All roles

Open role

[Remote] NIH - Application Scanning Analyst

Remote · Ethiopia Full-time

Note: The job is a remote job and is open to candidates in USA. cFocus Software Incorporated seeks an Application Scanning Analyst to join their program supporting the National Institutes of Health (NIH). This role involves performing application security assessments and vulnerability scanning to enhance application security and support enterprise vulnerability management programs.

Responsibilities

  • Perform authenticated and unauthenticated web application vulnerability scans
  • Conduct application security assessments against internally developed and commercial applications
  • Perform Dynamic Application Security Testing (DAST) and support Static Application Security Testing (SAST) activities
  • Assess APIs, web services, and middleware for security vulnerabilities
  • Conduct application configuration reviews and identify security weaknesses
  • Perform recurring vulnerability scans in accordance with Government-defined schedules
  • Analyze application scan results to identify security vulnerabilities and misconfigurations
  • Validate scan findings to eliminate false positives
  • Prioritize vulnerabilities using risk-based methodologies, including CVSS scoring and exploitability
  • Correlate application vulnerabilities with infrastructure and network risks
  • Identify critical vulnerabilities requiring immediate remediation
  • Perform root cause analysis for recurring application security issues
  • Collaborate with software development teams to improve application security
  • Provide remediation recommendations aligned with secure coding practices
  • Assist developers with vulnerability mitigation strategies
  • Support integration of security scanning into DevSecOps and CI/CD pipelines
  • Recommend application security improvements throughout the software development lifecycle (SDLC)
  • Promote secure-by-design principles across NIH application environments

Skills

  • Public Trust Clearance
  • B.S. Computer Science, Information Technology, or a related field
  • 5+ years of experience performing application security assessments or web application vulnerability scanning
  • Experience conducting authenticated and unauthenticated web application security testing
  • Experience supporting enterprise vulnerability management programs
  • Experience interpreting application security findings and developing remediation guidance
  • Experience supporting Federal cybersecurity or large enterprise environments
  • GWAPT
  • GWEB
  • CSSLP
  • OSWA
  • CEH

Company Overview

  • cFocus Software automates FedRAMP compliance and develops government chatbots for the Azure Government Cloud, Office 365, and SharePoint. It was founded in 2006, and is headquartered in Largo, Florida, USA, with a workforce of 11-50 employees. Its website is https://cfocussoftware.com/.
  • More open positions

    [Remote] Data Scientist II

    Work from home Full-time role

    [Remote] Project Manager - NCPDP

    Work from home Full-time role

    [Remote] Data Engineer

    Work from home Full-time role

    [Remote] ILA Administrative Assistant, Part-time, Mornings

    Work from home Full-time role

    [Remote] Health IT Business Analyst II

    Work from home Full-time role

    Law and Motion Associate - Of Counsel (Remote)

    Work from home Full-time role

    Senior Software Engineer, Windows/Desktop Applications - Kathmandu, Nepal

    Work from home Full-time role

    Remote Data Entry Specialist – Work From Home Opportunity with Competitive Pay and Flexible Hours at careerzynith

    Work from home Full-time role

    Customer Success Manager (B2C) (m/w/d) | 100% remote | attraktive Provision

    Work from home Full-time role

    Technical Sales Specialist

    Work from home Full-time role

    Benefits Specialist | Remote

    Work from home Full-time role

    Commercial Auto Claims Representative

    Work from home Full-time role

    Customer Support Representative – SaaS & Shopify App Specialist for careerzynith

    Work from home Full-time role

    Senior Hunting Intelligence Analyst United States (Remote)

    Work from home Full-time role

    VP of Philanthropy

    Work from home Full-time role

    Adjunct Faculty, Dissertation Chair - Sport and Performance Psychology (Online/Remote)

    Work from home Full-time role

    React Developer - Junior Level - AI Trainer

    Work from home Full-time role

    Part-Time Remote Data Entry Specialist – Flexible Hours with careerzynith – Join Our Growing Healthcare Team

    Work from home Full-time role

    Remote Live Chat Customer Care Representative – Full‑Time, $25‑$35/hr – Flexible Work‑From‑Home Support Role

    Work from home Full-time role

    Experienced Data Entry Technician – Remote Opportunity in Utah

    Work from home Full-time role

    Part-Time Remote Live Chat & Data Entry Specialist – Precision Data Management for careerzynith Operations – Flexible Schedule, $31/hr

    Work from home Full-time role