Software Security Engineer

Summary

Join Dynamis as a Software Security Engineer to support a contract with the Department of Homeland Security’s Immigration and Customs Enforcement (ICE). You will implement, test, and operate advanced software security techniques for the Student and Exchange Visitor Information System (SEVIS). Responsibilities include ongoing security testing, code review, troubleshooting, designing new software solutions, contributing to architecture, maintaining documentation, consulting on secure coding, and developing familiarity with new tools and best practices. You will also engineer and implement DevOpsSec (CI/CD) pipelines. This role requires U.S. citizenship, a STEM degree and relevant IT security experience, technical leadership experience, and specific certifications. Experience with DevOpsSec pipeline tools and Security Control Assessment in compliance with NIST standards is also necessary.

Requirements

• U.S. Citizenship to obtain ICE Suitability
• Bachelor’s degree in science, technology, engineering, and math (STEM) field and 9 years IT security (Cybersecurity) experience; or 7 years with a Masters; or 4 years with a PhD. Experience can be considered in lieu of degree
• 5 years technical leadership experience
• Certified Information Systems Security Professional (CISSP), or Certified Secure Software Lifecycle Professional (CSSLP) Certification, or Certified Application Security Engineer (CASE) Certification
• AWS Certified Solutions Architect Professional or AWS Certified DevOps Engineer Professional
• Experience with DevOpsSec pipeline tools including configuration management, requirements (e.g. JIRA), automated testing, automated deployments, blue green deployments, and branching strategy and implementation
• Experience with performing Security Control Assessment in compliance with NIST SP 800- 37, NIST SP 800-53, NIST SP 800-53A, and other NIST 800 guide series

Responsibilities

• Implement, test, and operate advanced software security techniques in compliance with technical reference architecture for the Student and Exchange Visitor Information System (SEVIS)
• Perform on-going security testing and code review to improve software security
• Troubleshoot and debug issues that arise
• Provide engineering designs for new software solutions to help mitigate security vulnerabilities
• Contribute to all levels of the architecture
• Maintain technical documentation
• Consult team members on secure coding practices
• Develop and maintain familiarity with new tools and best practices
• Engineer and implement DevOpsSec (CI/CD) pipelines and incorporate security protocols while deploying infrastructure as code (IaC)