Software Guidance & Assistance, Inc. (SGA, Inc.)
Sr. Application Security Engineer - Tysons, VA
Full details on LinkedIn
The complete job description, requirements, and application details are available on the original posting.
About Software Guidance & Assistance, Inc. (SGA, Inc.)
Software Guidance & Assistance, Inc. (SGA, Inc.) is a certified women-owned technology and resource solutions provider based in Tarrytown, New York. Founded in 1981, SGA specializes in IT staffing and technology services, catering to a diverse clientele that includes Fortune 1000 companies, startups, and mid-size organizations. SGA offers a wide range of services, including contingent staffing, direct placement, and talent matching across various IT disciplines such as cybersecurity, software development, and project management. They also provide professional and managed services, including software development, data management, and CRM integrations, utilizing onshore, offshore, and hybrid delivery models. The company emphasizes diversity and inclusion in its recruiting practices, supported by a dedicated Diversity & Inclusion Committee. With over 40 years of experience and a team of approximately 459 employees, SGA successfully matches professionals to over 1,000 engagements annually. Their commitment to client satisfaction and strong communication has established them as a trusted partner in the IT staffing industry.
Security at Software Guidance & Assistance, Inc. (SGA, Inc.)
Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.
Security Philosophy
- SGA's mission is to solve big IT problems with a personal, boutique approach, providing IT and professional staffing, as well as IT professional and managed services.
- Their cybersecurity offerings include penetration testing and vulnerability scanning, and they assist in finding cybersecurity professionals through direct placement services.
Security Team
- Publicly available information does not explicitly detail SGA's internal AppSec organizational structure, reporting lines, or named leaders.
- However, job postings indicate roles involving the implementation and management of web application firewalls (WAFs), analyzing and remediating vulnerabilities for developers, monitoring and analyzing security events using Splunk, supporting Level 1 and Level 2 SOC operations, and executing high-impact Red Team exercises, including authoring post-exercise reports.
Key Initiatives
- Specific AppSec initiatives, such as security champion programs or secure SDLC artifacts, are not publicly detailed.
- However, activities related to vulnerability management are evident, including penetration testing, vulnerability scanning, and assisting developers with remediation.
- Operational security initiatives include monitoring security events with Splunk, supporting SOC operations, and conducting Red Team exercises with comprehensive reporting.
Preparing for an AppSec interview?
Get the weekly briefing 2,000+ security pros trust.