SciTecBoulder
developing software for communicating on at least one of the following message protocols: RTS, IBS, CMF, GCN, MDS, Link-16
The ability to obtain and maintain a DoD security clearance
Knowledge in C++ language on Linux
Detail oriented
Good verbal and written...
GeoLogics CorporationAurora, 30 mi from Boulder
for this job you will have an active Department of Defense Secret security clearance; U.S. Citizenship required. Responsibilities: Develop and maintain Java-based backend applications for satellite ground systems. Collaborate with cross-functional teams...
SAICDenver, 26 mi from Boulder
Security Clearance Desired Experience Cloud technologies with an emphasis on Azure or Amazon Web Services. Active Directory experience, particularly in a large environment. Strong scripting skills. NetApp storage administration and operation experience.
LAN...
PMATDenver, 26 mi from Boulder
preferably building a high impact product. TS+ security clearance and familiar with operating within secure DoD and IC environments. Proven experience with event-driven, object-oriented, and service-oriented patterns and architectures.
Experience...
SciTecBoulder
on software security OR an academic thesis project (or equivalent) on software security topics.
Candidate must be capable of qualifying for a SECRET DoD or DoE security clearance.
Candidate must be capable of satisfying DoD 8570.01M Information Assurance...
SAICDenver
Active Top Secret Security Clearance. ...
DCCALouisville
Candidates MUST have an active TS/SCI Clearance. Provide support to ground segment anomalies and security threats. ...
Get new jobs by email!
Get email updates for the latest Security Clearance jobs in Boulder
It's free, and you can cancel email updates at any time
Application Security Engineer
SciTec | Boulder | Full-time | apply.workable.com |
Description: SciTec has been awarded multiple government contracts and is growing our creative team! SciTec, Inc. is a dynamic small business with the mission to deliver advanced sensor data processing technologies and scientific instrumentation capabilities in support of National Security and Defense.
We support customers throughout the Department of Defense and U.S. Government in building innovative new tools to deliver unique world-class data exploitation capabilities.
SciTec has an immediate opportunity for a talented Application Security Engineer in our Boulder, CO office. The Application Security Engineer will support developers in designing, implementing, and verifying secure application environments.
Responsibilities
• Perform security analysis of software applications using both automated tooling (static code analysis, software composition analysis, fuzzing) and manual code and design review.
• Support integration of tools and processes into DevSecOps pipelines.
• Design, implement, and integrate improvements to SciTec's software analysis continuous integration tooling.
• Support software developers in remediating issues identified during code analysis.
• Support software developers in integrating security into system designs.
• Other duties as assigned.
Requirements
• Six years of experience in cybersecurity or software development OR a Bachelor's degree and two years of experience OR a Master's degree.
• Either two years of experience (industry or open-source contributions) specifically focused on software security OR an academic thesis project (or equivalent) on software security topics.
• Candidate must be capable of qualifying for a SECRET DoD or DoE security clearance.
• Candidate must be capable of satisfying DoD 8570.01M Information Assurance System Architect and Engineer Level 1 training requirements within six months of hire.
• Detail oriented
• Good verbal and written communication skills
Candidates who have an active DoD or DoE security clearance will be strongly preferred. In addition, we are seeking candidates who have any of the following skills or experiences:
• Experience identifying, exploiting, and remediating application vulnerabilities. Credit for pubished CVEs is a plus.
• Experience with one or more of the following programming languages: C++, Python, JavaScript (or TypeScript), Rust
• Experience with using and configuring static code analysis tooling (e.g. Coverity, Klockwork, SonarQube, etc.)
• Experience with using and configuring software composition analysis tooling (e.g. Sonatype, Anchore, Snyk, JFrog, XRay, etc.)
• Experience with vulnerability discovery using fuzzing (AFL, AFL++, honggfuzz, etc.)
• Experience with application debugging, runtime instrumentation (Strace, eBPF), and reverse engineering (Ghidra, IDA Pro)
• Familiarity with threat modeling tools such as the MITRE ATT&CK framework.
• Resumes, Cover Letters, and Applications which are generated by AI will not be considered for employment.
