Junior Software Assurance Engineer

Junior Software Assurance Engineer

Engineer Sr Step 1

Schriever SFB

Colorado Springs, Colorado

HX5 is an award-winning provider of engineering, research and development, and technical services to clients such as NASA and the Department of Defense. Founded in 2004, HX5 is a fast-growing veteran- and woman-owned company with locations nationwide.

HX5 is currently seeking a Junior Software Assurance Engineer to support the Missile Defense Agency (MDA) on the Integrated Research and Development for Enterprise Solutions (IRES) contract at Schriever Space Force Base in Colorado

Essential Duties and Responsibilities :

Learn to perform software security audits identifying risks associated with software and provide a comprehensive security assessment for the MDA IC ISSM. This will include known vulnerabilities published to the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD).

Discover and compile a list of dependencies / bill of materials for software being audited.

Use of various tools to discover vulnerabilities within a software application.

Use various programming / scripting / query languages to correlate industry best practices for secure software development.

Identify common security issues including input validation, error and exception handling, logging, access controls, SQL

Injection, cross-site scripting (XSS), etc. and articulate how to mitigate or reduce their impact.

Help correlate Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG) vulnerabilities and other policies with vulnerabilities discovered and documenting them to be consumable by a wide audience.

Monitor a queue of requests for software security audits.

Assist with developing reporting metrics for team activities.

Occasional Interaction with requesters of varied backgrounds to determine use-case scenarios, understand application architecture and to help determine risk mitigation strategies.

The successful candidate will :

Be able to independently perform all aspects of software code auditing.

Have the ability to translate technical data into a format understood by individuals form varied backgrounds.

Be articulate, in both written and verbal communication, able to brief senior Contract and Government leadership.

Work in a fast-paced, high-pressure, changing environment.

Be able to use the STIG viewer and identify, understand and apply STIGs required for review of the software.

Have a strong commitment to a team environment.

Possess a willingness to learn new technologies.

Have the ability to de-conflict request / requirements.

Salary Information : This position is expected to pay $69,500 - $94,500 annually; depending on experience, education, and any certificationsthat are directly related to the position.

Education and Experience :

• Must have one of the following combinations of education and experience :

HS Diploma (or GED) and six (6) years of general experience

interpreted languages.

Desired Requirements :

processes.

PowerShell, Team Foundation Server (TFS), JIRA, Get, Internet Information Service (IIS), Tomcat, Docker, Kubernetes,

SQL Server, Oracle Database, Angular, MVC, HTML, ASP, Bash, and Perl.

Position Type / Expected Hours of Work :

This is a full-time position requiring 40 hours per week and offers a flexible work schedule Monday through Friday during core business hours.

Other Position Requirements :

HX5 offers a competitive salary and benefits package to include :

HX5, LLC is an Equal Opportunity Employer that recruits and hires qualified candidates without regard to race, religion, sex, sexual orientation, gender identity, age, national origin, ancestry, citizenship, disability, or veteran status.

HX5, LLC is a Drug Free Workplace Employer.

ACCESSIBILITY NOTICE :

If you need a reasonable accommodation for any part of the employment process due to a physical or mental disability, pleasecall (850) 362-6551.

function () {'use strict';socialShare.init();})();

Salary : $69,500 - $94,500