to equip the Warfighter with the best technology today and tomorrow. Responsibilities: Collaborate closely with developers to identify, mitigate, and remediate vulnerabilities in application code written in .NET, Java, JavaScript, PHP, Python, VB.NET, C, C++, and C#. Collaborate with development teams to triage and fix vulnerabilities identified as a … result of static and dynamic codeanalysis support. Assist developers in creating Plans of Action and Milestones (POA&Ms) and Mitigations for open findings and vulnerabilities, ensuring timely remediation and compliance. Conduct thorough source codeanalysis on Government Off-The-Shelf (GOTS) and Open-Source … Software (OSS) using Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) tools. Conduct staticcodeanalysis and dynamic codeanalysis services leveraging DoD approved vulnerability scanning software to include, but not limited to, Fortify SCA and Fortify WebInspect, and SwAT Provide More ❯
support cybersecurity compliance activities and secure software development for Air Force systems. In this role, you will assist in applying security hardening standards, conducting codeanalysis, and generating documentation to meet Department of Defense (DoD) cybersecurity requirements. The ideal candidate will have hands-on experience with Java/… with DISA STIGs and AFLCMC cybersecurity standards • Work closely with software sustainment teams to assess existing codebases and ensure alignment with security baselines • Conduct staticcodeanalysis using tools like Fortify and CodeSonar to identify vulnerabilities and compliance gaps • Compare system baselines to STIG checklists and document … in secure software development and software security compliance • Proficiency in Java and/or J2EE development • Hands-on experience using Fortify and CodeSonar for staticcodeanalysis • In-depth understanding of the DISA Application Security and Development STIG • Familiarity with DoD cybersecurity documentation and compliance processes • Active More ❯
solid experience in modern JavaScript/TypeScript, React and Angular, Node.js, and NPM. The ideal candidate should be passionate about writing clean, high-quality code and implementing robust tests. Key Responsibilities Design, develop, and maintain responsive and scalable UI components using modern frameworks. Write clean, maintainable, and testable code with a strong focus on performance and user experience. Collaborate with cross-functional teams to define, design, and ship new features. Ensure code quality through unit tests, staticcodeanalysis, and code reviews. Participate in continuous integration and delivery processes. Maintain high standards of … code quality and ensure adherence to best practices. Required Skills and Experience Frontend Development Strong proficiency in JavaScript (ES6+) and TypeScript. Deep understanding of: Functional programming concepts State management patterns Asynchronous programming Frameworks Solid experience in at least one of the following: React : Including Hooks, Context API/Redux More ❯
solid experience in modern JavaScript/TypeScript, React and Angular, Node.js, and NPM. The ideal candidate should be passionate about writing clean, high-quality code and implementing robust tests. Key Responsibilities Design, develop, and maintain responsive and scalable UI components using modern frameworks. Write clean, maintainable, and testable code with a strong focus on performance and user experience. Collaborate with cross-functional teams to define, design, and ship new features. Ensure code quality through unit tests, staticcodeanalysis, and code reviews. Participate in continuous integration and delivery processes. Maintain high standards of … code quality and ensure adherence to best practices. Required Skills and Experience Frontend Development Strong proficiency in JavaScript (ES6+) and TypeScript. Deep understanding of: Functional programming concepts State management patterns Asynchronous programming Frameworks Solid experience in at least one of the following: React : Including Hooks, Context API/Redux More ❯
solid experience in modern JavaScript/TypeScript, React and Angular, Node.js, and NPM. The ideal candidate should be passionate about writing clean, high-quality code and implementing robust tests. Key Responsibilities Design, develop, and maintain responsive and scalable UI components using modern frameworks. Write clean, maintainable, and testable code with a strong focus on performance and user experience. Collaborate with cross-functional teams to define, design, and ship new features. Ensure code quality through unit tests, staticcodeanalysis, and code reviews. Participate in continuous integration and delivery processes. Maintain high standards of … code quality and ensure adherence to best practices. Required Skills and Experience Frontend Development Strong proficiency in JavaScript (ES6+) and TypeScript. Deep understanding of: Functional programming concepts State management patterns Asynchronous programming Frameworks Solid experience in at least one of the following: React : Including Hooks, Context API/Redux More ❯
Reston, Virginia, United States Hybrid / WFH Options
CGI
Your future duties and responsibilities: The Cyber Security Dev Sec Ops Engineer will be responsible for ensuring a strong internal control environment through the staticcodeanalysis for vulnerabilities and threat detection on applications hosted on AWS environments Key Responsibilities: Tweak and tune rules to ensure optimal … this role: 8 -10 years of total IT experience with the following must haves: 6 years Experience in Cyber Security field SAST- Application security - StaticcodeAnalysis Third party open source vulnerabilities - Software composition analysis/SCA DAST -Pen test/Dynamic Application security Experienced with More ❯
Site Reliability Engineers (SREs) to ensure end-to-end solution delivery. Automate development and operations processes to enhance reliability and repeatability. Utilize Infrastructure as Code (IaC) and Configuration as Code (CaC) to automate deployments. Additional Skills Desired: Experience with SAFe Agile methodologies. Information Assurance/DoD 8570 certification … hybrid on-prem solutions. AWS certification (Developer, DevOps, Architect, etc.). Proficiency in security/software supply chain scanning. Experience with automated testing and staticcode analysis. Familiarity with configuration management technologies like Ansible, Chef, Puppet, or similar. Experience with continuous delivery technologies such as ArgoCD. Proficiency with … Infrastructure as Code tools like Terraform. Experience with Docker or similar container technologies. Experience with Kubernetes or other container orchestration platforms. DevOps Engineer Location: Sterling, VA 22030 OR Denver CO % onsite Type: Full-Time, Direct Hire Perks: Outstanding Benefits Package, 100% Employer PAID Healthcare Ins for employee; 95% paid More ❯
Senior or Subject Matter Expert) Are you a Full Stack Java Developer looking to make real impact on national defense? At Caribou Thunder, your code powers secure missions-and your career gets the rocket fuel it deserves. Now hiring Full Stack Java Software Engineers (Senior or SME level) in … or React Node.js Python SQL DevOps & CI/CD Tools GitLab CI/CD, GitLab Runners Kubernetes (K8s), Helm/Helm Charts Fortify, SonarQube (StaticCodeAnalysis) Nexus Repository Manager WebLogic (packaging/deployment) Security & Methodology Secure Coding Practices Defense Cybersecurity Protocols Agile/Scrum SDLC Integration … with DoD systems & secure databases Preferred Qualifications Hands-on experience with Kubernetes orchestration, GitLab automation, and staticcode scanning. Familiarity with DoD software compliance standards, accreditation processes, and cloud or hybrid architecture. Strong troubleshooting and documentation skills within high-security environments. If you're a Full Stack Java More ❯
isolate and mitigate cyber threats. The successful candidate must have experience with advanced cyber tooling, CI/CD, Joint IO Range, NIST RMF, threat analysis, vulnerability management, as well as accreditation and authorization processes. Our CACI cyber engineering team uses proven solutions to manage, monitor, detect and immediately respond … requirements for Federal government, Department of Defense, or intelligence community. Experience using CI/CD pipelines, SonarQube, JFrog XRAY, eMASS, ACAS, WebInspect, Nessus, Dynamic Analysis, StaticCodeAnalysis, Burp Suite or similar tools. Experience performing vulnerability management activities within software product teams for enabling secure codeMore ❯
the integration and delivery of architecture and software releases to all Test and Operations instances. Ensure the creation of maintainable, adaptable, scalable, defect-free code using Agile methodology best practices and coding standards (e.g., software reuse, refactoring, continuous integration, continuous development, test automation, secure development, test-driven development, staticcodeanalysis, peer/code review.) Guides the implementation of DevSecOps tools and configurations that will satisfy the needs of the program's agile processes including multiple release trains and release on demand, maximize automated deployments, and facilitate the use of microservices and containerization. Verifies DevSecOps … and deliver technical presentations, gather new/updated requirements, identify new development roadmap items, and contribute to enterprise working groups. Ensures delivery of functional code that satisfies the customer-approved success criteria using Agile design and development techniques. Develops innovative technical solutions and documents the solution architecture and design More ❯
Process Optimization: Advocate for and help implement efficient development processes, including continuous integration/continuous deployment (CI/CD), agile methodologies, and DevOps practices Code Quality: Promote practices that enhance code quality, such as automated testing, code reviews, and documentation standards Performance and Scalability: Provide guidance on … like Java, Kotlin, Typescript, GoLang, Terraform Process Optimization : Expertise in integration/deployment (CI/CD) tools and practices (GitHub Actions, Flux, Argo CD) Code Quality : Familiarity with automated testing frameworks and staticcodeanalysis - e.g. JUnit, Selenium, SonarQube or ESLint Performance and Scalability : Knowledge of More ❯
