Sr. Secure Software Engineer

Arena Technical Resources
Chantilly, United States of America
7 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
$ 190K

Job location

Chantilly, United States of America

Tech stack

Java
3D Visualization
Geographic Information Systems
API
Agile Methodologies
Amazon Web Services (AWS)
Software Applications
Software System Penetration Testing
Application Services
Computer Vision
Audit Trail
Automation of Tests
Unit Testing
C Sharp (Programming Language)
C++
Cloud Computing Security
Static Program Analysis
Code Review
Computer Security
Information Systems
Computer Engineering
Continuous Integration
Data Validation
DevOps
Web Development
Spatial Databases
Geospatial Intelligence
GIS Applications
Github
Design of User Interfaces
Human-Computer Interaction
Python
Machine Learning
NoSQL
Openshift
PostGIS
Regression Testing
Secure Coding
Software Engineering
Verification and Validation (Software)
Software Quality Assurance (SQA)
Systems Architecture
System Testing
Systems Integration
Software Vulnerability Management
Web Applications
Web Application Frameworks
Data Logging
Enterprise Software Applications
Data Storage Technologies
Spring Cloud
Software Verification
React
Delivery Pipeline
Software Security
Software Application Programming
Backend
Gitlab
GIT
Vue.js
Containerization
Angular
Integration Tests
Kubernetes
Information Technology
Geospatial Data Abstraction Library (GDAL)
Data Analytics
Data Management
REST
Software Version Control
Data Pipelines
Raster Graphics
Devsecops
Static Application Security Testing
Dynamic Application Security Testing

Job description

program that will design, develop, and implement a scalable, repeatable,

automated, and enterprise-wide framework for evaluating the quality,

accuracy, and mission utility of GEOINT products. The framework will

support imagery, geospatial data, 3D GEOINT, mapping products, and

future GEOINT data types by providing standardized methodologies for

automated testing, metric generation, data storage, visualization, and

reporting.

The successful candidate will be part of a team to support the design,

development, integration, testing, deployment, and sustainment of the

enterprise IV&V platform while collaborating with Government

stakeholders to evaluate existing GEOINT IV&V capabilities, implement

automated verification processes, and deliver secure, scalable software

solutions.

Role Overview

The Secure Software Engineer will design, develop, integrate, and

maintain an enterprise Independent Verification and Validation (IV&V)

application supporting automated evaluation of GEOINT products,

including imagery, geospatial data, mapping products, and 3D GEOINT

datasets. The engineer will develop secure, scalable software solutions

that automate GEOINT quality assessment, metric generation,

visualization, reporting, and data management while ensuring

cybersecurity is integrated throughout the software development

lifecycle.

Working closely with Cloud & DevOps Engineers, system engineers, data

scientists, and Government stakeholders, the Secure Software Engineer

will implement application services, user interfaces, APIs, automated

testing capabilities, and data processing workflows while incorporating

secure coding practices, vulnerability remediation, and cybersecurity

engineering principles. The engineer will support the development of a

trusted enterprise IV&V platform that meets security requirements while, Design, develop, test, and maintain software applications supporting

the enterprise GEOINT IV&V framework.

  • Develop secure application services, RESTful APIs, user interface

components, and backend services supporting automated GEOINT

evaluation workflows.

  • Implement software that automates GEOINT metric generation, data

validation, quality assessment, reporting, and visualization.

  • Develop software components supporting ingestion, processing,

storage, and retrieval of imagery, geospatial data, mapping

products, and other GEOINT data sources.

  • Apply secure software development practices throughout the software

development lifecycle, including threat-informed design, secure

coding, and automated security testing.

  • Identify, analyze, and remediate software vulnerabilities identified

through static analysis, dynamic testing, dependency scanning, and

penetration testing activities.

  • Integrate authentication, authorization, encryption, audit logging,

and other security controls into enterprise applications.

  • Collaborate with Cloud & DevOps Engineers to support containerized

deployments, CI/CD pipelines, and DevSecOps automation.

