Technical Security Engineer Secure App Dev

Company: Bering Straits Native Corporation
Location: Washington
Posted on: February 1, 2025

Job Description:

OverviewSummaryBering Global Solutions, a subsidiary of Bering Straits Native Corporation, is currently seeking a qualified Technical Security Engineer to serve as an IRS Security Engineer Subject Matter Expert (SME) specializing in Secure Application Development, Code Reviews, and Vulnerability Analysis and Management. The position operates independently or as part of a team under government direction, supporting security engineering requirements for IRS applications. The incumbent performs essential duties directly related to secure application development, vulnerability management, and security documentation, making independent decisions as necessary for complex security assessments, code review, and vulnerability remediation.ResponsibilitiesESSENTIAL DUTIES & RESPONSIBILITIES

• Application Security Engineering: Conduct secure application development, code reviews, and vulnerability analysis to identify, assess, and manage risks within IRS applications.
• Vulnerability Analysis and Management: Develop and implement comprehensive vulnerability analysis and management processes for application and operating system security, ensuring alignment with IRS policies and industry standards.
• Secure Code Review: Perform in-depth secure code reviews and remediation analysis to support the mitigation of security risks, adhering to best practices in secure application development.
• Agile Project Management for Security Requirements: Utilize AGILE methodologies to manage security requirements, integration, and compliance in IRS projects, collaborating with cross-functional teams to ensure continuous improvement and risk management.
• Documentation and Compliance: Develop and maintain security documentation including policies, procedures, and processes in accordance with IRS IRM, NIST, ISO 27001-2, and other regulatory standards.
• Communication and Presentation: Communicate effectively with technical and non-technical stakeholders, presenting complex security issues and recommendations in clear, concise terms.QualificationsQUALIFICATIONS - EXPERIENCE, EDUCATION, AND CERTIFICATIONTo perform this job successfully, an individual must be able to satisfactorily perform each essential duty. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
• Experience and Skillset:

• 10+ years of technical experience in application and operating system security, focusing on vulnerability analysis and management.
• 2-5 years of experience in developing and managing security requirements within AGILE frameworks.
• 10+ years of working knowledge of IRS security policies, procedures, and processes.
• Strong familiarity with industry best practices, including IRS IRM, NIST, ISO 27001-2, and applicable information security regulations.
• Advanced written and verbal communication, including presentation skills for technical and non-technical stakeholders.
• Education and Certifications:
  • Bachelor's degree in Computer Science, Information Systems, Cybersecurity, Enterprise Risk Management, or a related field, or equivalent experience.
  • IAM/IAT Level II or similar certification is preferred.Knowledge, Skills, Abilities, and Other Characteristics
    • Self-directed and able to work independently.
    • Excellent written and verbal communication skills.
    • Strong interpersonal and collaboration skills.
    • Superior time management skills and ability to prioritize tasks.
    • Eagerness to learn, adapt, and contribute to solving complex security issues.
    • Prior experience in a professional office and/or government environment.
    • Highly organized multi-tasker capable of thriving in a fast-paced environment.
    • Proficient in Microsoft Office Suite.
    • Government contracting experience is a plus.NECESSARY PHYSICAL REQUIREMENTSThe physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Employees must always maintain a constant state of mental alertness. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Essential and marginal functions may require maintaining physical condition necessary for bending, stooping, sitting, walking, or standing for prolonged periods of time. Most of the time is spent sitting in a comfortable position with frequent opportunity to move about.COVID VACCINATION REQUIREMENTSThis position is not currently subject to federal or company requirements regarding COVID-19 vaccination or regular testing; however, this may be subject to change based on federal or company mandates.DOT COVERED/SAFETY-SENSITIVE ROLE REQUIREMENTSThis position is not subject to federal requirements regarding Department of Transportation "safety-sensitive" functions.WORK ENVIRONMENTWork environment characteristics described here are representative of those that must be borne by an employee to successfully perform the essential functions of this job. The job is performed in an office setting with exposure to computer screens and requires extensive use of a computer, keyboard, mouse, and multi-line telephone system. The work described herein is primarily in a modern office setting. Occasional travel may be required.ADDITIONAL QUALIFYING FACTORSAs a condition of employment, you will be required to pass a pre-employment drug screening and have acceptable background check results. If applicable to the contract, you must also obtain the appropriate clearance levels required and be able to obtain access to military installations.SHAREHOLDER PREFERENCEBSNC gives hiring, promotion, training, and retention preference to BSNC shareholders, shareholder descendants and shareholder spouses who meet the minimum qualifications for the job.Bering Straits Native Corporation is an equal opportunity employer. All applicants will receive consideration for employment, without regard to race, color, religion, creed, national origin, gender, or gender-identity, age, marital status, sexual orientation, veteran status, disability, pregnancy or parental status, or any other basis prohibited by law.Equal Opportunity Employer/Veterans/DisabledWe participate in the E-Verify Employment Verification Program. We are a drug free workplace.#CB
      #J-18808-Ljbffr

Keywords: Bering Straits Native Corporation, Richmond , Technical Security Engineer Secure App Dev, IT / Software / Systems , Washington, Virginia