The Alaka`ina Foundation Family of Companies (FOCs) is looking for a Software Compliance Analyst to support our government customer located in Washington, DC.
DESCRIPTION OF RESPONSIBILITIES:
Manages and maintains the Secure Software Development Life Cycle (SSDLC) performing static and dynamic code analysis across multiple coding languages; Vulnerability Scanning. Work hands-on with development teams to develop, roll-out, and provide oversight for a comprehensive SSDLC program, including secure coding guidelines and static code analysis. Contributes to raise the application security posture across the organization, by developing an application security framework, including SSDLC development standards and guidelines for application developers; assisting the development teams identify application security vulnerabilities through a combination of security assessment techniques. Performs vulnerability scanning Retrieve and review software packages, verify and validate documentation/version is in order, and scan for network worthiness and recommend or deny package for installation on classified/unclassified network IAW AR, DoD Regulations, approved whitelist, common criteria, and research of documentation and industry security-related reviews Conduct static and dynamic code scanning of COTS/GOTS applications and websites. Contractor shall create and maintain a SSDLC for the Agency to adhere to when developing applications utilizing COTS/GOTS products Document and report on performance of the functions listed above in the manner proscribed by the ISSM. Contractor shall provide regular or on-demand presentations to ISSM, Commander or others deemed appropriate by the ISSM and ensure standard operating procedures are written and updated on all areas listed above Other duties as assigned.REQUIRED DEGREE/EDUCATION/CERTIFICATION:
Bachelor of Science in Computer Science or related field or four to seven (4-7) years of experience in the field of software development and security code review. IAM Level II, IAW AR 25-2 and DA Pam 25-2-6 at time of hire.REQUIRED SKILLS AND EXPERIENCE:
Working experience with DoD secure systems Fortify tool code scanning and report generation Working knowledge of DISA STIG requirements Experience working on a team and developing and executing POA&Ms Experience reviewing, updating, and/or creating Standard Operating Procedures (SOPs) EMASS tool OWASP open source security scanning applicationDESIRED CERTS, SKILLS AND EXPERIENCE:
ISAC CISM EC Council CEH CompTIA CASP+ CompTIA Security+ CompTIA Network+ CompTIA A+ DISA ACAS DISA EMASS Network-ProREQUIRED CITIZENSHIP AND CLEARANCE:
U.S. Citizenship required. Must have an active Top-Secret clearance.
The Alaka`ina Foundation Family of Companies (FOCs) is a fast-growing government service provider. Employees enjoy competitive salaries. Eligible full-time employees enjoy a 401K plan with company match; medical, dental, disability, and life insurance coverage; tuition reimbursement; paid time off; and 11 paid holidays.
We are an Equal Opportunity/Affirmative Action Employer. We are proud to state that we do not discriminate in employment decisions on the basis of race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status. If you are a person with a disability and you need an accommodation during the application process, please click to request accommodation. We E-Verify all employees.
The Alaka`ina Foundation Family of Companies (FOCs) is comprised of industry-recognized government service firms designated as Native Hawaiian Organization (NHO)-owned and 8(a) certified businesses. The Family of Companies (FOCs) includes Ke`aki Technologies, Laulima Government Solutions, Kūpono Government Services, and Kāpili Services, Po`okela Solutions, Kīkaha Solutions, LLC, and Pololei Solutions, LLC. Alaka`ina Foundation activities principally benefit the youth of Hawaii through charitable efforts which includes providing innovative educational programs that combine leadership, science & technology, and environmental stewardship.
For additional information, please visit
#LI-JS1
#ClearanceJobs
Email