Software Developer

ESM

$90K — $120K *
Information Technology
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • 10 years of software development experience, or 8 years with a Master's degree.
  • IAT-III certification (CISSP or CCSP) required.
  • Bachelor's degree in Cybersecurity or a related field.
  • Proficiency in modern programming languages including Python, C#, C++, Go, Rust, and Assembly.
  • Demonstrated experience with the full software development lifecycle (SDLC) and Agile methodologies.

Responsibilities

  • Develop, test, and maintain cybersecurity tools for vulnerability assessment.
  • Build proof-of-concept exploits and tailor Command and Control (C2) capabilities.
  • Conduct software development through full lifecycle phases such as requirements gathering and deployment.
  • Implement Security Technical Implementation Guides (STIGs) in development processes.
  • Utilize containerization technology like Docker for secure development environments.

Benefits

  • Chance to work in a high-stakes federal environment.
  • Engagement with cutting-edge cybersecurity tools and methodologies.
  • Opportunities for continuous learning and skill enhancement in software development and security.
  • Collaboration with experts in the field for knowledge sharing and development.
Full Job Description
We are hiring a Software Developer to support an enterprise-level program within a federal environment.

Job Description and Responsibilities

Responsible for developing, testing, and sustaining cybersecurity tools used to analyze protocol and service vulnerabilities, build proof-of-concept exploits, and tailor Command and Control (C2) capabilities in representative environments. Performed software development across the full lifecycle-including requirements gathering, design, coding, testing, deployment, and maintenance-using Agile and DevSecOps methodologies while leveraging version control systems, code analysis tools, and debugging techniques. Implemented STIGs, worked extensively with communication protocols such as DNS, HTTP/S, WebSockets, and SMB, and developed software and automation using languages including Python, C/C++, C#, Go, Rust, and Assembly. Utilized containerization technologies such as Docker and software virtual environments (e.g., PyEnv) to support secure, scalable, and repeatable development and testing workflows while ensuring compliance with established tool development lifecycle requirements.

Required Knowledge, Skills and Abilities (KSA)
  • Demonstrated experience with the full software development lifecycle (SDLC), including requirements gathering, design, development, testing, deployment, sustainment, and maintenance using Agile, DevSecOps, or similar methodologies.
  • Proficiency in developing, testing, debugging, and analyzing software using modern programming languages (e.g., C#, C, C++, Python, Go, Rust, Assembly), code analysis tools, version control systems, containerization technologies (e.g., Docker), and virtual development environments (e.g., PyEnv).
  • Experience developing and tailoring proof-of-concept exploits, leveraging Command and Control (C2) frameworks, analyzing protocol and service vulnerabilities, and implementing exploitation frameworks in representative test environments.
  • Strong understanding of networking and security concepts, including communication protocols (e.g., DNS, HTTP/S, WebSockets, SMB), STIG implementation, and vulnerability assessment methodologies.
  • Experience developing, validating, and sustaining cybersecurity tools that meet defined development lifecycle requirements, including testing, framework integration, and operational support.


Desired KSA
  • Be a positive, self-motivated, and proactive person with the ability to adapt to change and tolerate stressful situations
  • Candidate must communicate effectively with team members, team lead, management, and government customer
  • Must have the ability and desire to research and develop creative solutions to unique problems with minimal supervision


Minimum Training, Education, and Certifications
  • Ten (10) years of full-time experience in Software Development (may substitute 8 years with a Master's degree)
  • IAT-III requires one of the following current certifications: CISSP, CCSP
  • Bachelor's Degree in Cybersecurity or related discipline


Minimum Clearance
  • Top Secret


Physical Requirements
  • Required to stand, walk and sit; communicate verbally both in person and by telephone; use hands to finger, handle or feel objects or controls; reach with hands and arms. Regularly required to stoop, kneel, bend, crouch and lift up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, depth perception, color vision and the ability to adjust focus.
  • Physical demands associated with this position include extensive walking (including stairs) throughout offices and between buildings. May require use of public transportation, personal or Government vehicle to drive to local and/or remote office locations.


Additional Requirements
  • Other duties as assigned


Similar Jobs

More Jobs at ESM

More Information Technology Jobs

Find similar Software Developer jobs: