We are hiring a
Software Developer to support an enterprise-level program within a federal environment.
Job Description and ResponsibilitiesResponsible for developing, testing, and sustaining cybersecurity tools used to analyze protocol and service vulnerabilities, build proof-of-concept exploits, and tailor Command and Control (C2) capabilities in representative environments. Performed software development across the full lifecycle-including requirements gathering, design, coding, testing, deployment, and maintenance-using Agile and DevSecOps methodologies while leveraging version control systems, code analysis tools, and debugging techniques. Implemented STIGs, worked extensively with communication protocols such as DNS, HTTP/S, WebSockets, and SMB, and developed software and automation using languages including Python, C/C++, C#, Go, Rust, and Assembly. Utilized containerization technologies such as Docker and software virtual environments (e.g., PyEnv) to support secure, scalable, and repeatable development and testing workflows while ensuring compliance with established tool development lifecycle requirements.
Required Knowledge, Skills and Abilities (KSA)- Demonstrated experience with the full software development lifecycle (SDLC), including requirements gathering, design, development, testing, deployment, sustainment, and maintenance using Agile, DevSecOps, or similar methodologies.
- Proficiency in developing, testing, debugging, and analyzing software using modern programming languages (e.g., C#, C, C++, Python, Go, Rust, Assembly), code analysis tools, version control systems, containerization technologies (e.g., Docker), and virtual development environments (e.g., PyEnv).
- Experience developing and tailoring proof-of-concept exploits, leveraging Command and Control (C2) frameworks, analyzing protocol and service vulnerabilities, and implementing exploitation frameworks in representative test environments.
- Strong understanding of networking and security concepts, including communication protocols (e.g., DNS, HTTP/S, WebSockets, SMB), STIG implementation, and vulnerability assessment methodologies.
- Experience developing, validating, and sustaining cybersecurity tools that meet defined development lifecycle requirements, including testing, framework integration, and operational support.
Desired KSA- Be a positive, self-motivated, and proactive person with the ability to adapt to change and tolerate stressful situations
- Candidate must communicate effectively with team members, team lead, management, and government customer
- Must have the ability and desire to research and develop creative solutions to unique problems with minimal supervision
Minimum Training, Education, and Certifications- Ten (10) years of full-time experience in Software Development (may substitute 8 years with a Master's degree)
- IAT-III requires one of the following current certifications: CISSP, CCSP
- Bachelor's Degree in Cybersecurity or related discipline
Minimum ClearancePhysical Requirements- Required to stand, walk and sit; communicate verbally both in person and by telephone; use hands to finger, handle or feel objects or controls; reach with hands and arms. Regularly required to stoop, kneel, bend, crouch and lift up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, depth perception, color vision and the ability to adjust focus.
- Physical demands associated with this position include extensive walking (including stairs) throughout offices and between buildings. May require use of public transportation, personal or Government vehicle to drive to local and/or remote office locations.
Additional Requirements