Software Security Engineer

Summary

Join LightFeather as a Software Security Engineer and become a key player in implementing, testing, and operating advanced software security techniques. You will ensure software compliance with the technical reference architecture and contribute to all system architecture levels. Responsibilities include security testing, code review, troubleshooting, and designing mitigation strategies for vulnerabilities. You will also guide team members on secure coding practices and maintain technical documentation. This remote position offers the opportunity to work on mission-critical solutions and be part of a diverse and inclusive team.

Requirements

• US Citizenship
• Ability to obtain and maintain a Public Trust clearance; previous or active DHS ICE clearance is preferred
• Bachelor’s degree in a science, technology, engineering, and math (STEM) field
• 9 years of IT security experience with a Bachelor's degree, or 7 years with a Masters, or 4 years with a PhD
• Minimum 5 years of technical leadership in the field of software security
• Proficient with DevSecOps pipeline tools such as JIRA, automated testing (Selenium, Jenkins), automated deployments, and strategies for blue-green deployments and branching
• Strong understanding of Systems Engineering processes including requirements analysis and allocation
• In-depth experience performing Security Control Assessment in compliance with standards such as NIST SP 800-37, NIST SP 800-53, and related guidelines

Responsibilities

• Develop and enforce security protocols within our DevSecOps (CI/CD) pipelines
• Implement infrastructure as code (IaC) with an emphasis on security
• Perform security testing and code reviews to improve software security
• Provide engineering solutions for new software to help mitigate security vulnerabilities
• Maintain and update technical documentation
• Consult with team members on best practices for secure coding
• Stay updated with new tools, technologies, and best practices in software security

Preferred Qualifications

• Certified Information Systems Security Professional (CISSP), Certified Secure Software Lifecycle Professional (CSSLP), or Certified Application Security Engineer (CASE)
• AWS Certified Solutions Architect Professional, or AWS Certified DevOps Engineer Professional

Benefits

This Position is Remote