HHS - Application Tester jobs in United States
cer-icon
Apply on Employer Site
company-logo

cFocus Software Incorporated · 1 day ago

HHS - Application Tester

positionUnited States
timeFull-time
remoteRemote
seniorityMid, Senior Level
date4+ years exp

cFocus Software seeks an Application Tester to join our program supporting the Department of Health and Human Services (HHS). The role involves performing application security testing, executing test cases, and identifying vulnerabilities in web applications and APIs.

ChatbotGovernmentInformation TechnologySoftware
check
Growth OpportunitiesbadNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Perform application security testing including dynamic application security testing (DAST), functional testing, and validation testing
Execute test cases against web applications, APIs, microservices, and cloud-hosted applications
Identify application-level vulnerabilities including authentication, authorization, input validation, session management, and data exposure weaknesses
Validate findings from automated scanning tools and identify false positives
Support secure development lifecycle (SDLC) activities by testing applications before release
Document application vulnerabilities, test results, and remediation recommendations
Verify remediation through re-testing and evidence validation
Support application penetration testing and red team activities as required
Coordinate testing activities with developers, system owners, ISSOs, and AppSec engineers
Ensure testing aligns with OWASP Top 10, NIST guidance, and HHS security standards
Maintain application testing SOPs, workflows, and test scripts
Support vulnerability management reporting and POA&M evidence development

Qualification

Application testingOWASP Top 10Vulnerability managementCloud-based systemsAutomated vulnerability scansAnalytical skillsGTAPT certificationCEH certificationSecurity+ certificationDocumentation skillsCommunication skills

Required

Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or related field
Minimum 4–6 years of experience performing application testing or application security assessments
Experience testing web applications, APIs, and cloud-based systems
Working knowledge of OWASP Top 10 vulnerabilities and secure application design principles
Experience validating automated vulnerability scan results
Familiarity with federal vulnerability management and RMF processes
Strong analytical, documentation, and communication skills
Ability to obtain a Public Trust clearance

Preferred

Active GTAPT, CEH, or Security+

Company

cFocus Software Incorporated

twittertwitter
company-logo
cFocus Software automates FedRAMP compliance and develops government chatbots for the Azure Government Cloud, Office 365, and SharePoint.
dateFounded in 2006
location
Largo, Florida, USA
people-size11-50 employees
web-link
https://cfocussoftware.com/

Funding

Current Stage
Early Stage

Leadership Team

leader-logo
Manisha Griesinger, MPH, MSc
Program Manager | U.S. EPA Office of the Chief Financial Officer
linkedin
Company data provided by crunchbase