Please note: This role is contingent upon a contract award. While it is not an immediate opening, we are actively conducting interviews and extending offers in anticipation of the award.
The Work: ICF is seeking an experienced and driven Software Security Engineer to lead and oversee mission-critical initiatives in support of the Defense Counterintelligence and Security Agency (DCSA). In this role, you will help safeguard applications and cloud-based systems by integrating security best practices throughout the software development lifecycle.
Job Location: This position requires that the job be performed in the United States. If you accept this position, you should note that ICF does monitor employee work locations and blocks access from foreign locations/foreign IP addresses, and also prohibits personal VPN connections.
You may be asked to travel once a quarter to an office or client site.
Our core work hours are 8am - 5pm Eastern Time with the option to start earlier or work later depending on your time zone.
What You Will Do:
Proactively monitor and assess application and system security to identify vulnerabilities and potential threats.
Perform secure code reviews and static/dynamic analysis to strengthen application security and ensure adherence to secure coding standards.
Test and evaluate security tools, applications, and system configurations to validate compliance with federal and DoD security requirements.
Investigate and remediate potential security vulnerabilities, recommending and implementing corrective actions to reduce risk.
Design and implement security controls, tools, and automation to enhance protection across cloud and on-premise environments.
Provide guidance and training to development teams on secure coding practices and DevSecOps principles.
Develop and maintain technical documentation related to security architecture, risk findings, and mitigation strategies.
Prepare and deliver executive-level briefings, status reports, and performance updates to government stakeholders and corporate leadership.
Maintain a positive, results-oriented work environment by building partnerships with internal and external partners.
What You Will Bring With You:
Active Top Secret clearance.
Proven experience (8+ years) in application security, secure software development, or cybersecurity engineering.
What We Would Like You To Bring With You:
Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related technical field.
2 years’ experience working with DCSA
5 years’ experience with working on/around cloud platforms in AWS.
Hands-on experience performing secure code reviews and vulnerability assessments using industry-standard tools (e.g., SAST, DAST, SCA).
Experience implementing security controls in cloud environments (e.g., AWS GovCloud or similar secure federal cloud environments).
Strong understanding of secure coding standards (e.g., OWASP, NIST, DoD STIGs).
Experience supporting systems within regulated or high-security environments.
Ability to self-organize, priorities and conduct research on multiple projects under tight deadlines in a fast-paced environment.
An ability to communicate and write clearly in English.
Professional Skills:
Highly effective analytical, problem-solving, and decision-making capabilities.
Excellent communication and interpersonal skills to interface effectively at all levels of the business.
#Li-cc1
#Indeed
Working at ICF
ICF is a global advisory and technology services provider, but we’re not your typical consultants. We combine unmatched expertise with cutting-edge technology to help clients solve their most complex challenges, navigate change, and shape the future.We can only solve the world's toughest challenges by building a workplace that allows everyone to thrive. We are an equal opportunity employer. Together, our employees are empowered to share their expertise and collaborate with others to achieve personal and professional goals. For more information, please read our EEO policy.
We will consider for employment qualified applicants with arrest and conviction records.
Reasonable Accommodations are available, including, but not limited to, for disabled veterans, individuals with disabilities, and individuals with sincerely held religious beliefs, in all phases of the application and employment process. To request an accommodation, please email Candidateaccommodation@icf.com and we will be happy to assist. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.
Read more about workplace discrimination rights or our benefit offerings which are included in the Transparency in (Benefits) Coverage Act.
At ICF, we are committed to ensuring a fair interview process for all candidates based on their own skills and knowledge. As part of this commitment, the use of artificial intelligence (AI) tools to generate or assist with responses during interviews (whether in-person or virtual) is not permitted. This policy is in place to maintain the integrity and authenticity of the interview process.
However, we understand that some candidates may require accommodation that involves the use of AI. If such an accommodation is needed, candidates are instructed to contact us in advance at candidateaccommodation@icf.com. We are dedicated to providing the necessary support to ensure that all candidates have an equal opportunity to succeed.
Pay Range - There are multiple factors that are considered in determining final pay for a position, including, but not limited to, relevant work experience, skills, certifications and competencies that align to the specified role, geographic location, education and certifications as well as contract provisions regarding labor categories that are specific to the position.
The pay range for this position based on full-time employment is:
$130,687.00 - $222,169.00DC Remote Office (DC99)