Cyber Security Software Engineer (12400)

Cyber Security - Senior Software Engineer

About the Role:

This Contractor role collaborates with a team of OS/BSP and Embedded Software problem solvers to test and evaluate Ground Vehicle Combat systems for operating within internal and external Tactical Network Domains
Perform SE Linux analysis on cross-domain solutions, Multi-Level Security (MLS), and Multi-Category Security (MCS) policies
Assist team members with creating potential exploits from vulnerabilities found within the SE Linux policy
Build capabilities by learning from others' expertise within our diversely skilled team
produce a security enhanced, custom, built up Linux distribution, newly developed and existing software applications


On-site presence:

Due to the nature of the work, this role may require on-site presence up to 100%

Responsibilities of the role include:

• Experience in implementing solutions to real security problems
  Experience with system architecture, design, test and implementation
  
• Ability to identify security vulnerabilities in the system components or network devices and provide innovative solutions
  
• Provide technical leadership for the integration of requirements, design, and technology
  
• Experience working with Secure Linux based servers, troubleshooting Linux boot issues and providing fixes as required
  
• Produce reports and documents in support of system requirements and security certifications, write/contribute to white papers
  
• Intimately familiar with Linux OS security processes, issues, and challenges
  
• Be a leader and mentor to junior engineers
  
• Past performance within the DoD, or a similarly regulated environment
• Experience with the RMF process

Technical requirements of the role

• Experience leading a team doing SELinux Policy development
• Experience troubleshooting other SELinux policies
• Understanding of RefPol and its limitations
• Experience doing formal policy analysis
• Solid understanding of the TCP/IP stack
• Experience with packet analysis tools (such as Wireshark) and analyzing Protocol Data Units (PDUs)
• Experience with common Linux scripting / shell utilities
• Bash/sh / Python / Perl / Awk / Sed, etc
• Experience with the following tracing/debugging tools:
• Strace, Ltrace, Ftrace, gdb, etc
• Familiar with technologies to enable applications to run with least privilege, and avoid full root permission, including Linux Capabilities (getcap/setcap), seccomp, containers, etc
• Experience with managing and securing Linux Containers (LXC), Docker Containers
• Experience working within virtualized environments - kvm / qemu, libvirt, VirtualBox, etc
• Familiar with enhanced Linux security hardening techniques -cgroups, namespaces, seccomp, capabilities, SELinux, etc
• Experience with Atlassian (JIRA, Confluence)
  
• Experience with tools such as Bitbake, Yocto, Linux, RTOS VxWorks
• Experience with preempt-rt, or other preemptable Linux solutions
• Performs other duties as assigned
  

Minimum Qualifications / What you must have

• Bachelor of Science in Computer Engineering, Computer Science, Electrical Engineering or similar discipline
  
• Seeing a candidate with at least 7-10 years work experience in software including 3 plus years experience with Cybersecurity (required) AND Minimum of 1 year experience using SELinux analysis or development
• Must have experience using Linux command line to include scripting and automating basic tabs
• Strong multi-tasking skills
  
• The candidate will need to have strong written and oral communication skills
  

Additional Information / Desired Experience

• This position will require eligibility to obtain a US security clearance
  (Non-US Citizens may not be eligible to obtain a security clearance)
• Previous experience working on ground combat Vehicles desired
  
• Must be able to work occasional evening and/or weekend overtime as required

GDLS considers factors such as, scope/responsibilities of the position, candidate experience, education/training background, in addition to local market comparable and business considerations when extending an offer.