Benefits
SciTec offers a highly competitive salary and benefits package, including:
• Employee Stock Ownership Plan (ESOP)
• 3% Fully Vested Company 401K Contribution (no employee contribution required)
• 100% company paid HSA Medical insurance, with a choice of 2 buy-up options
• 80% company paid Dental insurance
• 100% company paid Vision insurance
• 100% company paid Life insurance
• 100% company paid Long-term Disability insurance
• 100% company paid Hospital Indemnity insurance
• Voluntary Accident and Critical Illness insurance
• Short-term Disability insurance
• Annual Profit-Sharing Plan
• Discretionary Performance Bonus
• Paid Parental Leave
• Generous Paid Time Off, including Holiday, Vacation, and Sick Pay
• Flexible Work Hours
The pay range for this position is $90,000 - $146,000/year. SciTec considers several factors when extending an offer of employment, including but not limited to the role and associated responsibilities, a candidate's work experience, education/training, and key skills.
This is not a guarantee of compensation.
SciTec is committed to hiring and retaining a diverse workforce and is proud to be an Equal Opportunity/Affirmative Action employer.
We support customers throughout the Department of Defense and U.S. Government in building innovative new tools to deliver unique world-class data exploitation capabilities.
SciTec has an immediate opportunity for a talented Application Security Engineer in our Boulder, CO office. The Application Security Engineer will support developers in designing, implementing, and verifying secure application environments.
Responsibilities
• Perform security analysis of software applications using both automated tooling (static code analysis, software composition analysis, fuzzing) and manual code and design review.
• Support integration of tools and processes into DevSecOps pipelines.
• Design, implement, and integrate improvements to SciTec's software analysis continuous integration tooling.
• Support software developers in remediating issues identified during code analysis.
• Support software developers in integrating security into system designs.
• Other duties as assigned.
Requirements
• Six years of experience in cybersecurity or software development OR a Bachelor's degree and two years of experience OR a Master's degree.
• Either two years of experience (industry or open-source contributions) specifically focused on software security OR an academic thesis project (or equivalent) on software security topics.
• Candidate must be capable of qualifying for a SECRET DoD or DoE security clearance.
• Candidate must be capable of satisfying DoD 8570.01M Information Assurance System Architect and Engineer Level 1 training requirements within six months of hire.
• Detail oriented
• Good verbal and written communication skills
Candidates who have an active DoD or DoE security clearance will be strongly preferred. In addition, we are seeking candidates who have any of the following skills or experiences:
• Experience identifying, exploiting, and remediating application vulnerabilities. Credit for pubished CVEs is a plus.
• Experience with one or more of the following programming languages: C++, Python, JavaScript (or TypeScript), Rust
• Experience with using and configuring static code analysis tooling (e.g. Coverity, Klockwork, SonarQube, etc.)
• Experience with using and configuring software composition analysis tooling (e.g. Sonatype, Anchore, Snyk, JFrog, XRay, etc.)
• Experience with vulnerability discovery using fuzzing (AFL, AFL++, honggfuzz, etc.)
• Experience with application debugging, runtime instrumentation (Strace, eBPF), and reverse engineering (Ghidra, IDA Pro)
• Familiarity with threat modeling tools such as the MITRE ATT&CK framework.
• Resumes, Cover Letters, and Applications which are generated by AI will not be considered for employment.
Benefits
SciTec offers a highly competitive salary and benefits package, including:
• Employee Stock Ownership Plan (ESOP)
• 3% Fully Vested Company 401K Contribution (no employee contribution required)
• 100% company paid HSA Medical insurance, with a choice of 2 buy-up options
• 80% company paid Dental insurance
• 100% company paid Vision insurance
• 100% company paid Life insurance
• 100% company paid Long-term Disability insurance
• 100% company paid Hospital Indemnity insurance
• Voluntary Accident and Critical Illness insurance
• Short-term Disability insurance
• Annual Profit-Sharing Plan
• Discretionary Performance Bonus
• Paid Parental Leave
• Generous Paid Time Off, including Holiday, Vacation, and Sick Pay
• Flexible Work Hours
The pay range for this position is $90,000 - $146,000/year. SciTec considers several factors when extending an offer of employment, including but not limited to the role and associated responsibilities, a candidate's work experience, education/training, and key skills.
This is not a guarantee of compensation.
SciTec is committed to hiring and retaining a diverse workforce and is proud to be an Equal Opportunity/Affirmative Action employer.
Best jobs you don't want to miss: