The Software Security Engineer works with the development, engineering, testing, and operations teams to implement advanced software security components, designs, and techniques in compliance with technical reference architecture. They improve software security by conducting ongoing security testing and code review as well as troubleshooting and debugging issues. In addition, this individual develops engineering designs for new software solutions to help mitigate security vulnerabilities and is responsible for maintaining technical documentation. The Software Security Engineer consults with team members on secure coding practices and remains up-to-date with new tools and best practices. They engineer and implement DevSecOps (continuous integration/continuous delivery) pipelines and incorporate security protocols while deploying infrastructure as code.
The projected compensation range for this position is $130,000-$160,000 (annualized USD). The final salary offered will generally fall within this range and is determined by various factors, including but not limited to the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as internal pay equity, location, contract-specific affordability and other organizational requirements.
Required Skills- Bachelor’s degree in science, technology, engineering, or math (or additional experience in lieu of degree)
- 9 years of IT security (cybersecurity) experience (or 7 yrs w/Masters, 4 with PhD)
- Experience providing technical leadership in the analysis, planning, design, and implementation of security controls and techniques at the system and application level
- Experience conducting security reviews, collaborating with development and engineering teams to evaluate and implement security measures
- Experience with performing security control assessments in compliance with the NIST 800 guide series
- Certified Information Systems Security Professional (CISSP), or Certified Secure Software Lifecycle Professional (CSSLP) Certification, or Certified Application Security Engineer (CASE) Certification
- AWS Certified Solutions Architect Professional or AWS Certified DevOps Engineer Professional
- Familiarity with systems engineering processes and milestones
- Understanding of the requirements analysis, decomposition, and allocation process
- Must be a US Citizen
Desirable Skills
- Active Federal Government Public Trust Clearance