Secure Software Assessment Subject Matter Expert (SME) jobs in United States
cer-icon
Apply on Employer Site
company-logo

iWorks Corporation · 1 month ago

Secure Software Assessment Subject Matter Expert (SME)

positionAlexandria, VA, USA
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$120K/yr - $200K/yr
date10+ years exp

iWorks Corporation is a leading provider of information technology and professional services to the federal government. The Secure Software Assessment Subject Matter Expert (SME) is responsible for ensuring the security of software applications through secure coding practices and code vulnerability assessments while leading a team of application security specialists.

E-CommerceInformation and Communications Technology (ICT)Information ServicesInformation TechnologySoftware
check
Growth OpportunitiesbadNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Lead a team of application security specialists
Provide guidance on secure coding practices and static/dynamic analysis methodologies
Oversee execution of application security assessments, code reviews, and vulnerability scans
Provide actionable recommendations to development teams and stakeholders
Develop and maintain application security procedures and training resources
Support integration of security tools within DevSecOps pipelines
Track and report on application security metrics and vulnerability trends
Ensure software evaluations meet DCWF Work Role 622 - Secure Software Assessor [Advanced] standards

Qualification

Application SecuritySecure Coding PracticesVulnerability AssessmentDevSecOps IntegrationCompTIA Security+CISSPStatic Application Security TestingDynamic Application Security TestingTraining DevelopmentMetrics TrackingRecommendations to StakeholdersSoftware Supply Chain ManagementContainer SecurityTeam Leadership

Required

Bachelor's degree in a technical discipline or related field and/or 10+ years of progressively complex experience in software development, vulnerability analysis, or application security management
Secret Security Clearance
Certifications: CompTIA Security+, Certified Information Systems Security Professional (CISSP)
Familiarity and/or expertise with the following tools and technologies: Assured Continuous Assessment Solution (ACAS), Endpoint Security Suite (ESS), Microsoft Defender for Endpoint/Server (MDE/S), Log Management Solution / Security Information and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR), User Activity Monitoring (UAM), Intrusion Detection System / Intrusion Prevention System (IDS/IPS), Cyber Operational Attributes Management System (COAMS) / Continuous Monitoring Risk Scoring (CMRS), Tanium, Privilege Access Management (PAM), Central Application Vulnerability Management, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Open Source Library Vulnerability Scanner (OSLVS), Container Security (CONSEC), Software Supply Chain Management (SSCM)

Preferred

Experience with Sonatype, GitLab/GitHub CI/CD, container security, Kubernetes, Terraform, or cloud-native security

Benefits

Medical, Dental, Vision, Life and Disability
401(k)
Health and Wellness Benefits
Paid Sick Time
Vacation Time
Holiday Time

Company

iWorks Corporation

twittertwittertwitter
company-logo
iWorks Corporation, founded in 2005, is a leading provider of information technology and professional services to the federal government.
dateFounded in 1989
location
Chicago, Illinois, USA
people-size51-200 employees
web-link
https://iworkscorp.com/

Funding

Current Stage
Growth Stage
Total Funding
$7M
2001-12-13Acquired
2000-06-20Series Unknown· $7M

Leadership Team

leader-logo
Jothi Radhakrishnan
Chief Operating Officer
linkedin
Company data provided by crunchbase