Career Opportunities

• Extensive experience developing web applications with JavaScript frameworks such as Angular, React, Node.js, Next.js
• Experience in building secure APIs within AWS Cloud platform and building secure AWS Lambda Serverless components
• Experience with Agile methodologies and tools
• Continuous Integration & Continuous Deployment (CI/CD) and automated testing tools and processes using Jenkins, Cypress testing, GitHub and Jira tools
• Knowledge and experience with design paradigms such as Microservice architecture, GraphQL, Restful Design and Stream processing (NiFi, Kinesis, etc.)
• Experience working with SQL Databases (e.g., PostgreSQL, SQL Server) and writing Stored Procedures, Functions and Triggers
• Experience troubleshooting existing code to resolve application bugs and address technical debt
• Bachelor’s Degree or 5+ years of relevant experience in lieu of a degree
• US citizenship and an active TS/SCI with Polygraph security clearance required

• Experience with Kafka
• Experience with container and container orchestration technologies like Docker
• Experience with AWS workflow tools and PowerBI / Tableau reporting tools
• Ability to engage with stakeholders at all levels to present, discuss, influence technical solutions
• Experience with interacting in a Linux environment (e.g. Bash scripting)

• Provide advanced-level troubleshooting, tuning, and support for:
  • HPC infrastructure and associated applications including Nagios, xCAT, failover software, and compilers.
  • Distributed computing environments utilizing RES, LSF, and SLURM workload managers.
  • Enterprise Linux operating systems, specifically Red Hat and SUSE.
• Administer and support high-performance parallel file systems such as XFS, GPFS, and Lustre.
• Collaborate with cross-functional teams to implement best practices for system performance, resource utilization, and fault tolerance.
• Conduct system testing and validation to ensure seamless integration and operational efficiency.
• Develop and maintain documentation for system configurations, procedures, and troubleshooting guides.

• 10 years’ experience working in a large complex IT environment providing functional industry expertise with the skills listed above.
• A bachelor’s degree in a technical discipline
  • In lieu of a bachelor’s degree, 15 years of experience working in a large complex IT environment providing industry functional expertise with the skills listed above.
• Experience with HPC MPP systems
• Experience with enterprise Linux operating systems, specifically Red Hat and SUSE

• • A current government clearance, background investigation, and polygraph are required.

Responsibilities

• Support the program’s Information Assurance (IA) and cybersecurity posture by developing, implementing, and maintaining security policies, standards, and methodologies.
• Assist with the preparation, review, and maintenance of security documentation including System Security Plans (SSPs), Risk Assessment Reports, Certification & Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).
• Evaluate security solutions to ensure compliance with requirements for processing classified information.
• Maintain configuration management (CM) of security-relevant software, hardware, and firmware, ensuring all changes are tracked and evaluated for security impact.
• Provide daily support to the Information System Security Manager (ISSM) in maintaining appropriate security posture for systems, programs, and enclaves.
• Conduct vulnerability and risk assessments to support certification and accreditation processes.
• Administer user identification and authentication mechanisms for assigned systems.
• Plan, coordinate, and enforce IT security programs, policies, and operational procedures.
• Maintain accurate records of system configurations, upgrades, and security controls for workstations, servers, routers, firewalls, and network devices.
• Develop and maintain documentation in accordance with ODNI and DoD policies, supporting ongoing NIST Risk Management Framework (RMF) compliance.
• Serve as the approval authority for information systems under assigned control.

Qualifications

• • Current security tools and techniques
  • Hardware/software security implementation
  • Communication protocols
  • Encryption techniques/tools

• • Four (4) additional years of ISSO experience may be substituted for a bachelor’s degree.
  • Certifications: DoD 8570 compliance with Information Assurance Management (IAM) Level I or higher (e.g., CAP, GSLC, or Security+ CE).

Preferred Skills

• Strong understanding of NIST RMF, DoD, and ODNI security policies and procedures.
• Proven experience performing risk assessments and managing security documentation.
• Excellent communication skills and the ability to work collaboratively across technical and non-technical teams.
• Detail-oriented, with a proactive approach to maintaining system compliance and security posture.
• US citizenship and an active TS/SCI with polygraph security clearance required

• Design, develop, and maintain reusable frameworks, libraries, APIs, and reference implementations that integrate applications with zero trust identity and access services
• Create developer documentation, integration guides, and best practices to streamline adoption of security services by product teams
• Implement and support fine-grained authorization approaches (e.g., entitlements, row-level security, ABAC) and align them to business policies
• Collaborate with architects and platform engineers to ensure security services meet performance, usability, resilience, and compliance objectives
• Conduct design and code reviews; coach development teams on secure coding, identity integration, and threat-informed design patterns
• Evaluate emerging zero trust and identity/access technologies and recommend improvements to architecture, tooling, and developer experience