  • Develop automated unit tests, integration tests, regression tests,

and validation frameworks supporting repeatable software quality

assurance.

  • Support software integration, system testing, defect resolution, and

operational transition activities.

  • Participate in system architecture reviews, software design reviews,

code reviews, and technical interchange meetings.

  • Prepare technical documentation including software design

descriptions, interface documentation, security documentation, and

user guides.

  • Support Risk Management Framework (RMF), Authority to Operate (ATO),

and cybersecurity assessment activities through development of

secure software artifacts and remediation of identified findings.

  • Participate in Agile software development activities including

Requirements

Eligibility/Clearance: Candidate must possess an active TS/SCI clearance

and be willing to obtain a CI Polygraph, Bachelor's degree in Computer Science, Software Engineering,

Computer Engineering, Cybersecurity, or a related technical

discipline and 9 years of relevant experience, or a Master's degree

in a related field and 7 years of relevant experience.

  • Experience designing, developing, testing, and maintaining

enterprise software applications using modern object-oriented

programming languages such as Python, Java, C#, C++, or Go.

  • Experience developing web applications, RESTful APIs, backend

services, and user interface components.

  • Experience implementing secure software development practices,

secure coding standards, and application security principles.

  • Experience developing software using modern software engineering

methodologies including Agile development, version control, and

continuous integration.

  • Experience integrating software with relational and/or NoSQL

databases.

  • Experience developing automated testing, software verification, and

quality assurance frameworks.

  • Experience with Git, GitLab, GitHub, or similar source code

management platforms.

  • Experience collaborating within DevSecOps environments utilizing

automated build, testing, and deployment pipelines.

  • Knowledge of cybersecurity principles including authentication,

authorization, encryption, vulnerability management, logging, and

auditing.

  • Experience supporting software vulnerability remediation and

security assessment activities.

  • Strong analytical, troubleshooting, and problem-solving skills.

  • Strong written and verbal communication skills with the ability to

prepare technical documentation and communicate effectively with

Government stakeholders.

Preferred:

  • Experience supporting NGA, NRO, DoD, Intelligence Community, or

other Federal GEOINT, imagery, or geospatial software development

programs.

  • Experience developing applications supporting imagery exploitation,

geospatial analytics, mapping, remote sensing, or other GEOINT

mission areas.

  • Experience with geospatial data libraries, formats, and services

such as GDAL, PostGIS, GeoJSON, STAC, OGC services (WMS, WFS, WMTS),

or related technologies.

  • Experience developing interactive web applications using modern

JavaScript frameworks such as React, Angular, or Vue.js.

  • Experience developing cloud-native applications deployed within

Kubernetes, OpenShift, or AWS environments.

  • Experience supporting DevSecOps pipelines including static

application security testing (SAST), dynamic application security

testing (DAST), software composition analysis (SCA), and container

security scanning.

  • Experience supporting Risk Management Framework (RMF), ICD 503, NIST

SP 800-53, Authority to Operate (ATO), or Authority to Develop (ATD)

processes.

  • Experience integrating machine learning, computer vision, image

processing, or automated analytics capabilities into enterprise

applications.

  • Experience working with large-scale imagery repositories, raster and

vector geospatial data, 3D visualization technologies, or spatial

databases.

  • Experience developing automated verification, validation, or test

frameworks supporting scientific, engineering, or geospatial

applications.

