Application Security and Compliance Engineer

Remote - LAKEWOOD, CO

(Remote, Full-Time)

Occasional travel to NYC, if required

 

Company Information:

NexGen Technologies, Inc. is a leading IT services firm specializing in delivering innovative, high-quality solutions to our federal government clients. Our core competencies include IT professional support services, software development, cloud services, IT Operations, Agile project management, and GIS services.

 

Job Summary: 

We are looking for an Application Security and Compliance Engineer to lead security validation of Power Platform and web-based application deliverables. This individual will have a strong understanding of secure coding practices, vulnerability types, and remediation techniques. This position will work closely with members of NexGen’s internal and client teams, including but not limited to subject matter experts, technical leads, and project managers, to ensure customer satisfaction and drive innovative solutions while maintaining security standards. This position is remote. 

 

Supervisory Responsibilities: 

  • There are no supervisory responsibilities. 

 

Essential Duties and Responsibilities (as assigned): 

  • Conduct static and dynamic code analysis using SonarQube, Veracode, OWASP ZAP, or equivalent tools.
  • Maintain and report on secure code health metrics.
  • Review CI/CD pipelines and implement DevSecOps practices.
  • Manage source code inventory documentation and component checklists for final delivery.
  • Ensure full compliance with technical and governance standards.
  • Collaborate with developers and solution architects to resolve vulnerabilities before handoff.
  • Support audit readiness and contribute to knowledge transfer documentation.
  • Compile and inventory all app components, scripts, and configurations.
  • Validate the final package against functional and non-functional requirements.
  • Conduct security scanning using tools like SonarQube, Veracode, and/or OWASP ZAP.
  • Ensure all code passes security and quality thresholds before acceptance.
  • Maintain traceability and audit logs of commits and approvals.
  • Package and transfer full source code and documentation to GitHub or storage repository.
  • Other duties may be assigned. 

 

Technical Skills: 

  • 5+ years of application security experience (DevSecOps, AppSec, or Secure SDLC).
  • Familiarity with Git-based repositories and code deployment practices.
  • Hands-on experience with one or more of the following: SonarQube, Veracode, OWASP ZAP, Checkmarx.
  • Excellent documentation and compliance reporting skills.

Preferred Skills:

  • Experience with Power Platform, Azure DevOps, or Microsoft cloud stack preferred.
  • Prior work on government projects or education clients (K–12).
  • Familiarity with technical and governance standards.
  • Experience working with Waterfall delivery teams in regulated environments.

 

Education and Certifications:  

  • Bachelor’s degree in Management Information Systems, Computer Science, or related discipline. 

 

Physical Requirements: 

  • Must be able to remain in a stationary position 50% of the time. 
  • Must be able to consistently use a keyboard, mouse, computer, and other office productivity tools. 
  • Must be able to speak and hear using online meeting tools such as Zoom and Teams and be comfortable on and off camera for videoconferencing calls. 
  • For remote positions, a minimum standard internet speed for optimal performance of 50 x 25 (50 MBPS download x 25 MBPS upload) is required. 
  • For remote positions, a dedicated workspace, free from ongoing interruptions, is required to protect sensitive but unclassified federal information. 

 

 Additional Requirements:

  • Exceptional written and verbal communication skills, with a keen eye for detail and clarity.
  • The successful candidate will also be able to pass background screening prior to employment. 
  • US Citizenship, or legal permanent residence, or US work authorization with minimum 3 years of continuous US presence is required due to federal contract requirements. 

 

 

NexGen Technologies Inc. is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.   

 

Compensation: $45 to $60 per hour (Dependent on Experience) 


(Last Revision: 7-8-2025)