Software Security Engineer
Sherpa 6, Inc. - fort belvoir, VA
Apply NowJob Description
Job Type Full-time Description Job Title: Software Security Engineer Job Location: Onsite (Hybrid) - Ft. Belvoir, VA Job Type: Full time 40 hours Travel Requirement: Up to 25% Secret: Ability to Obtain and Maintain Top Secret Job Description: Sherpa 6 is seeking a talented Software Security Engineer to join our team and play a crucial role in maintaining the security and integrity of our systems and data. We build mission critical systems for the Department of Defense (DoD) and other commercial customers. The ideal candidate will have extensive experience managing security compliance, leading security assurance efforts, and developing and implementing robust security controls. They will possess a deep understanding of security documentation and accreditation workflows, with the ability to identify vulnerabilities and recommend effective remediation strategies. Additionally, they will have hands-on experience with software vulnerability scanning tools and integrating into build pipelines, as well as a strong interest in staying up to date on emerging security threats and best practices. Responsibilities: Manage security compliance efforts and ensure adherence to accreditation standards and regulatory requirements Develop, configure, and integrate automation solutions for dynamic security validation and reporting Lead security assurance activities, including risk assessments, security audits, and penetration testing Interface with partner security teams and attend security events to understand and communicate current security posture Develop and maintain security documentation, artifacts, and accreditation materials as required Understand and navigate accreditation workflows to ensure compliance with relevant security frameworks Identify security flaws and weaknesses in systems and applications and recommend appropriate mitigating controls or remediation measures Conduct software vulnerability scans and analyze results to prioritize and address security vulnerabilities Stay informed about the latest security threats, vulnerabilities, and industry trends, and provide timely updates and recommendations to relevant stakeholders Collaborate with cross-functional teams to integrate automated security tasks, such as scans and documentation, into existing workflows and processes Perform topical tracking of security matters, including vulnerability reports, security advisories, and patch management activities Requirements Qualifications: 3+ years of experience managing security compliance efforts or developing security validation tools Bachelor of Science Degree in Software Engineering, Computer Science, IT, or related field Experience developing and maintaining security documentation, accreditation artifacts, and compliance reports Ability to identify security vulnerabilities and recommend effective remediation strategies Hands-on experience with software vulnerability scanning tools Excellent analytical and problem-solving skills, with a keen attention to detail. Strong communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams Must be a US citizen Must pass a background check and drug screening Qualities of Exceptional Candidates: Certification(s) in relevant areas (e.g., CISSP, CISM, CEH) would be highly desirable Experience with developing and configuring solutions for integrating automated security tasks, such as scans and documentation, into CI/CD pipelines or IT workflows Familiarity with penetration testing methodologies and tools is a plus Knowledge of Linux operating systems and/or software development/programming skills would be a bonus Experience working in the DoD or government realms is a plus. Familiarity with DISA STIGs and automated scanning Background Screening/Check/Investigation: Successful completion of a background screening/check/investigation will/may be required as a condition of hire. ADA: Sherpa 6 will make reasonable accommodations in compliance with the Americans with Disabilities Act 1990 EEO/AA: Sherpa 6 does not discriminate based on race, color, national origin, sex, religion age, disability, sexual orientation, gender identity, veteran status, height, weight, or marital status in employment or the provision of services and is an equal access/opportunity/affirmative action employer. Benefits: We offer a competitive benefits package, covering the cost of medical for you and your family; we also offer dental, vision, health and wellness benefits and a generous retirement savings plan. We believe that our employees can manage their workload and their personal life, therefore we extend a generous PTO policy. This allows our employees to balance their lives as they see fit. Salary Range: The proposed salary range is reflective across all Sherpa 6 locations, years of experience and skill levels. Salary negotiations will be based on a host of factors including but not limited to your geographic location, prior experience, relevant skills, education, and certifications. About Sherpa 6: At Sherpa 6 we love to solve problems and provide the best solutions for our customers. Our approach to a problem is to find a user-focused and design-driven solution that is simple yet functional and effective. We are a group of enthusiastic forward-thinkers who are excited to build amazing solutions with bleeding-edge technology. We hire people who are forward thinkers, passionate about what they do, love to collaborate and want to constantly learn. We enjoy what we do and we're not afraid to put the extra effort in to accomplish the mission; call us Sherpas. As a Service-Disabled Veteran Owned Small Business, we know what it means to serve. We have made it our mission to be the leaders in solutions that protect and give our Warfighters the edge they need when put into harm's way. Salary Description $94,520 - $180,235
Created: 2024-11-05