What are the responsibilities and job description for the Cybersecurity Software Evaluator position at OSAAVA Services?
Job Description
Clearance: TS/SCI Mandatory to Apply (Active/Valid)
Location: Colorado Springs, CO
Position Description:
We are seeking Cybersecurity Software Evaluators to assess and analyze the security of software applications used in high-security government environments. This role involves conducting cyber evaluations, security testing, and risk assessments on software applications to ensure compliance with Department of Defense (DoD) cybersecurity standards.
This position is initially for a few months with the potential for long-term employment based on project needs and performance. The ideal candidate will have a strong cybersecurity background, experience with software security assessments, and an active TS/SCI clearance.
Key Responsibilities:
Conduct cyber evaluations of software applications, identifying vulnerabilities, security gaps, and compliance risks.
Perform static and dynamic analysis of software code to detect security flaws and backdoors.
Test applications for compliance with DoD cybersecurity frameworks, including NIST 800-53, RMF, and STIGs.
Work closely with developers, security engineers, and system administrators to implement security recommendations.
Perform penetration testing and vulnerability assessments on government software systems.
Document findings, create security reports, and provide actionable recommendations for remediation.
Assist with the development of secure coding practices and software security guidelines.
Evaluate third-party software for compliance with government cybersecurity standards.
Stay current with emerging cybersecurity threats, tools, and best practices.
Required Qualifications:
Active DoD TS/SCI security clearance with the ability to maintain it in valid status.
Bachelor’s degree in Cybersecurity, Computer Science, or related field (or equivalent experience).
5 years of experience in cybersecurity, penetration testing, or software security evaluation.
Certifications such as CISSP, CEH, OSCP, or GIAC GWEB are highly preferred.
Experience with secure coding practices and software vulnerability assessment tools (e.g., Nessus, Burp Suite, Fortify, SonarQube).
Familiarity with secure software development lifecycle (SSDLC) methodologies.
Strong knowledge of encryption protocols, authentication mechanisms, and network security.
Ability to work independently and collaborate with security teams to enhance software security postures.
Preferred Qualifications:
Experience conducting cybersecurity assessments in DoD or government environments.
Understanding of container security and DevSecOps principles.
Familiarity with threat modeling, risk assessment frameworks, and security controls testing.
Knowledge of cloud security best practices (AWS, Azure, GovCloud).
Work Environment & Requirements:
Location: Colorado Springs, CO – On-site presence required.
Potential hybrid/remote flexibility based on project needs.
Must be willing to undergo additional security vetting and polygraph testing if required.
Ability to work independently while coordinating with government cybersecurity teams.
Why Join Us?
Work on mission-critical software security evaluations for government agencies.
Competitive salary and benefits package, including medical, dental, vision, PTO, and retirement plans.
Potential for long-term employment based on project extensions and performance.
Opportunity to work with cutting-edge cybersecurity tools and methodologies.
Collaborative work environment with skilled cybersecurity professionals.
Company Description
Cyber Security company, specializing in specific cyber defense activities and IT services. We are a SDVOSB.
Cyber Security company, specializing in specific cyber defense activities and IT services. We are a SDVOSB.
Clearance: TS/SCI Mandatory to Apply (Active/Valid)
Location: Colorado Springs, CO
Position Description:
We are seeking Cybersecurity Software Evaluators to assess and analyze the security of software applications used in high-security government environments. This role involves conducting cyber evaluations, security testing, and risk assessments on software applications to ensure compliance with Department of Defense (DoD) cybersecurity standards.
This position is initially for a few months with the potential for long-term employment based on project needs and performance. The ideal candidate will have a strong cybersecurity background, experience with software security assessments, and an active TS/SCI clearance.
Key Responsibilities:
Conduct cyber evaluations of software applications, identifying vulnerabilities, security gaps, and compliance risks.
Perform static and dynamic analysis of software code to detect security flaws and backdoors.
Test applications for compliance with DoD cybersecurity frameworks, including NIST 800-53, RMF, and STIGs.
Work closely with developers, security engineers, and system administrators to implement security recommendations.
Perform penetration testing and vulnerability assessments on government software systems.
Document findings, create security reports, and provide actionable recommendations for remediation.
Assist with the development of secure coding practices and software security guidelines.
Evaluate third-party software for compliance with government cybersecurity standards.
Stay current with emerging cybersecurity threats, tools, and best practices.
Required Qualifications:
Active DoD TS/SCI security clearance with the ability to maintain it in valid status.
Bachelor’s degree in Cybersecurity, Computer Science, or related field (or equivalent experience).
5 years of experience in cybersecurity, penetration testing, or software security evaluation.
Certifications such as CISSP, CEH, OSCP, or GIAC GWEB are highly preferred.
Experience with secure coding practices and software vulnerability assessment tools (e.g., Nessus, Burp Suite, Fortify, SonarQube).
Familiarity with secure software development lifecycle (SSDLC) methodologies.
Strong knowledge of encryption protocols, authentication mechanisms, and network security.
Ability to work independently and collaborate with security teams to enhance software security postures.
Preferred Qualifications:
Experience conducting cybersecurity assessments in DoD or government environments.
Understanding of container security and DevSecOps principles.
Familiarity with threat modeling, risk assessment frameworks, and security controls testing.
Knowledge of cloud security best practices (AWS, Azure, GovCloud).
Work Environment & Requirements:
Location: Colorado Springs, CO – On-site presence required.
Potential hybrid/remote flexibility based on project needs.
Must be willing to undergo additional security vetting and polygraph testing if required.
Ability to work independently while coordinating with government cybersecurity teams.
Why Join Us?
Work on mission-critical software security evaluations for government agencies.
Competitive salary and benefits package, including medical, dental, vision, PTO, and retirement plans.
Potential for long-term employment based on project extensions and performance.
Opportunity to work with cutting-edge cybersecurity tools and methodologies.
Collaborative work environment with skilled cybersecurity professionals.
Company Description
Cyber Security company, specializing in specific cyber defense activities and IT services. We are a SDVOSB.
Cyber Security company, specializing in specific cyber defense activities and IT services. We are a SDVOSB.