• US citizenship with an active TS/SCI with CI Polygraph required
• Minimum 7 years of professional experience in software engineering, security engineering, or closely related roles
• Bachelor’s degree in Computer Science, Engineering, or a related field (experience may be considered in lieu of a degree)
• Hands-on experience designing and deploying application components on AWS in IL6+ classified environments
• Proven experience implementing modern authentication and authorization standards (OAuth 2.0, OpenID Connect, SAML)
• Expertise with fine-grained access control models (entitlements, row-level security, ABAC)
• Strong proficiency in at least one programming language (Java, Go, or Python) for building frameworks, SDKs, and platform services
• Working knowledge of zero trust architecture and principles, including identity-centric security and least-privilege access
• Experience authoring developer documentation, integration guides, and reference implementations
• Solid understanding of secure coding practices, SDLC security, and integrating security controls into CI/CD pipelines

• Experience with enterprise identity platforms (e.g., AWS Cognito, Azure AD, Keycloak) and policy engines (e.g., OPA, Cedar)
• Background with authorization-as-a-service patterns, token exchange, and policy-based access control in microservices
• Familiarity with DISA STIGs/SRGs and compliance workflows in classified environments
• Contributions to internal SDKs, developer portals, or platform engineering products that improve developer productivity

• Design, develop, and maintain reusable frameworks, libraries, APIs, and reference implementations that integrate applications with zero trust identity and access services
• Create developer documentation, integration guides, and best practices to streamline adoption of security services by product teams
• Implement and support fine-grained authorization approaches (e.g., entitlements, row-level security, ABAC) and align them to business policies
• Collaborate with architects and platform engineers to ensure security services meet performance, usability, resilience, and compliance objectives
• Conduct design and code reviews; coach development teams on secure coding, identity integration, and threat-informed design patterns
• Evaluate emerging zero trust and identity/access technologies and recommend improvements to architecture, tooling, and developer experience

• US citizenship with an active TS/SCI with CI Polygraph required
• Minimum 7 years of professional experience in software engineering, security engineering, or closely related roles
• Bachelor’s degree in Computer Science, Engineering, or a related field (experience may be considered in lieu of a degree)
• Hands-on experience designing and deploying application components on AWS in IL6+ classified environments
• Proven experience implementing modern authentication and authorization standards (OAuth 2.0, OpenID Connect, SAML)
• Expertise with fine-grained access control models (entitlements, row-level security, ABAC)
• Strong proficiency in at least one programming language (Java, Go, or Python) for building frameworks, SDKs, and platform services
• Working knowledge of zero trust architecture and principles, including identity-centric security and least-privilege access
• Experience authoring developer documentation, integration guides, and reference implementations
• Solid understanding of secure coding practices, SDLC security, and integrating security controls into CI/CD pipelines

• Experience with enterprise identity platforms (e.g., AWS Cognito, Azure AD, Keycloak) and policy engines (e.g., OPA, Cedar)
• Background with authorization-as-a-service patterns, token exchange, and policy-based access control in microservices
• Familiarity with DISA STIGs/SRGs and compliance workflows in classified environments
• Contributions to internal SDKs, developer portals, or platform engineering products that improve developer productivity

• Design and secure complex system and network architectures that span multiple enclaves with varying classification levels
• Create, review, and maintain security authorization documentation in alignment with DoD and federal cybersecurity policies
• Implement and guide the team through the Risk Management Framework (RMF) accreditation lifecycle; prior DIACAP experience is acceptable
• Perform in-depth assessments of open-source, GOTS, and COTS software for security risks and integration viability
• Utilize and interpret results from vulnerability management platforms and automated security scanning tools
• Recommend and validate system-level mitigations to meet required security postures and accreditation criteria
• Collaborate with development and infrastructure teams to ensure secure design and implementation practices across cloud-based big data systems
• Support government efforts in securing trust boundaries and interconnection agreements with external systems
• Contribute to the establishment and optimization of defensible security processes where existing policy is absent
• Apply knowledge of IA policy and enterprise cybersecurity architecture to secure networks, compute environments, and enclave systems
• Facilitate productive engagement with multidisciplinary teams and stakeholders across technical and policy domains

• 9+ years as an ISSE on large-scale, multi-tiered programs
• Bachelor's degree in a related field; or 7+ years with a Master’s degree; or 13+ years with a high school diploma or equivalent
• Strong working knowledge of TCP/IP, networking fundamentals, and common enterprise architectures
• DoD 8570 compliance at IAT Level II (Security+, SSCP, CCNA-Security, or GSEC required)
• Experience with DISA STIGs/SRGs, system hardening, and compliance tools and workflows
• Familiarity with RMF accreditation packages, POA&Ms, and eMASS or similar A&A systems
• Hands-on experience using security scanning tools and interpreting scan results to drive mitigation strategies
• US citizenship and an active TS/SCI with CI Polygraph security clearance required

