Application Security Developer

SciTec has been awarded multiple government contracts and is growing our creative Team! SciTec, Inc. is a dynamic small business with the mission to deliver advanced sensor data processing technologies and scientific instrumentation capabilities in support of National Security and Defense. We support customers throughout the Department of Defense and U.S. Government in building innovative new tools to deliver unique world-class data exploitation capabilities.

SciTec has immediate opportunities for talented Application Security Developers to support programs focusing on low-latency data ingest, processing, fusion, and tracking for exploitation of remote sensing systems. Our ideal candidate will have experience working in application development and cyber security across multiple software languages and work well as part of a rapid pace, collaborative, small-team environment consisting of Scientists, Engineers, and Developers to prototype, develop, integrate, and test advanced front-end and back-end software solutions for integrating advanced exploitation algorithms into government frameworks.

Responsibilities

• Perform security assessments of data processing applications developed in C++, Java, and Python. Identify vulnerabilities and risks and make recommendations to application development teams for remediation actions
• Assess applications for vulnerabilities using manual and automated methods, including but not limited to static analysis tools, dynamic analysis tools, and fuzzers
• Review application architectures and apply threat modeling to identify high-risk software components. Identify risk-reducing design changes.
• Support development teams in conducting security-focused software code reviews
• Perform security assessments, informed by publicly available vulnerability databases, of existing software dependencies and make recommendations for suitable alternatives, whether Open Source Software (OSS), Government Off the Shelf Software (GOTS), Commercial Off the Shelf Software (COTS)
• Identify, document, assess, and communicate application vulnerabilities to internal development teams and to application stakeholders
• Evaluate and recommend security testing tools for use in SciTec development processes
• Develop, curate, and improve application security detections (static and dynamic) to identify vulnerabilities at scale
• Develop, enhance, and interpret security tools and standards. Provide support to improving secure development practices and processes at SciTec

Requirements

• Two (2) or more years of relevant work experience developing software applications
• The ability to obtain and maintain a DoD Security Clearance
• Familiarity with at least C++, Java, or Python

Candidates who have any of the following skills will be preferred

• 5+ years of relevant application security experience
• Bachelor’s degree in computer science, physical sciences, mathematics, or engineering
• Understanding of OWASP Top 10 and CWE 25 with experience in implementing remediation strategies
• Experience using SAST, DAST, and Open-Source Vulnerability Scanning tools
• Familiarity with C++, Java, and Python and experience in additional programming languages
• Well versed in application risk assessment and risk categorization
• Ability to effectively present and communicate security threats and risks to ANY audience and impress upon them the mitigation techniques and strategies
• Solid problem solving and analytical skills, able to quickly digest any issue/problem encountered and recommend an appropriate solution
• A current active DoD Security clearance

Benefits

SciTec offers a highly competitive salary and benefits package, including:

• 3% Fully Vested Company 401K Contribution (no employee contribution required)
• 100% company paid HSA Medical insurance, with a choice of 2 buy-up options
• 80% company paid Dental insurance
• 100% company paid Vision insurance
• 100% company paid Life insurance
• 100% company paid Long-term Disability insurance
• Short-term Disability insurance
• Annual Profit-Sharing Plan
• Discretionary Performance Bonus
• Paid Parental Leave
• Generous Paid Time Off, including Holiday, Vacation, and Sick Pay
• Flexible work hours

The pay range for this position is $87,00 to $172,000. SciTec considers several factors when extending an offer of employment, including but not limited to the role and associated responsibilities, a candidate's work experience, education/training, and key skills. This is not a guarantee of compensation.

SciTec is committed to hiring and retaining a diverse workforce and is proud to be an Equal Opportunity/Affirmative Action employer.