Career Opportunities with Whitney, Bradley and Brown

A great place to work.

Open Positions
Share with friends or Subscribe!

Software Assurance Assessor

Office: Huntsville, AL
Location: Huntsville, AL
Job ID: S20-0346

JOB TITLE: Software Assurance Assessor

PROJECT OVERVIEW:

Decisive Analytics a WBB Company has a Software Assurance Assessor opening in Huntsville, AL.

The ideal candidate enjoys reviewing software development program compliance with cybersecurity best practices, researching supply chains for weaknesses and finding vulnerabilities within developed source code. Software Assurance Assessor is part of a holistic risk assessment team, working closely with controls validation teams to understand software that is part of a system. Software and software development weaknesses are identified†and the Software Assurance Assessor works with the risk assessment team to document residual risk to the system from software vulnerabilities.

JOB DESCRIPTION AND RESPONSIBILITIES:

  • Perform software assessments on Commercial-off-the-Shelve, Government-off-the-Shelve, and Open Source software for cybersecurity supply chain risk management
  • Utilize static, dynamic and manual techniques to perform software analysis
  • The ideal candidate will have experience with compiling software, running scan tools
  • Conducting Software Development Lifecycle (SDLC) reviews by verifying RMF controls and artifacts within eMASS
  • An understanding of DoD testing tools, techniques, DISA STIGs and IAVM are required. Some experience in preforming risk assessment and proposing solutions to cybersecurity vulnerabilities will be required
  • Communicate with program key stake holders on solutions to software and software development risks
  • Document and brief software assessment reports following standardized templates

REQUIRED SKILLS AND QUALIFICATIONS:

Security Clearance: Secret

  • DoD Secret clearance (minimum)
  • IAT I baseline certification
  • Experienced with at lease one programming language (C/C++/C#, JAVA, PERL, Python)
  • Ability to adapt to constant changes while multi-tasking between several projects
  • Ability to reason and document software vulnerability impacts to confidentiality, integrity, availability and propose mitigations to reduce the residual risk

DESIRED SKILLS AND QUALIFICATIONS:

  • IAT II baseline certification
  • Familiar with DISA STIGs, Checklists and Viewer
  • Familiar with eMASS and NIST 800-53 RMF Controls
  • Experience with one or more source code scanning tools.
  • Familiar with software development, (e.g. Waterfall, Agile, DevSecOps), and supporting tools
  • Knowledge of secure coding practices
  • Experienced with more than one programming language (C/C++/C#, JAVA, PERL, Python)
  • Windows or RedHat system admin experience and certification

TRAVEL: None

LOCATION: Huntsville, AL

KEY WORDS: Software Assurance

WBB is a technical and management consulting company that provides innovative products and services that solve government and commercial customerís toughest problems. For more than 30 years, WBB has set the standard for excellence in consulting services, while providing its employees with an outstanding work environment with ample opportunities for growth and success. WBB continues to enjoy impressive growth, which is directly attributed to the companyís hiring practice of always hiring the very best professionals from government, military and industry.

We are proud of our diverse environment and are an Equal Opportunity Employer. WBB is committed to a policy of equal employment opportunity. WBB participates in E-Verify.

WBB does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of WBB and WBB will not be obligated to pay a placement fee.

Applicant Tracking System Powered by ClearCompany HRM Applicant Tracking System