Secure Software Assessment SME (Clearance Required)

TL;DR

Secure Software Assessment SME (Cybersecurity): Oversee software assurance activities for DHRA cybersecurity program with an accent on secure coding practices, code reviews, and vulnerability analysis. Focus on leading assessments, integrating security into CI/CD pipelines, and providing remediation recommendations aligned with DoD and NIST frameworks.

Location: Based in Alexandria, VA or Seaside, CA. Active DOD security clearance required.

Salary: $108,476 - $184,409

Company

Global advisory and technology services provider supporting Defense Human Resources Activity (DHRA) cybersecurity programs.

What you will do

• Lead application security assessments and remediation across DHRA software systems.
• Perform secure code reviews, SAST/DAST analysis, and manual vulnerability assessments.
• Develop software security standards and secure coding guidelines per DoD/NIST.
• Advise teams on remediation, secure design, and risk prioritization.
• Integrate security tools into CI/CD pipelines and track vulnerability closure.
• Provide training, mentorship, reports, and recommend security technologies.

Requirements

• Bachelor’s degree and 10+ years in software development, vulnerability analysis, or application security.
• Active DOD security clearance.
• CISSP-ISSEP certification.

Nice to have

• Master’s degree in computer science, cybersecurity, or software engineering.
• Experience with SAST/DAST tools (Fortify, Veracode, Checkmarx, SonarQube).
• Proficiency in Java, C#, Python, JavaScript.
• DoD/Federal secure app development and DevSecOps integration.
• Familiarity with NIST SP 800-218, OWASP Top 10, container/cloud security.

Culture & Benefits

• Equal opportunity employer with accommodations for disabilities and veterans.
• Collaborative environment empowering expertise sharing and professional growth.
• Comprehensive benefits including health insurance and transparency in coverage.