per hour (Dependent on Experience)

(Last Revision:)