Strong grasp of Computer Science fundamentals and Software Development Life Cycle (SDLC).
Proficient in at least one major programming language (C/C++, Java, Ada, Rust, or Go); familiarity with scripting languages like Python and Perl is a bonus.
Solid understanding of offensive and defensive security principles, vulnerabilities, and OWASP guidelines.
Demonstrated ability to analyze code to identify vulnerabilities and explain functionality.
Experience with both static and dynamic code analysis tools.
Knowledge of software testing methodologies, including IV&V.
Excellent analytical, problem-solving, and communication skills.
Responsibilities
Collaborate within a team focused on cyber security.
Analyze and evaluate code for vulnerabilities and functionality.
Design and carry out software testing methods, including integration and system testing.
Apply cryptographic principles to software testing and analysis.
Prepare comprehensive reports and briefings for stakeholders.
Perform any other assigned tasks as needed.
Benefits
Working on a mission-driven cyber security team.
On-site work at Aberdeen Proving Grounds, promoting a collaborative environment.
Opportunities to apply cutting-edge security practices and technologies.
Full Job Description
Software Engineer - Code Assessment
Responsibilities
Work in a team environment with a cyber security mission.
Read, analyze, and understand code to identify vulnerabilities and explain functionality. Experience with static and dynamic code analysis tools.
Design and execute software testing methodologies, including integration, system, and acceptance testing, as well as Independent Verification and Validation (IV&V).
Apply cryptographic principles to software analysis and testing methodologies.
Prepare professional reports and briefings
All other duties assigned
Qualifications
Strong understanding of Computer Science fundamentals (e.g., algorithms, data structures, computer architecture, logic) and Software Development Life Cycle (SDLC).
Proficiency in at least one major programming language (C/C++, Java, Ada, Rust, or Go). Familiarity with scripting languages like Python and Perl is a plus.
Solid understanding of offensive and defensive security principles, including common vulnerabilities (CWEs, CVEs) and OWASP guidelines. Experience with cybersecurity, risk management, and information assurance.
Demonstrated ability to read, analyze, and understand code to identify vulnerabilities and explain functionality.
Experience with static and dynamic code analysis tools.
Experience with software testing methodologies, including integration, system, and acceptance testing, as well as Independent Verification and Validation (IV&V).
Understanding of cryptographic principles.
Software Engineering Practices: Knowledge of software best practices, including version control, documentation, and code clarity.
Excellent analytical, problem-solving, and communication skills (written and verbal). Ability to prepare professional reports and briefings and collaborate effectively within a team.
Clearance:
An active DoD secret or higher, clearance.
Education & Experience:
Bachelor's degree in Computer Science, Computer Engineering, relevant technical field, or equivalent practical experience.
4-7 years of experience.
4 years of directly related experience can be substituted for a degree.