• Senior Secure Code Reviewer

    Job Location US-DC-Washington
    Posted Date 2 months ago(9/13/2018 12:53 PM)
    Job ID
    1700
    Clearance Requirement
    Secret
  • Overview

    Strategic Enterprise Solutions, Inc. (SE Solutions) is a proven, results-focused management and information technology services firm committed to support federal agencies that focus on protecting and defending our nation’s homeland security, intelligence, and stability. In a rapidly changing threat landscape, we have the organizational agility, deep homeland security experience, cultural insight and multidisciplinary expertise to help our customers accomplish today’s mission and anticipate tomorrow’s demands, efficiently and cost-effectively.

    Contributions

     As a senior member of one of our DHS support teams, you will play an important role performing a wide array of Governance, Risk, and Compliance (GRC) staff augmentation activities, including: 

    • Assessing the organization’s existing IT security program, work products, and tools in relation to key agency mission, security goals, and objectives.  

    • Reviewing and assessing risk of sustainable security solutions designed to address program gaps.

    • Assessing, articulating, and defending risk in relation to mission/business objectives and processes.

    • Capability to perform comprehensive code review services that support systematic examination of computer source code (often as a peer reviewer)
    • Find and fix mistakes overlooked in the initial development phase that improve the overall quality of the software and the developers' skills, as directed.
    • Submitting Code Review Reports containing code reading and code review findings, as directed.

    Qualifications

    Minimum Education and Experience

    • Master's Degree or higher and 6 years experience. Equivalent Education and Experience will be considered.
    • Education and Experience must be within the security engineering and cyber security defense disciplines.  Subject matter expertise and sustained success must be in application security, software engineering, secure source code development, or cyber intelligence.  


    Required Skills  

    • Must have proven and sustained expert experience reading and analyzing source code for secure or insecure states
    • Must be fluent in several programming languages  (e.g. Java, JavaScript, .NET, HTML, JSP J2EE, PHP, SQL, Visual Basic, XML, Python, PostGRES SQL, C/C++, .ABAP, ActionScript, Android, Apex, Annotations, COBOL, Classic ASP, VB Script, VB6, ColdFusion, Objective-C, Ruby, Scala, Swift, Swift2, Configuration, Content, JSP, and evolving languages 
    • Must have experience securing code for deployment within Cloud Providers such as:FedRAMP, AWS, and similar
    • Must be able to determine exploitability of OWASP Top 10, Information Assurance Vulnerability Alerts (IAVAs), DISA Security Technical Implementation Guides (STIGs) and similar 
    • Must be able to document and defend, with respect, exploitable or insecure findings
    • Must be able to read and comprehend source code scanning reports (i.e. HP Fortify) or similar
    • Must have mature written and presentation skills
    • Must have a familiarity with the Risk Management Framework and associated documents
    • Must be able to author draft final correspondence such as remediation plans and code review reports
    • Exposure to or experience with the Agile Development Methodology is a plus

    About SE Solutions

    Strategic Enterprise Solutions, Inc. (SE Solutions), is a small business serving federal agencies that protect our nation’s security and defend our fellow citizens’ safety. We bring homeland security experience, organizational agility, and multidisciplinary expertise to help our clients respond to a rapidly changing threat landscape, accomplish today’s mission, and anticipate tomorrow’s demands. For more information, visithttp://www.sesolutions.com.

     

    We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law. SE Solutions participates in the E-Verify program. 

     

     

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed