Software Engineer - Sr

About the Role

In this role as a Senior Software Engineer, you will:

• Deliver end-to-end technical solutions for multiple products or complex projects.
• Solve complex problems with minimal guidance.
• Design, develop, and test software systems and/or applications for enhancements and new products.
• Write code according to coding specifications established for software solutions.
• Deliver software features with exceptional quality, meeting designated release plans and delivery commitments.
• Develop software solutions by studying information needs, conferring with users, studying systems flow, data usage, and work processes; investigating problem areas; and following the software development lifecycle.
• Document and demonstrate solutions by developing documentation, flowcharts, layouts, diagrams, charts, code comments, and clear code.
• Improve operations by conducting systems analysis and recommending changes in policies and procedures.
• Break down customer requirements/problems for the team.
• Clearly communicate technical concepts to stakeholders.
• Design and implement secure artifact provenance processes.
• Develop and maintain chain of custody documentation.
• Implement automated validation of build artifacts.
• Create and maintain security documentation for FedRAMP compliance.
• Configure and maintain build attestation systems.
• Perform security assessments of supply chain components.

About You

You are a fit for this position if your background include:

Must Have:

• 5 years of experience in software development.
• Bachelor's degree in Systems Engineering or similar.
• Proficiency in Golang, Python, JavaScript.
• Experience with Infrastructure as Code (IaC) such as Terraform.
• Working proficiency leveraging and operating AWS services such as IAM, SQS, S3, Lambdas, CloudFormation, CloudFront, DynamoDB, RDS, EKS, and EC2.
• Experience with REST APIs and microservices.
• Strong problem-solving and analytical thinking skills.
• Automation and scripting proficiency with Bash, PowerShell.
• Strong understanding of the software development lifecycle (SDLC).
• Solid understanding of software supply chain security concepts.
• Familiarity with main software supply chain security frameworks (e.g., SLSA).
• Experience with artifact signing and verification systems (e.g., Sigstore, in-toto).
• Demonstrated experience with FedRAMP compliance processes.

Nice to Have:

• Knowledge of container security and container signing (e.g., Cosign).
• Understanding of SLSA (Supply Chain Levels for Software Artifacts) framework.
• Familiarity with CISA's software supply chain security guidance.
• Knowledge of Executive Order 14028 requirements.
• Understanding of the Sigstore set of standards and tools is a plus.
• Good knowledge of cryptography concepts (digital signatures, symmetric and asymmetric encryption, hashing, etc.).
• Hands-on security engineering or application security experience is a plus.
• Understanding of OWASP Top 10 vulnerabilities and best mitigation practices.
• Good written and verbal communication skills.
• Knowledge of SCRUM Agile methodology.
• Understanding of CI/CD pipelines.
• Experience with GitHub and Azure DevOps.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

The pay range that the employer in good faith reasonably expects to pay for this position is $44-54\hr USD.

Our opt-in benefits can include medical, dental, vision and retirement benefits.

Applications will be accepted on an ongoing basis.

Tundra Technical Solutions (the operator of this Talent Community) is a global leader of contingent talent services. Our success and our clients’ success are built on a foundation of service excellence. We are an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other applicable legally protected characteristic. Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable law, including the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Unincorporated LA County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: client provided property, including hardware (both of which may include data) entrusted to you from theft, loss or damage; return all portable client computer hardware in your possession (including the data contained therein) upon completion of the assignment, and; maintain the confidentiality of client proprietary, confidential, or non-public information. In addition, job duties require access to secure and protected client information technology systems and related data security obligations.

Salary : $44 - $54