Must be a US Citizen and must be clearable to a MBI (public trust).
Position Description The EADIS program is looking for a skilled Software Security Engineer to take a lead in improving quality of software design and implementation from security perspective. This position would require interfacing with various stakeholders like developers, security testers, clients, ISSO to advise on secure development practices, vulnerability remediation approach and assessment of false positive vulnerability.
Experience with code analysis tools such as Client Fortify.
Proven communication skills with both internal development team members and external FEMA business stakeholders.
Expert knowledge on OWASP Top 10 vulnerabilities remediation approach
Technical background doing security testing
Knowledge of web related technologies (Web applications, Web Services and Service Oriented Architectures) and of network/web related protocols
Provide primary job duties:
Job Duty 1 with % of time ? Perform code review to improve software security (20%)
Job Duty 2 with % of time ? Consult and facilitate discussion across various Task Order teams on secure coding practices (20%)
Job Duty 3 with % of time - Work with developers to accurately assess description of false positive vulnerability (20%)
Job Duty 4 with % of time - Advise Task Order teams and application ISSO on Remediation Plan assessment and implementation approach (20%)
Job Duty 5 with % of time ? As appropriate, maintain secure development standards, policies, procedures and provide training to developers and testers (20%)
Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!