Strategic ACI is seeking an on-site in St. Louis, Mid-Level Software Engineer to lead the systematic engineering approach to ensure cybersecurity is built into the software as it is developed. To conduct threat modeling, employ cybersecurity software, and conduct risk assessments to detect and analyze cybersecurity threats. To attack software as it is developed to ensure security is built in while it is created using secure coding. To work with DevOps engineers to ensure security vulnerabilities are assessed and fixed during development and share knowledge of threats with the IPO team.

Responsibilities:

• Lead Needs and Collection Management software cyber security design and development.
• Analyze software development for cybersecurity threats and vulnerabilities.
• Analyze current Needs and Collection Management systems/services and provide recommendations and alternatives to ensure cybersecurity.
• Analyze Needs and Collection Management cybersecurity metrics and provide recommendations to eliminate vulnerabilities.
• Identify and recommend Needs and Collection Management improved cybersecurity tools, processes, and models to reduce vulnerabilities.
• Facilitate program epic planning, ensuring inclusion of cybersecurity objectives.

Qualifications:

Required:

• Active TS/SCI Clearance with the ability to obtain/maintain a polygraph.
• Bachelor’s degree or higher in Computer Science, Information Technology, Management Information Systems, or related STEM degree.
• 6+ years experience in DevSecOps processes, practices, tools, and methods.
• Demonstrated experience with DevSecOps culture and practices.
• Demonstrated experience with Ruby, Perl, Java, and Python.

Desired:

• Demonstrated experience with Puppet, Chef, ThreatModler, Checkmarx, Immunio, or Aqua.
• Demonstrated experience with Kubernetes, Docker, and Amazon Web Services.
• Certified DevSecOps Engineering (DSOE).