Secure Software Assessment SME (Clearance Required) - Future Opportunity

Benefits

Parental leave

Not verified

Non-birth-parent leave

Not verified

Family-building benefits

• Fertility benefits: Not verified
• Adoption assistance: Not verified
• Surrogacy assistance: Not verified

Mental health support

Not verified

Relocation assistance

Not verified

Childcare support

Not verified

Learning budget

Not verified

Verification

Not verified

Salary

Not verified not verified - source not recorded; timestamp not recorded

401(k) match

Not verified

Was this benefit information wrong? Tell us.

Schedule

Shift type

Not verified

Weekend work

Not verified

Application

Cover letter

Not verified

Assessment

Not verified

Deadline

Not stated

Where they hire

State eligibility is not yet verified.

About this role

Secure Software Assessment SME (Clearance Required) - Future Opportunity Alexandria, VA ICF is seeking a Secure Software Assessment Subject Matter Expert (SME) to support a Defense Human Resources Activity (DHRA) cybersecurity program. In this role, you will oversee software assurance activities and lead efforts to ensure application security through secure coding practices, code reviews, and vulnerability analysis. The SME will advise developers and system owners on software security requirements, manage static and dynamic code analysis, and provide actionable recommendations to mitigate risk and strengthen DHRA's secure development posture. This is for an expected future opportunity. The role can be based in either Alexandria, VA or Seaside, CA. What You'll Do Lead application security assessment and remediation activities across multiple DHRA software systems and environments. Perform and oversee secure code reviews, static (SAST) and dynamic (DAST) analysis, and manual assessments to identify vulnerabilities. Develop and maintain software security standards, secure coding guidelines, and review procedures consistent with DoD and NIST frameworks. Advise development teams on remediation strategies, secure design patterns, and risk prioritization. Coordinate integration of security tools into the software development lifecycle (CI/CD pipelines). Support vulnerability tracking and closure through collaboration with developers, system owners, and RMF personnel. Provide training and mentorship on secure coding principles and software assurance practices. Generate detailed technical reports and executive summaries of findings, trends, and recommendations. Evaluate and recommend application security technologies and techniques to improve software assurance capabilities. Contribute to governance and continuous improvement of DHRA's software security processes. Required Qualifications Bachelor's degree

Read the full description at icf.wd5.myworkdayjobs.com. FewerJobs shows a source-linked preview and links to the original posting.