• CISSP-ISSEP certification strongly preferred

• Supports information assurance programs for systems, enclaves, organizations, and programs
• Proposes, coordinates, implements, and enforces information systems security policies, standards, and methodologies
• Maintains the operational security posture to ensure compliance with established security policies and procedures
• Manages security aspects of information systems and performs day-to-day security operations
• Evaluates security solutions to ensure compliance with requirements for processing classified information
• Conducts vulnerability and risk assessments to support certification and accreditation activities
• Provides configuration management for security-related software, hardware, and firmware
• Manages system changes and assesses associated security impacts
• Prepares and reviews security documentation, including SSPs, Risk Assessment Reports, C&A packages, and SRTMs
• Supports security authorization activities in accordance with the NIST Risk Management Framework (RMF)

• A minimum of ten (10) years of experience serving as an Information Systems Security Officer (ISSO) on programs and contracts of comparable scope, complexity, and type is required. This experience must include at least two (2) of the following areas: familiarity with current security tools; hardware and software security implementations; communication protocols; and encryption techniques and tools
• A bachelor’s degree in computer science or a related field from an accredited college or university is required.
• DoD 8570 compliance at the Information Assurance Management (IAM) Level I or higher is also required.
• US citizenship and an active security clearance required

• Five (5) years of demonstrated experience in cybersecurity.
• Three (3) years of demonstrated experience with malware analysis.
• Two (2) years of demonstrated experience with tools such as GHIDRA, SYSInternals, FireEye AX, or similar technologies.
• One (1) year of demonstrated experience with development of code in languages such as Python, Lua, C/C++, Ruby or similar.

• Requires DoD 8570 compliance with CSSP Analyst baseline certification.
• Information Assurance Technical (IAT) Level II or Level III certification
• Successful completion of SPLUNK Fundamentals 1
• GIAC, GCFA or GREM certification.
• US citizenship and an active security clearance required

• Responsible for multiple mechanical systems, to include analysis and reporting of mechanical data and metrics
• Maintain documentation pertaining to the various projects, design drawings, technical reports, and engineering activities
• Support functionality and provide engineering analysis for the Customer’s mission critical OCONUS facility

• At least 5 years of mechanical engineering experience
• Bachelor’s degree from an accredited ABET University in Electrical Engineering or other STEM-related field
• Analyze data from the site’s monitoring system to assist design development, site expansion capabilities, or determining inefficiencies
• Ability to calculate and develop cooling requirements for either new or existing facilities
• In-depth knowledge of mechanical equipment to include but not limited to; Chillers (air-cooled and water-cooled), pumps, computer-room air conditioners (CRAC/CRAH), Fan-Coil units, In-Row Coolers
• Develop Standard Operating Procedures and Sequence of Operations for cooling systems
• Develop and execute preventative and/or predictive maintenance plans for mission critical equipment
• Ability to interpret and design mechanical drawings and control wiring diagrams
• Diagnose and troubleshoot mechanical equipment to resolve issues or improve efficiencies
• Understanding of industry standard data center best practices and how to implement them
• Collaborate with external vendors to source equipment and material
• Engineer-in-training (EIT)
• Must be willing to support up to 15% OCONUS support
• US citizenship and an active TS/SCI with Polygraph security clearance required

• Knowledgeable in power distribution systems pertaining to Data Center configurations
• Understanding of Building Monitoring Systems
• Understanding of Computer aided design software such as AutoCAD, Solidworks, and Flow-Simulation software

• Design and develop advanced mobile software tools for iOS and/or Android platforms
• Conduct reverse engineering of mobile applications
• Perform vulnerability analysis and developing proof-of-concept exploit software
• Debug and diagnose low-level software issues using COTS and GOTS tools
• Collaborate with cross-functional teams to support CNO missions
• Apply knowledge of networking, security, and mobile system internals
• Author and maintain technical documentation to support tools, techniques, and research
• Mentor junior developers and contribute to team growth and capability

• At least 5 years of relevant experience in mobile software development (iOS, Android, or both)
• Bachelor's degree in Computer Science or related field
• Proficient in Python and C development for development and debugging
• Experience with reverse engineering tools (e.g. IDA Pro, Ghidra, gdb, WinDbg)
• Familiarity with ARM and/or x86 architecture
• Understanding of security mitigation techniques such as ASLR, DEP, NX, sandboxing
• Experience with version control systems such as Git or GitLab
• US citizenship and an active TS/SCI security clearance required; MUST be willing to be put in for a Full Scope polygraph

• Native-level mobile development using Objective-C, Swift, Java, or Kotlin
• Experience with vulnerability research and exploit development
• Familiarity with Unix/Linux internals and object file formats (e.g., ELF)
• Knowledge of Computer Network Exploitation (CNE) techniques
• Understanding of mobile operating system security mechanisms (e.g., SELinux, application sandboxing)
• Experience working with low-level networking, packet inspection, and sockets programming