development, security, and operations practices. This is a DoD project that supports the Defense Acquisition community in making authoritative and trusted data available for analysis, oversight, insight, and decision-making over a large portfolio of acquisition programs. The team manages a central platform that integrates and shares acquisition data … CI/CD pipeline management using Jenkins, Gitlab, Docker, and Artifactory Strong experience with configuration management tools like Ansible Strong experience with infrastructure as code (IaC) tools like Terraform Experience providing technical oversight and guidance on containerized applications and microservices, system administration, modernization, and migrations Hands-on experience with … strategies, including use of Bitbucket or Gitlab Prior experience supporting Java-based applications, as well as related frameworks and tooling Understanding of SonarQube for staticcodeanalysis and integrating code quality gates in CI/CD pipelines Familiarity with SQL (PostgreSQL) and NoSQL(MongoDB) databases, as More ❯
software lifecycle phases: planning, development, building, testing, releasing, deploying, and monitoring. Implement quality gates at each phase to ensure that only compliant and secure code moves forward in the process. Implement robust code repository management strategies, including version control, branching, and merging processes to maintain code integrity … workflows. Utilize configuration management tools to track and manage changes across environments and components, ensuring consistency. Maintain automated build processes that trigger based on code commits or other triggers, integrating staticcodeanalysis and continuous inspection to catch issues early. Integrate automated testing (unit, integration, and … functional) within the pipeline to ensure high code quality and security. Enforce quality and security standards via continuous testing, inspection, and static analysis. Enhance collaboration and accelerate feedback loops to promote rapid and reliable software delivery. Continuously refine and update security measures as part of operational monitoring and More ❯
following: Programming in one or more of JavaScript, Java, .Net, Python Collaboratively designing and building Proof of Concepts or Production systems Source controlling your code with Version Control Systems, e.g. Git Utilising CI/CD tools, such as Bamboo, Jenkins, Gitlab etc in order to streamline delivery of new … features and fixes Continual testing of code using Automated Testing Frameworks Ensuring code consistency and quality by utilising staticcodeanalysis tools e.g. SonarQube Team working inside an agile environment e.g. Scrum, Lean, Kanban Define and enforce coding standards, code reviews and development ways More ❯
Description SAIC, a leading provider of systems development & deployment, targeting & intelligence analysis, systems engineering & integration, and training capabilities and solutions for the Intelligence Community, is seeking creative and dedicated professionals to fulfill their career goals and objectives while delivering mission excellence on programs of national importance. We are seeking … methodologies, applying them to improve our processes and output Facilitate the adoption of Agile methodologies within the team, ensuring efficient and effective collaboration Conduct code reviews, security assessments, and testing to identify vulnerabilities and ensure compliance with industry standards Provide mentorship and guidance to junior team members, fostering a … Java/YAML Ability to adapt to a dynamic customer-oriented environment Working knowledge of DISA STIG/SRG and STIG tools Experience with staticcodeanalysis/dynamic analysis (Tools: Parasoft, Coverity, Fortify) Desired: 10+ years of experience in software development, DevOps, systems administration, and More ❯
following: Programming in one or more of JavaScript, Java, .Net, Python Collaboratively designing and building Proof of Concept or Production systems Source controlling your code with Version Control Systems, for example Git, Mercurial, Perforce Utilising CI/CD tools, such as Bamboo, Jenkins, TeamCity, Bitbucket, in order to streamline … delivery of new features and fixes Continual testing of code using Automated Testing Frameworks Ensuring code consistency and quality by utilising staticcodeanalysis tools e.g. SonarQube Team working inside an agile environment e.g. Scrum, Lean, Kanban Common software design patterns Using precedent and your More ❯
Gloucester, Gloucestershire, South West Hybrid / WFH Options
BAE Systems
