Web Developer, Security Engineer

Spry Methods, Inc.

Web Developer Security Engineer protecting web applications and APIs through secure coding practices and vulnerability management. Driving security initiatives within a federal context with a hybrid work arrangement.

Posted 6/14/2026full-timeWashington • District of Columbia, Washington • 🇺🇸 United StatesMid-LevelSeniorWebsite

Tech Stack

Tools & technologies

Cyber SecurityFirewallsJavaScript.NETSQL

About the role

Key responsibilities & impact

Identify, analyze, and remediate critical vulnerabilities, logic flaws, insecure dependencies, and misconfigurations in web applications and APIs.
Drive the vulnerability lifecycle through threat modeling, security assessments, and technical validation of remediation actions.
Support secure design patterns, data protection mechanisms, and secure communication protocols across applications and supporting services.
Review and analyze web server and application logs to detect anomalies and indicators of compromise.
Implement automation scripts for threat intelligence integration and application security monitoring.
Participate in audits, risk assessments, and security authorization activities tied to federal frameworks.

Requirements

What you’ll need

Minimum of three years of experience in web application security, application security engineering, or secure software development lifecycle work.
Hands-on experience in secure software development, DevSecOps automation, and vulnerability remediation.
Proven experience with .NET technologies, HTML5, CSS3, JavaScript, representational state transfer (REST) APIs, and structured query language (SQL).
Ability to leverage AI-assisted development tools and scripting languages to automate monitoring and compliance efforts.
Strong understanding of the Open Worldwide Application Security Project (OWASP) Top 10, secure coding standards, web application firewalls (WAFs), file integrity monitoring, and security testing tools.
Ability to perform risk assessments and provide remediation guidance for core systems and dependencies.
Bachelor's degree or higher in computer science, cybersecurity, information systems, engineering, or a related field.
Ability to meet federal screening and suitability requirements prior to start.
Current security certifications maintained for a minimum of five years, spanning application security (such as CSSLP, GWEB, or CASE), offensive security (such as OSWE or OSCP), and foundational security (such as Security+ or GSEC); expired or never-used certifications will not be considered.

Benefits

Comp & perks

🌐 Worldwide ❌ Jobs You've Hidden ⭐️ Saved Jobs ✅ Applied Jobs ✉️ Email Alerts 👤 Account Spry Methods, Inc. Website LinkedIn All Job Openings 51 - 200 employees Founded 2001 🔒 Cybersecurity 🏛️ Government Cybersecurity
Government
IT Strategy & Modernization Spry Methods, Inc. is a company providing a wide range of solutions and services to the Federal Government, Department of Defense, Intelligence Community, and the Commercial market. They specialize in cyber security, offering expertise to national security missions, Federal law enforcement, and DoD partners. The company also delivers IT and platform services, focusing on solving complex challenges and modernizing IT infrastructures with emerging technologies. Established in 2001, Spry Methods is known for combining industry knowledge with unmatched responsiveness and has been awarded significant contracts, such as the FBI's ITSSS-2 BPA. Web Developer, Security Engineer Job not on LinkedIn 🔥 10 minutes ago 🏢🏡 Washington – Hybrid ⏰ Full Time 🟡 Mid-level 🟠 Senior 💻 Frontend Engineer / Web Developer Cyber Security Firewalls JavaScript SQL .NET Apply Now Find Hiring Managers Customize resume + cover letter Report problem ☆ Save ☑️ Mark as applied ❌ Hide 📋 Description
Identify, analyze, and remediate critical vulnerabilities, logic flaws, insecure dependencies, and misconfigurations in web applications and APIs.
Drive the vulnerability lifecycle through threat modeling, security assessments, and technical validation of remediation actions.
Support secure design patterns, data protection mechanisms, and secure communication protocols across applications and supporting services.
Review and analyze web server and application logs to detect anomalies and indicators of compromise.
Implement automation scripts for threat intelligence integration and application security monitoring.
Participate in audits, risk assessments, and security authorization activities tied to federal frameworks. 🎯 Requirements
Minimum of three years of experience in web application security, application security engineering, or secure software development lifecycle work.
Hands-on experience in secure software development, DevSecOps automation, and vulnerability remediation.
Proven experience with .NET technologies, HTML5, CSS3, JavaScript, representational state transfer (REST) APIs, and structured query language (SQL).
Ability to leverage AI-assisted development tools and scripting languages to automate monitoring and compliance efforts.
Strong understanding of the Open Worldwide Application Security Project (OWASP) Top 10, secure coding standards, web application firewalls (WAFs), file integrity monitoring, and security testing tools.
Ability to perform risk assessments and provide remediation guidance for core systems and dependencies.
Bachelor's degree or higher in computer science, cybersecurity, information systems, engineering, or a related field.
Ability to meet federal screening and suitability requirements prior to start.
Current security certifications maintained for a minimum of five years, spanning application security (such as CSSLP, GWEB, or CASE), offensive security (such as OSWE or OSCP), and foundational security (such as Security+ or GSEC); expired or never-used certifications will not be considered. Apply Now 📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score 🌐 Worldwide Built by Lior Neu-ner. I'd love to hear your feedback — Get in touch via DM or support@remoterocketship.com Search Search Jobs by country Search jobs by city Search jobs by job title Search entry-level jobs Search junior-level jobs Search senior-level jobs Search jobs by tech stack Search jobs by contract type Search remote internships Search remote part-time jobs Remote jobs Anywhere in the World Companies Hiring Anywhere in the World Companies Hiring Sales People Anywhere in the World Companies Hiring Software Engineers Anywhere in the World Resources Advice Tips for finding remote jobs Interview questions and answers Resume examples Cover letter examples Post a job Affiliates Privacy policy Terms of service Job board SEO course AI Apply Copilot OpenClaw job finder Jobs by Country Remote jobs anywhere in the world (Worldwide remote jobs) Remote jobs United States Remote jobs Australia Remote jobs Brazil Remote jobs Canada Remote jobs France Remote jobs Ireland Remote jobs Germany Remote jobs Netherlands Remote jobs Spain Remote jobs UK Popular Jobs Remote data analyst jobs Remote customer support jobs Remote executive assistant jobs Remote marketing jobs Remote product designer jobs Remote product manager jobs Remote project manager jobs Remote recruiter jobs Remote sales jobs Remote software engineer jobs Jobs by Type Remote full-time jobs Remote part-time jobs Remote contract jobs Remote internship jobs Remote entry-level jobs Remote jobs with no experience required Remote junior jobs (1-3 years of experience) Digital nomad jobs Remote jobs with no degree required Freelance remote jobs Temporary remote jobs Remote jobs hiring now Stay at home mom jobs

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

web application securityapplication security engineeringsecure software development lifecycle.NETHTML5CSS3JavaScriptREST APIsSQLDevSecOps automation

Soft Skills

analytical skillsproblem-solvingcommunicationcollaborationattention to detail

Certifications

CSSLPGWEBCASEOSWEOSCPSecurity+GSEC