Oasis Systems

Senior Software Assurance Engineer

Job Locations US-TX-San Antonio
Requisition Number
2022-12661
Posted Date
1 week ago(9/23/2022 5:25 PM)
Category
Software Engineer

Overview

Oasis Systems has an exciting opportunity for senior software assurance engineer located at Lackland Air Force Base in San Antonio, Texas.   This position provides software engineering services to the Trusted Systems and Networks (TSN) initiative at the USAF Cryptologic and Cyber Systems Division.  The TSN initiative protects the integrity of the information and communications technology supply chain.   

 

LOCATION: Lackland AFB, TX

JOB STATUS: Full time

TRAVEL: Occasional CONUS travel

 

REQUIRED QUALIFICATIONS (Education, Certifications, Experience, Skills)

SECURITY CLEARANCE: Secret

 

EDUCATION and EXPERIENCE LEVEL:  Meet one of the following:

  • M.S./M.A. with 12 years’ experience, of which 5 years’ must be in DoD
  • B.S./B.A. with 15 years’ experience, of which 5 years’ must be in the DoD
  • in lieu of degree 20 years’ relevant experience, of which 8 years’ must be in the DoD

 

OTHER QUALIFICATIONS/SKILLS: 

  • Strong problem solving, debugging, and research skills.
  • Software development/scripting experience.
  • Understanding of static source code analysis tools and processes.
  • Understanding of software assurance and/or software security.
  • Knowledge of cyber countermeasures and mitigations.
  • Rudimentary understanding of malware detection, malicious indicators of compromise, and/or reverse engineering tools.
  • Experience and familiarity with the following languages and tools:
    • GO, JavaScript, Java, Python, CSS, HTML, C/C+
    • React, SASS, Material UI (React), NodeJS and NPM
    • Linux (examples: RHEL, CentOS, Debian, Alpine) and Windows OS
    • SQL (Oracle, other) and non-SQL based (MongDB, other) databases
    • Containers and containerization practices (Docker, Kubernetes, hardening, etc.)
    • Microsoft Office tool suite (Word, Excel, PowerPoint, etc.)

 

 RESPONSIBILITIES: 

  • Develop software/scripts to enable the automation of static source code analysis.
  • Sustain current and future codebase (specific to the static source code analysis capability).
  • Ensure current capability is always functional and available.
  • Development/sustainment of containers used in automated analysis workflow.
  • Manage free and/or open source (FOSS), commercial off the shelf (COTS) and government off the shelf (GOTS) tools.
  • Maintain current tool and license list.
  • Research additional tools/processes to bridge gaps and integrate when appropriate/approved.
  • Deploy, navigate, and demonstrate automated static source code analysis toolchain.
  • Assist in software assurance research and development.
  • Team Technical Support:
  • Assist team members in resolving technical issues related to the technologies utilized in their primary tasks. Some examples are binary analysis, static source code analysis, containerization, software/capability development, and containerization (Docker, Kubernetes, hardening, etc).
  • Conduct assessments when someone is out/position is empty for an extended time, including:
    • Perform binary code analysis on software for which source code is not available using an automated toolchain/framework.
    • Perform static source code analysis on software for which source code is available using an automated toolchain/framework.
    • Analyze results and report findings, potential impacts, and potential mitigation steps (when available/known).
  • Secondary/Support/Non-regular Tasks:
    • Attend, run, and organize meetings.
    • Attend briefs and working groups as necessary to expand capability and/or contribute to the DoD community (as approved).
    • Brief mission, capabilities, project status, and results as necessary.
    • Compile and de-conflict weekly and/or monthly activity reports from the Software Assurance Team members and submit to Team lead as required.
  • Occasionally (on ad hock basis dependent on availability and current workload):
    • Sustain two in-house developed web applications.
    • Develop scripts, services, and other tools used in the binary analysis process as well as reporting assistance when necessary.
    • Perform containerization (Docker, Kubernetes) for other systems developed in the office.
    • Perform system security engineering by reviewing engineering and program protection document focusing on software assurance techniques.
    • Perform market research of tools, cloud hosting, etc.

 

Who We Are

Oasis Systems is a premier provider of customer-driven, cost-effective, and quality Engineering Services; Enterprise Systems and Applications; Human Factors Engineering; Information Technology and Cyber Security; Professional Services; and Specialized Engineering Solutions to the Department of Defense, FAA, NRC and other federal agencies.

 

We strive to be an exciting and welcoming company that attracts, develops, motivates and retains the most talented, skilled and dedicated people in the industry; where they are encouraged to achieve personal excellence, purpose, and their full potential and career aspirations; while supporting mission-critical national security technologies and programs.

 

Oasis Systems is an equal opportunity employer and does not discriminate in hiring or employment on the basis of any legally protected characteristic including, but not limited to, race, color, religion, national origin, marital status, gender, sexual orientation, ancestry, age, medical condition, military veteran status or on the basis of physical handicap which, with reasonable accommodation, render the application to satisfactorily perform the job available.  #MON

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed