Junior ISSO Code Reviewer

Description

LOCATION: DC/MD/VA

Company Description

ASG is a Minority Woman Owned, small business with over 15 years' experience in federal government contracting. ASG offers System integration and IT services to various clients. ASG provides a broad range of technology-related services such as software development and integration, mobile apps, AI/ML, Analytics, Data Science, Bigdata, DevSecOps, Digital transformation, cloud, and cybersecurity. ASG is CMMI Level 3 certified for Development and Services and holds ISO certifications 9001:2015, 20000-1:2011, and 27000:2015.

Job Description

The Information System Security Officer (ISSO) Code Reviewer is responsible for ensuring the security and integrity of information systems within the Defense Information Systems Agency (DISA). This role involves conducting detailed code reviews, implementing security policies, and managing security risks in compliance with DISA and DoD guidelines.

What You Will Do

• Security Policy Implementation: Ensure adherence to DISA's security policies, procedures, and guidelines.
• Code Review: Conduct thorough reviews of code to identify potential security vulnerabilities and ensure compliance with established security standards.
• Documentation: Maintain comprehensive documentation of security assessments and code reviews.
• Risk Management: Evaluate security risks and implement measures to mitigate them effectively.
• Collaboration: Work closely with development teams to ensure secure coding practices are followed throughout the software development lifecycle (SDLC).
• Expertise in advanced cybersecurity tools and applications.
• Engage in regular security assessments and audits.
• Collaborate with cross-functional teams.
  
  

Requirements

What We Need:

• 3-5 years of experience in cybersecurity.
• Bachelor’s degree in a relevant field or equivalent experience. Relevant training certifications are a plus. In place of a degree, we will consider a combination of training, certifications, and years of experience.
• 3+ years of experience in information security, particularly in code review and vulnerability assessment.
• Strong background in DoD and federal cybersecurity frameworks.
• Certifications (IAT Level II or III).
• Experience with DISA Security Technical Implementation Guides (STIGs).
• Proficiency in programming languages such as Python, Java, and C++.
• Strong understanding of secure coding practices and the software development lifecycle (SDLC).
• Familiarity with cybersecurity tools.
• Familiarity with DISA’s security policies, including the use of STIGs and the Risk Management Framework (RMF) as outlined in DoDI 8510.01
• Ability to communicate findings and recommendations clearly to both technical and nontechnical stakeholders
• Excellent writing, editing, and communication skills.
• Proficiency in Word, PowerPoint, Excel, Visio, and Adobe Acrobat.
  
  

Even Better

• Knowledge of current cybersecurity threats and mitigation strategies.
• Expertise in cybersecurity compliance and audit frameworks.
• Strong organizational skills and attention to detail.
• The ability to work collaboratively.
• Any of the following certifications CISSP, CEH, CISM, CSSLP, DoD 8570.01M
• This role is ideal for a strategic thinker with deep expertise in code review and cybersecurity. The successful candidate will be a key contributor to the ISSO Code Review program.
  
  

Clearance Level

DoD Secret

U.S. Citizenship is required.

Additional Information

At ASG, we value diversity and always treat all employees and job applicants based on merit, qualifications, competence, and talent. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Applicants in need of special assistance or accommodation during the interview process or in accessing our website may contact us by sending an email to careers @ a2-g.com. We will treat your request as confidentially as possible. In your email, please include your name and preferred method of contact, and we will respond as soon as possible.

Perks

At ASG, we want you to be well and thrive. Our benefits package includes:

• Healthcare Benefits
• Paid Time Off
• 401k Matching
• Employee Referral Bonus
• Education Assistance
• Learning and Development resources
• EOE, including Disability/Veterans