Vacancy expired!
Overview
Direct Government's hubs, satellite routers and network management software address the growing complexity of deploying and managing global IP networks. iDirect Government's specialized technology includes transmission security (TRANSEC), Communication Signal Interference Removal (CSIR) anti-jam technology and Open Antenna Modem Interface Protocol (OpenAMIP). We bring innovation, integration and intelligence to satellite-based IP communications that government and military organizations trust. By providing quality certifications with the most bandwidth-efficient, scalable and highly secure platform, we have rapidly become the technology provider of choice for military and government-driven mission-critical applications. We are seeking for a team player with solid technical skills to work with our team of smart, creative, and dedicated engineering team-members. This position is based out of our Herndon, VA location with the option of a remote work schedule. This is a mid-level position for a Cyber Security Software Engineer. The primary responsibility is to address security vulnerabilities within iDirect Government software through security content automation protocol (SCAP) and penetration testing. The ideal candidate will have comprehensive knowledge in cyber security, a background in programming, good communication skills, and the ability to learn quickly. We value creativity, problem solving, logical thinking, teamwork, and enthusiasm for new technologies. You will work independently as well as collaboratively with other security engineers, software developers, managers, scrum masters, and product owners. Responsibilities- Carry out application penetration testing and discover security vulnerabilities within iDirect Government software, written in C, Go, and JavaScript.
- Help developing the mitigating solutions and implementing them in the iDirect Government software and SCAP packages.
- Assist with the security vulnerability management and the estimation of effort required to implement new security enhancement requirements.
- Participate in security related code reviews and improve software quality.
- Interface and work with cross-functional teams to successfully implement feature dependencies.
- Integrate and validate new security product designs.
- Implement, test, and operate advanced software security techniques in compliance with Technical Reference Architecture.
- Act as a member of an Agile scrum team.
- Experience in developing and debugging software in a Linux environment.
- Experience in executing application penetration testing.
- Experience with Red Hat Enterprise Linux OS.
- Experience with static code analysis.
- Experience with static and dynamic security scanning of application software.
- Knowledge in C, JavaScript and object-oriented design.
- Knowledge of NIST/ DOD frameworks, developing and running NIST 800-53a verification procedures including, but not limited to, STIG (Security Technical Implementation Guides) benchmarks.
- Knowledge of secure software development life cycle (SSDLC).
- Knowledge of supply chain security.
- Familiarity with developing multi-threaded software applications.
- Familiarity with API, system-to-system interfaces and cloud technologies, such as Kubernetes, containerization, cloud native, etc.
- Knowledge of communications and/or networking protocols, TLS, TCP/IP, UDP, IPv6, etc.
- Knowledge of satellite networking and iDirect Government products.
- Experience with cross-functional (hardware/software) development and verification
- B.S. or M.S. in Cyber Security, Computer Engineering, Computer Science, Electrical Engineering, Mathematics, Physics, or related technical field.