About Our Company:
Join Delmock Technologies, Inc. (DTI), a leading HUBZone business in Baltimore, known for delivering sophisticated IT and Health solutions with a commitment to ethics, expertise, and superior service. Actively engaged in the local community, DTI creates opportunities for talented residents while maintaining a stellar reputation as an award-winning contractor, earning accolades like the Government Choice Award for IRS Systems Modernizations. Recently ranked as high as #3 among HUBZone Companies in a GOVWIN survey, DTI offers a dynamic environment for those passionate about impactful projects, community involvement, and contributing to a top-ranking Federal project support team.
At DTI, we balance continuous growth and innovation with a strong dedication to corporate social responsibility. Join our talented team and be part of a company that values both professional excellence and community impact. Explore the exciting career opportunities awaiting you at DTI!
DTI is committed to hiring and maintaining a diverse workforce. We are an equal opportunity employer making decisions without regard to race, color, religion, sex, national origin, age, veteran status, disability, or any other protected class.
Responsibilities:
-
Bridges the gap between legacy development or operations teams and working toward a shared culture and vision
-
Works to ensure that developers create the most secure systems in the world while enhancing the privacy of all system users
-
Performing security audits, risk analysis, application-level vulnerability testing, and security code reviews
-
Developing and implementing technical solutions to help mitigate security vulnerabilities
-
Conducting research to identify new attack vectors
-
Performing security audits, risk analysis, application-level vulnerability testing, and security code reviews
-
Developing and implementing technical solutions to help mitigate security vulnerabilities
-
Conducting research to identify new attack vectors
-
Reviews and provides feedback for all Security Artifacts
-
Provides schedule support for security activities
-
Leads and coordinates environment scan activities
-
Reviews, analyzes, and tracks all environment related scan outcomes and support the remediation of low/med/high security findings
-
Supports security engineering and compliance transformation efforts as needed
-
Supports enterprise continuous diagnostics mitigation (CDM) effort
-
Reviews, analyzes, and tracks all code related scan outcomes and supports FDT’s with remediation of low/med/high security findings
-
Provides reporting on the status of code related security findings and the health of the application code base from a pre-launch security perspective
-
Supports the Cyber Penetration Test and Code analysis team (PTCA) code submission process for final production code review
-
Provides support to further improve the continuous security monitoring of the application code base
-
Collaborates with code and environment scan tool owners regarding updates/fixes and identifies tool improvement opportunities
-
Supports Cyber security assessment activities as needed
-
Supports DevSecOps compliance and engineering activities
-
Provides support and expertise in maintaining security-based compliance documents as agreed upon by the IRS
-
Support Cyber security assessment activities
-
Perform security audits, risk analysis, application-level vulnerability testing, and security code reviews
-
Review and provide feedback to all Security ELC related artifacts
-
Provide schedule support for security activities
-
Collaborate with code and environment scan tool owners regarding updates/fixes and identifies tool improvement opportunities
-
Review, analyze, and track all environment related scan outcomes and support the remediation of low/med/high security findings
-
Report on the status of Security post deployment scan items and support the remediation of low/med/high security findings from post deployment scan activities *Report on the status of code related security findings and the health of the application code base from a pre-launch security perspective
-
Support the Cyber Penetration Test and Code analysis team (PTCA)’s code submission process for final production code review
-
Support DevSecOps compliance and engineering activities Develop and implement technical solutions to help mitigate security vulnerabilities
-
Conduct research to identify new attack vectors
-
Lead and coordinate environment scan activities
-
Support enterprise continuous diagnostics mitigation (CDM) effort
Education, Degrees, and Certifications:
Minimum Requirements:
-
5 years of experience serving as the security engineer of complex technology implementations in a product-centric environment.
-
Experience with white hat hacking and fundamental computer science concepts strongly desired.
Preferred:
Location:
-
This position is hybrid, based in Lanham, Maryland. Candidates must be local to Lanham, MD or willing to relocate.