Software Assurance (SwA) Team Lead / AppSec Team Lead
Job overview Software Assurance (SwA) Team Lead (TS) Locations: Arlington, VA (Pentagon) Description: Mantis Security is seeking a Software Assurance (SwA) Team Lead for the Joint Service Provider's Cyber Security program. The SwA Team Lead performs and supports the Software Assurance program and missions ensuring security is addressed holistically and systematically throughout the Software engineering Life-cycle (SDLC). Ensures Software Assurance teams provide best-in-class techniques, security testing tools and education to support and increase software security within the Joint Base Pentagon. Develops and maintains software assurance processes and practices to discover and diagnose software throughout the Software engineering Lifecycle (SDLC). The SwA Team Lead will ensure SwA process includes Security Engineering reviews on the system architecture. Security Engineering goes beyond examining a network diagram and data flows. Security Engineering requires analyzing the relationships between components and identifying flaws at the architectural level. The SwA Team Lead will support web application security testing, application security testing, and penetration testing, and will further develop and maintain software assurance processes and practices to discover and diagnose software throughout the Software engineering Life-cycle (SDLC). Security Clearance and Work Authorization: Must have current Top Secret clearance Due to contract qualifications, work authorization requires US Citizenship Background & Knowledge: Bachelor’s degree with 10 yrs of background, or Master’s degree with eight years of background, or PhD with 6 yrs of background Required, DoD 8570 IAT Level II certification is required (one of CCNA Security, CSA, GICSP, GSEC, Security CE, or SSCP) Required, 1 of GIAC Web Application Penetration Tester (GWAPT) or GIAC Secure Software Programmer (GSSP) certifications Required, DoD 8570 CND Auditor (one of CEH, CSA, CISA, or GSNA) Responsibilities: Demonstrate expert-level knowledge in planning, directing, and managing projects/operations in an organization similar in size to this acquisition Demonstrate expert-level knowledge and supervision of employees of various labor categories and skills in efforts similar in size and scope as this acquisition Demonstrate expert-level knowledge of Army, DOD and industry accepted policies, standards, best practices, and regulations related to Security Engineering Demonstrate strong current expertise of large, complex IT environments Demonstrate background in a DOD IT environment Demonstrate background with researching and fielding new and innovative technology Expert expertise to communicate in both oral and written forms, demonstrating an expertise to communicate effectively with all levels of staff as well as clients Demonstrate the capability to deliver presentations to senior leaders and in a conference setting Demonstrate expert-level expertise to utilize the Open Web Application Security Project (OWASP) testing guide as a baseline for conducting assessments Demonstrate expertise to conduct security forums and workshops to discuss Software Security Assurance Demonstrate expert-level expertise to conduct static and dynamic analysis on all applications (i.e. manual inspections & review, threat modeling, code review, and penetration testing) Demonstrate knowledge of the Common Weakness Scoring System (CWSS) to score software discovered vulnerabilities Demonstrate expert-level knowledge of Microsoft .NET programming language. Able to understand and manipulate other programming languages Python, PHP, JAVA, classic ASP, C, C#, C++ etc Demonstrate expertise to assess an application’s architecture and ensure that security is incorporated into the design of the system; background in security architecture design strongly desired Mantis Security believes that our strength is in our employees. We offer employees the chance to work with great people on projects of high importance, and are committed to providing the best culture that foster’s technical innovation and personal growth. To help our staff achieve a productive work-life balance, we offer a full range of highly-competitive benefits for our employees and their families (https://www.mantis - security.com/benefits). For more details visit or web siteat https://www.mantis-security.com. Company Description Providing excellence in Cybersecurity Defense, Info Assurance, Security Architecture, Security Engineering, Cloud Security, Systems Architecture, and DevSecOps to DoD and Intelligence Community customers.
May 7 2018 on Dealslister