Cyber Security Developer- Job Description:
Designs, develops, and implements security controls to preserve the confidentiality, integrity, and availability of information systems. Provides security engineering expertise and develops cybersecurity products, mitigates STIGs, provides Java and C++ software engineering, development, and integration. Performs refactoring and re-engineering activities to upgrade cybersecurity controls for hardening of systems. Candidate must be U.S. citizen with an active DoD Secret level security clearance.
Other tasks may include:
Evaluating requirements, selecting/implementing security controls, reviewing installation procedures.
Ensure security is implemented during software development
Identify technological and functional risks inherent in system functionality, system exposure, and data sensitivity to determine the required security controls.
Recommend and design software security to mitigate weaknesses and vulnerabilities
Tailoring and configuring security controls for specific product use, security assessment plan preparation, test procedure preparation, test execution and reporting.
Analyze and assess infrastructure for potential vulnerabilities that may result from improper configurations or hardware/software flaws
Performing security vulnerability assessments using Assured Compliance Assessment Solution (ACAS), and performing SCAP security assessment/configuration.
Integrate new or modified security hardware, operating systems and software applications.
Conducting verification and validation of test procedures and script changes.
Cyber Security Developer - Required Skills:
Extensive experience using C or Java/C++ in the development of security controls for enterprise information systems.
Strong experience at the Linux command line and writing scripts.
Knowledge of using utilities such as SCAP and ACAS to identify system vulnerabilities.
Familiarity with DISA STIGS and the ability harden applications (e.g., OS, web server, database, etc.) in accordance with the recommended STIG guidance.
Cyber Security Developer - Highly Desirable Skills:
Experience working in an Agile/Sprint release planning environment including depth of understanding of providing impact analysis on testing as Sprint and releases are introduced to the integration environment.
Existing certifications (e.g., Security+, CEH, Network+, etc) and CISSP certification.
Understanding of full system exposure and system wide activity – Integration testing across systems usage flow checks how one program integrates/impacts other components of the system.
Cyber Security Developer - Additional Requirements:
Bachelor’s degree in computer science and one to five years equivalent professional experience.
Candidate must be U.S. citizen with an active DoD Secret level security clearance.
Contract Term: Full-Time Employee, 40 hours/week.
Job Location: Manassas, VA.
Start Date: Negotiable
Gromelski and Associates is a proud Equal Opportunity / Affirmative Action employer. Equal Opportunity Employer/Minority/ Female/Disability/Veteran. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, citizenship status, protected veteran status, religion, creed, physical or mental disability, medical condition, marital status, sex, sexual orientation, gender identity or expression, age, or any other basis protected by law, ordinance, or regulation.