What are the responsibilities and job description for the Protective Services Officer position at VAE, Inc.?
OVERVIEW :
VAE, Inc. is a full service IT Infrastructure Solutions Company focused on building, securing and supporting our clients mission critical enterprises. We provide a distinctive array of design, integration and implementation services as well as fully managed service offerings. VAE is at the forefront of leveraging multi-tenant capable technologies and shared IT services to create secure, reliable and cost-effective end-to-end services and solutions. We deliver exceptional infrastructure solutions with extremely talented employees using a client-focused partnering approach.
JOB TYPE : Full-time
LOCATION : Springfield, VA 22151 US (Primary)
JOB DESCRIPTION :
VAE is working on a project that tackles the problem of managing large-scale IT networks. We are seeking talented and highly motivated engineers to join us in bringing this project to a larger audience.
You would be responsible for helping to create, evolve, document, and implement security development and deployment practices for a product thats delivered both on-premises as well as to the cloud. This work would include evaluating and disseminating information and recommendations from resources such as NIST, OWASP, MITRE, and other sources of security information and best practices. This work would also includewith the assistance of the rest of the development teamimplementing these security controls and practices as part of the software development process, supplying guidance and requirements for deploying our product on-premises, and creating a secure environment for our upcoming cloud offering.
Our product is a .NET Core application (with some TypeScript and Python components) backed primarily by PostgreSQL, that serves both a web frontend and REST API. The application source is hosted in GitLab, and we use merge requests and GitLab CI to manage our code contribution workflows.
QUALIFICATIONS :
Things we really need
- Experience maintaining a secure software supply chain (monitoring for CVEs, creating SBOMs, etc.)
- Experience evaluating security best practices and applying them to processes and assets
- Experience reviewing code and architecture to identify potential security issues
- Experience writing internal documentation around security evaluations and decisions
- Experience with security monitoring infrastructure (log analysis, web application firewalls)
- United States citizenship
- 8 years of experience
Things we want too
Things that are extra cool
Our end of the bargain
CLEARANCE LEVEL : None
CERTIFICATIONS : none
Equal Opportunity Employer :
We are equal opportunity / affirmative action employers, committed to diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or protected veteran status, or any other protected characteristic under state or local law.
PI90b44eb4c3a1-31181-33968928