  • Security certifications such as Security+, CSSLP, CISSP, or cloud

security certifications., Bachelor's degree in Information Systems, Engineering,

Cybersecurity, or related technical field (or equivalent

Benefits & conditions

CountryNoneAfghanistanÅland IslandsAlbaniaAlgeriaAmerican SamoaAndorraAngolaAnguillaAntarcticaAntigua and BarbudaArgentinaArmeniaArubaAustraliaAustriaAzerbaijanBahamasBahrainBangladeshBarbadosBelarusBelgiumBelizeBeninBermudaBhutanBoliviaBonaire, Sint Eustatius and SabaBosnia and HerzegovinaBotswanaBouvet IslandBrazilBritish Indian Ocean TerritoryBritish Virgin IslandsBruneiBulgariaBurkina FasoBurundiCabo VerdeCambodiaCameroonCanadaCayman IslandsCentral African RepublicChadChileChinaChristmas IslandCocos (Keeling) IslandsColombiaComorosCongoCongo-BrazzavilleCook IslandsCosta RicaCôte d'IvoireCroatiaCubaCuraçaoCyprusCzechiaDemocratic People's Republic of KoreaDenmarkDjiboutiDominicaDominican RepublicEcuadorEgyptEl SalvadorEquatorial GuineaEritreaEstoniaEthiopiaFalkland IslandsFaroe IslandsFederated States of MicronesiaFijiFinlandFranceFrench GuianaFrench PolynesiaFrench Southern TerritoriesGabonGambiaGeorgiaGermanyGhanaGibraltarGreeceGreenlandGrenadaGuadeloupeGuamGuatemalaGuernseyGuineaGuinea-BissauGuyanaHaitiHeard Island and McDonald IslandsHondurasHong KongHungaryIcelandIndiaIndonesiaIraqIrelandIslamic Republic of IranIsle of ManIsraelItalyJamaicaJapanJerseyJordanKazakhstanKenyaKiribatiKuwaitKyrgyzstanLao People's Democratic RepublicLatviaLebanonLesothoLiberiaLibyaLiechtensteinLithuaniaLuxembourgMacaoMacedoniaMadagascarMalawiMalaysiaMaldivesMaliMaltaMarshall IslandsMartiniqueMauritaniaMauritiusMayotteMexicoMonacoMongoliaMontenegroMontserratMoroccoMozambiqueMyanmarNamibiaNauruNepalNetherlandsNew CaledoniaNew ZealandNicaraguaNigerNigeriaNiueNorfolk IslandNorthern Mariana IslandsNorwayOmanPakistanPalauPanamaPapua New GuineaParaguayPeruPhilippinesPitcairnPolandPortugalPuerto RicoQatarRepublic of KoreaRepublic of MoldovaReunionRomaniaRussiaRwandaSaint BarthelemySaint Helena, Ascension and Tristan da CunhaSaint Kitts and NevisSaint LuciaSaint MartinSaint Pierre and MiquelonSaint Vincent and the GrenadinesSamoaSan MarinoSao Tome and PrincipeSaudi ArabiaSenegalSerbiaSeychellesSierra LeoneSingaporeSint Maarten (Dutch part)SlovakiaSloveniaSolomon IslandsSomaliaSouth AfricaSouth Georgia and the South Sandwich IslandsSouth SudanSpainSri LankaState of PalestineSudanSurinameSvalbard and Jan MayenSwazilandSwedenSwitzerlandSyriaTaiwanTajikistanThailandTimor-LesteTogoTokelauTongaTrinidad and TobagoTunisiaTurkeyTurkmenistanTurks and Caicos IslandsTuvaluU.S. Virgin IslandsUgandaUkraineUnited Arab EmiratesUnited KingdomUnited Republic of TanzaniaUnited StatesUnited States Minor Outlying IslandsUruguayUzbekistanVanuatuVaticanVenezuelaVietnamWallis and FutunaWestern SaharaYemenZambiaZimbabwe

State/ProvinceNoneAlabamaAlaskaArizonaArkansasCaliforniaColoradoConnecticutDelawareFloridaGeorgiaHawaiiIdahoIllinoisIndianaIowaKansasKentuckyLouisianaMaineMarylandMassachusettsMichiganMinnesotaMississippiMissouriMontanaNebraskaNevadaNew HampshireNew JerseyNew MexicoNew YorkNorth CarolinaNorth DakotaOhioOklahomaOregonPennsylvaniaRhode IslandSouth CarolinaSouth DakotaTennesseeTexasUtahVermontVirginiaWashingtonWashington, D.C.West VirginiaWisconsinWyoming

City

ZIP/Postal Code

Apply for this position