Senior Staff/Senior Application Security Architect (Clearance Required)

SciTec•Boulder, CO

1d•$120,000 - $1,175,000•Onsite

About The Position

SciTec, a wholly owned subsidiary of Firefly Aerospace, is a dynamic non-traditional defense contractor that delivers advanced technologies in support of U.S. National Security and Defense. For the past forty-five plus years, we have supported Department of Defense customers by developing innovative remote sensing algorithms, tools, and techniques to deliver world-class data exploitation capabilities supporting missile defense; intelligence, surveillance, & reconnaissance; space domain awareness; and aircraft survivability missions. Important Notice: SciTec exclusively works on U.S. government contracts that require U.S. citizenship for all employees. Applicants that do not meet this requirement will not be considered. SciTec has an immediate opportunity in our Boulder, CO office for an Application Security Architect with experience in the Software Development Lifecycle (SDLC) and Risk Management Framework (RMF). This individual will support our portfolio AppSec team in ensuring that SciTec-developed software systems meet Federal information system requirements and address customer expectations. This role will require close coordination with customer Cybersecurity stakeholders and with SciTec software development teams. We’re looking for individuals with both strong technical communications skills and with experience in secure software development practices.

Requirements

Current SECRET DoD or DoE clearance
Bachelor’s Degree in a technical discipline, or equivalent professional experience
At least 5 years of relevant work experience in software development or cybersecurity, with at least two years of experience specifically in software development.
Demonstrated experience with the design, architecture, and security engineering of custom software applications
Ability to travel to support customer interactions around the Denver metro area
Detail Oriented
Good verbal and written communication skills

Nice To Haves

Current TOP SECRET clearance with eligibility for Sensitive Compartmented Information.
Demonstrated experience with the Secure Software Development Framework (SSDF, NIST 800-218) or other experience in software development and software architecture security.
Demonstrated experience with the development and management of systems accreditation packages under the Risk Management Framework (NIST 800-53).
Candidates will be preferred who have a CISSP or an alternate certification satisfying DoD Cyber Workforce Framework qualifications for the Application Security Architect role.

Responsibilities

Development of software requirements and implementation guidance based on analysis of NIST 800-53 or other security controls
Close coordination with customer Cybersecurity subject matter experts to ensure that SciTec software aligns with customer security requirements and needs
Documentation and generation of evidence detailing how SciTec software systems address NIST 800-53 and other security controls. Where gaps exist, develop and manage of Plans of Action and Milestones (POAMs) to address those gaps
Evaluation of results and identification of remedial actions based on security evaluations and penetration tests
Support to SciTec development teams in the design of system architectures which meet established Cybersecurity requirements and align with customer needs
Support to staff mentoring and process improvement within the SciTec AppSec and software engineering teams.
Additional duties as required and assigned