35 applicants

Company

Original Job Post

PBG Consulting · 4 days ago

Lead Software Security Engineer

Washington, DC

Full-time

Onsite

Senior Level

9+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

ConsultingInformation Technology

Growth Opportunities

Insider Connection @PBG Consulting

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

As the Lead Software Security Developer, you will have the overarching responsibility for developing software applications, services, and systems, ensuring they meet industry standards and security requirements.

You will manage source code using best practices in version control and research new techniques and technologies to stay current in software development methodologies and tools.

Collaborating with stakeholders, you will define needs and specifications, develop proposed solutions, and integrate developed software applications into the operational baseline.

Your role will encompass test-driven development, modification of existing software, creation of technical models and prototypes, and consultation with customers or stakeholders on technical issues.

Develop software applications, services, and systems, including user-facing and back-end services, ensuring compliance with industry standards and security protocols.

Manage source code using industry version control best practices and utilize code validation tools to ensure code quality, security, and compatibility.

Collaborate with stakeholders to define needs and specifications, develop proposed solutions, and integrate developed software applications into the operational baseline.

Perform test-driven development using strong unit testing techniques and address all browser and device types.

Modify or enhance existing software to correct errors, adapt to new hardware, upgrade interfaces, and improve performance.

Create technical models, architectural artifacts, and prototypes, including physical, interface, logical, or data models.

Share actionable information with colleagues and leadership, engaging with the community as a resident expert.

Prepare reports and consult with customers or stakeholders on technical issues, providing operational support, responding to questions, and offering status updates.

Develop DevOpsSec (CI/CD) pipelines and incorporate security protocols while deploying infrastructure as code (IaC).

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

JavaPythonJavaScriptFull-Stack DevelopmentDevOps ToolsAgile MethodologiesAPI DesignNIST SP 800-204SDLCSoftware SecuritySecurity Control Assessment

Required

Bachelor's degree in science, technology, engineering, and math (STEM) field and nine (9) years IT security (Cybersecurity) experience; OR No Bachelor's Degree with eleven (11) or more years of IT security (Cybersecurity) experience.

Professional experience using a programming language such as Java, Python, JavaScript, or equivalent to build and design complex software applications.

Experience designing, developing, testing, and deploying software, including full-stack web-based applications using industry standard DevOps tools.

Experience applying agile development methodologies to software development.

Experience building web application programming interfaces (API) using standards established in NIST SP 800-204.

Demonstrated expertise in the complete software development lifecycle (SDLC).

Experience applying software security techniques, controls, and best practices to engineer software to mitigate vulnerabilities and risks.

Experience with performing Security Control Assessment in compliance with NIST SP 800 series.

US Citizenship is required

Bachelor's Degree is required

Minimum of 9 years' position related experience is required.