Position Description
Join our Risk Assessment Team in Huntsville, AL., working independently to verify and validate developed software. The Software Assurance (SwA) Assessor will ensure that secure software development lifecycles are being followed. This involves being integrated within DevSecOps environments, reviewing static and dynamic scans, software designs for cybersecurity requirements, reviewing threat and risk mitigation, completing supply chain reviews, and RMF controls compliance with Department of Defense polices, guides, and best practices.
Perform software assurance cybersecurity assessments utilize static, dynamic, and manual code analysis tools and techniques
Conducting Secure Software Development Lifecycle (S-SDLC) reviews
Communicate with program key stake holders on solutions to software and software development risks
Document and brief software assessment reports
Qualifications
TO BE SUCCESSFUL IN THIS ROLE, YOU WILL HAVE:
DoD SECRET clearance
IAT I baseline certification (e.g. CompTIA Sec+)
Experience with at least one programming language (C/C++/C#, JAVA, PERL, Python)
Ability to adapt to changing priorities while multi-tasking between several projects
Ability to reason and document software vulnerability impacts to confidentiality, integrity, availability and propose mitigations to reduce the risk
DESIRED SKILLS AND QUALIFICATIONS:
Experience with one or more source code scanning tools (SonarQube, Fortify, Coverity, etc.)Familiar with eMASS
Familiar with Agile software development
Familiar with a DevSecOps platform such as Gitlab, Azure DevOps, etc.
Company Overview
Serco Inc. (Serco) is the Americas division of Serco Group, plc. Serco serves every branch of the U.S. military, numerous U.S. Federal civilian agencies, the Intelligence Community, the Canadian government, state and local governments, and commercial clients. We help our clients deliver vital services more efficiently while increasing the satisfaction of their end customers. Headquartered in Herndon, Virginia, Serco Americas has over 9,000 employees and is part of a $4 billion global business that helps transform government and public services around the world. At Serco, our employees are our most valuable asset - we listen, respect and support them throughout their career at Serco. We invite you to become part of our dynamic team. Serco is an equal opportunity employer committed to diversifying our workforce (Race/ Color/ Sex/ Sexual Orientation/ Gender Identity/ Religion/ National Origin/ Disability/ Vets).
To review Serco benefits please visit: https://www.serco.com/na/careers/benefits-of-choosing-serco .
If you require an accommodation with the application process please email: careers@serco-na.com or call the HR Service Desk at 800-628-6458, option 1. Please note, due to EEOC/OFCCP compliance, Serco is unable to accept resumes by email.
Serco does not accept unsolicited resumes through or from search firms or staffing agencies without being a contracted approved vendor. All unsolicited resumes will be considered the property of Serco and will not be obligated to pay a placement or contract fee. If you are interested in becoming an approved vendor at Serco, please email Agencies@serco-na.com .
COVID-19 Regulations: Serco complies with all applicable COVID-19 requirements. This may require employees to be vaccinated against COVID-19, provide attestations regarding vaccination status and/or COVID-19 testing, or satisfy other conditions of employment that Serco deems appropriate, and employees may be required to show proof of vaccination and/or negative COVID-19 test results as a condition of employment (except in limited circumstances where an employee is legally entitled to an accommodation).
Click here to apply now (https://careers-sercona.icims.com/jobs/50094/software-assurance-assessor/job?mode=apply&apply=yes&in_iframe=1&hashed=-1834477830)
Refer a friend for this job
New to Serco?
Join our Talent Community! (https://talent.serco-na.com/talentcommunity/signup)
ID 50094
Recruiting Location : Location US-AL-Redstone Arsenal
Category Information Security/Cyber
Position Type Full-Time
Security Clearance Secret
Telework No - Teleworking not available for this position
Campaign LPWBB