following: Programming in one or more of JavaScript, Java, .Net, Python Collaboratively designing and building Proof of Concept or Production systems Source controlling your code with Version Control Systems, for example Git, Mercurial, Perforce Utilising CI/CD tools, such as Bamboo, Jenkins, TeamCity, Bitbucket, in order to streamline … delivery of new features and fixes Continual testing of code using Automated Testing Frameworks Ensuring code consistency and quality by utilising staticcodeanalysis tools e.g. SonarQube Team working inside an agile environment e.g. Scrum, Lean, Kanban Common software design patterns Using precedent and your More ❯
following: Programming in one or more of JavaScript, Java, .Net, Python Collaboratively designing and building Proof of Concept or Production systems Source controlling your code with Version Control Systems, for example Git, Mercurial, Perforce Utilising CI/CD tools, such as Bamboo, Jenkins, TeamCity, Bitbucket, in order to streamline … delivery of new features and fixes Continual testing of code using Automated Testing Frameworks Ensuring code consistency and quality by utilising staticcodeanalysis tools e.g. SonarQube Team working inside an agile environment e.g. Scrum, Lean, Kanban Common software design patterns Using precedent and your More ❯
for: Programming in one or more of JavaScript, Java, .Net, Python Collaboratively designing and building Proof of Concept or Production systems Source controlling your code with Version Control Systems, for example Git, Mercurial, Perforce Utilising CI/CD tools, such as Bamboo, Jenkins, TeamCity, Bitbucket, in order to streamline … delivery of new features and fixes Continual testing of code using Automated Testing Frameworks Ensuring code consistency and quality by utilising staticcodeanalysis tools e.g. SonarQube Team working inside an agile environment e.g. Scrum, Lean, Kanban Common software design patterns Using precedent and your More ❯
for: Programming in one or more of JavaScript, Java, .Net, Python Collaboratively designing and building Proof of Concept or Production systems Source controlling your code with Version Control Systems, for example Git, Mercurial, Perforce Utilising CI/CD tools, such as Bamboo, Jenkins, TeamCity, Bitbucket, in order to streamline … delivery of new features and fixes Continual testing of code using Automated Testing Frameworks Ensuring code consistency and quality by utilising staticcodeanalysis tools e.g. SonarQube Team working inside an agile environment e.g. Scrum, Lean, Kanban Common software design patterns Using precedent and your More ❯
Leeds, West Yorkshire, Yorkshire and the Humber Hybrid / WFH Options
BAE Systems
for: Programming in one or more of JavaScript, Java, .Net, Python Collaboratively designing and building Proof of Concept or Production systems Source controlling your code with Version Control Systems, for example Git, Mercurial, Perforce Utilising CI/CD tools, such as Bamboo, Jenkins, TeamCity, Bitbucket, in order to streamline … delivery of new features and fixes Continual testing of code using Automated Testing Frameworks Ensuring code consistency and quality by utilising staticcodeanalysis tools e.g. SonarQube Team working inside an agile environment e.g. Scrum, Lean, Kanban Common software design patterns Using precedent and your More ❯
Leeds, West Yorkshire, Yorkshire and the Humber Hybrid / WFH Options
BAE Systems
for: Programming in one or more of JavaScript, Java, .Net, Python Collaboratively designing and building Proof of Concept or Production systems Source controlling your code with Version Control Systems, for example Git, Mercurial, Perforce Utilising CI/CD tools, such as Bamboo, Jenkins, TeamCity, Bitbucket, in order to streamline … delivery of new features and fixes Continual testing of code using Automated Testing Frameworks Ensuring code consistency and quality by utilising staticcodeanalysis tools e.g. SonarQube Team working inside an agile environment e.g. Scrum, Lean, Kanban Common software design patterns Using precedent and your More ❯
for: Programming in one or more of JavaScript, Java, .Net, Python Collaboratively designing and building Proof of Concept or Production systems Source controlling your code with Version Control Systems, for example Git, Mercurial, Perforce Utilising CI/CD tools, such as Bamboo, Jenkins, TeamCity, Bitbucket, in order to streamline … delivery of new features and fixes Continual testing of code using Automated Testing Frameworks Ensuring code consistency and quality by utilising staticcodeanalysis tools e.g. SonarQube Team working inside an agile environment e.g. Scrum, Lean, Kanban Common software design patterns Using precedent and your More ❯
for: Programming in one or more of JavaScript, Java, .Net, Python Collaboratively designing and building Proof of Concept or Production systems Source controlling your code with Version Control Systems, for example Git, Mercurial, Perforce Utilising CI/CD tools, such as Bamboo, Jenkins, TeamCity, Bitbucket, in order to streamline … delivery of new features and fixes Continual testing of code using Automated Testing Frameworks Ensuring code consistency and quality by utilising staticcodeanalysis tools e.g. SonarQube Team working inside an agile environment e.g. Scrum, Lean, Kanban Common software design patterns Using precedent and your More ❯
