Cybersecurity Code Reviewer (Mid-level)- Fort Meade, MD

LOCATION: Fort Meade, MD (Onsite)

Company Description:

A Square Group (ASG) is a Minority Woman Owned, Physician owned small business with over 15 years' experience in federal government contracting. ASG provides a broad range of healthcare, intelligence, and defense technology-related, services such as software development and integration, mobile apps, AI/ML, Analytics, Data Science, Bigdata, DevSecOps, Digital transformation, Cloud, and Cybersecurity. ASG is CMMI Level 3 certified for Development and Services and holds ISO certifications 9001:2015, 20000-1:2011, and 27000:2015.
 

Job Description:

This position is ideal for a mid-level programmer or developer with prior experience in system administration, creative problem solving with a passion for secure coding and application integrity and a strong interest or background in cybersecurity. 

What you’ll do: 

• Conduct secure code reviews to identify and mitigate vulnerabilities in application code. 
• Collaborate with developers and cybersecurity teams to recommend secure coding practices. 
• Utilize tools such as static and dynamic analysis tools (e.g., Fortify, SonarQube, or Veracode) to ensure application security. 
• Perform threat modeling and risk analysis for applications. 
• Assist with incident response and remediation for identified application vulnerabilities. 
• Document findings and provide actionable recommendations to enhance code security. 

What We Need: 

• A minimum of 3 years experience in programming with cybersecurity (vulnerability remediation, security patching, or ISSO, RMF, etc.) background.  
• Proficiency in programming languages such as Python, Java, or C++.  
• Basic understanding of secure coding practices and the software development lifecycle (SDLC). 
• Familiarity with cybersecurity & system administration tools.  
• Ability to communicate findings and recommendations clearly to both technical and nontechnical stakeholders. 
• Excellent writing, editing, and communication skills. 
• Proficiency in Word, PowerPoint, Excel, Visio, and Adobe Acrobat. 

Even Better: 

• Bachelor’s degree in a relevant field or equivalent experience. Relevant training certifications are a plus. In place of a degree, we will consider a combination of training, certifications, and years of experience. 
• 3+ years of experience in information security, particularly in code review and vulnerability assessment. 
• Strong background in DoD and federal cybersecurity frameworks. 
• Certifications (IAT Level II or III). 
• Experience with DISA Security Technical Implementation Guides (STIGs). 
• Familiarity with DISA’s security policies, including the use of STIGs and the Risk Management Framework (RMF) as outlined in DoDI 8510.01 

Clearance Level: 

DoD Secret 

U.S. Citizenship is required. 

Additional Information:

At ASG, we value diversity and always treat all employees and job applicants based on merit, qualifications, competence, and talent. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Applicants in need of special assistance or accommodation during the interview process or in accessing our website may contact us by sending an email to careers @ a2-g.com. We will treat your request as confidentially as possible. In your email, please include your name and preferred method of contact, and we will respond as soon as possible.

Perks:

At ASG, we want you to be well and thrive. Our benefits package includes:

• Healthcare Benefits
• Paid Time Off
• 401k Matching
• Employee Referral Bonus
• Education Assistance
• Learning and Development resources
• EOE, including Disability/Veterans