Software Security Engineer in Rome, NY at Booz Allen Hamilton

Date Posted: 2/11/2018

Job Snapshot

  • Employee Type:
    Full-Time
  • Location:
    Rome, NY
  • Job Type:
    Engineering
  • Experience:
    Not Specified
  • Date Posted:
    2/11/2018

Job Description

Job Number: R0008600

Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years. Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.


Software Security Engineer

Key Role:

Provide security technical services, including configuration and source code analysis using Static Code Analyzer for the support of a fast-paced Agile environment, to ensure all applicable National Institute of Standards and Technology (NIST) controls are being enforced, documented, and implemented in compliance with the DoD Software Approval Process. Perform consistent audits to ensure software is being developed and operated, as defined. Develop documentation in support of testing efforts, including Test Plans, Preliminary Findings Reports, Security Assessment Reports, and other similar test artifacts, as required by the client. This position is located in Rome, NY.


Basic Qualifications:

-Experience with performing source code analysis using the following example tools: HP Fortify, FindBugs, or Klocwork Static Code Analysis

-Experience in programming with one or more of the following languages: Java, JavaScript, Python, C/C++, Groovy, Ruby, Perl, PHP, jQuery, ASP, .NET, and HTML

-Experience with problem solving through out-of-the-box approaches

-Ability to perform software validation analysis, defining and documenting test plans and specifications required for regulatory compliance, and developing testing strategies and methodologies

-Active Secret clearance

-BA or BS degree


Additional Qualifications:

-Experience with UNIX or Linux-based operating systems, including Red Hat Enterprise Linux a plus

-Experience with security methodologies, system dependencies, and source code analysis processes

-Experience with information assurance, risk management framework (RMF), and Security Technical Implementation Guides (STIGs) a plus

-Experience with review and interpretation of DoD system requirements

-Knowledge of Configuration Management and Automation tools, including JIRA, Stash, Subversion, Confluence, or Jenkins

-Knowledge of Agile Development and Management with Agile Scrum

-Knowledge of Cloud and VM technology to design and implement automated testing and scanning strategies

-Ability to troubleshoot problems that occur during the configuration and scanning process in a fast-paced, constantly changing environment

-Ability to make recommendations that mitigate security vulnerabilities identified in reports

-Possession of excellent oral and written communication skills

-Active Top Secret clearance

-DoD 8570 IAT Level II Certification


Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions.  Booz Allen is committed to delivering results that endure.

We are proud of our diverse environment, EOE, M/F/Disability/Vet.

#LI-AH1, AFH16, AFH26, DIG-AF, TMJ16

CHECK OUT OUR SIMILAR JOBS

  1. Software Engineer Jobs
  2. Project Engineer Jobs

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.