Security Software Engineer​/Penetration Tester - Clearance Requir Security Clearance

Position: Security Software Engineer/Penetration Tester - Clearance Requir with Security Clearance
Cydecor is a premier Federal Government solutions provider, delivering differentiated innovations in mission systems and business platforms. We leverage leading-edge secure systems and software development, backed by industry-leading subject matter expertise, and business intelligence to enable decision-support and remain ahead of ever-evolving national security challenges. Our success rests squarely on three bedrock principles:
People, our center of gravity;
Mission, what inspires us; and an unyielding commitment to Excellence, what separates us.

Job Description:

Cydecor is seeking a Security Software Engineer/Penetration Tester to support advanced cybersecurity and software assurance efforts for U.S. Department of Defense (DoD) systems. The ideal candidate will combine deep technical experience in software engineering, penetration testing, and reverse engineering with a strong understanding of secure system design and vulnerability mitigation for enterprise and tactical environments.

Responsibilities include:

* Debug and reverse engineer software to identify vulnerabilities and optimize security performance.
* Analyze Windows Event logs, Linux syslogs, boot logs, and dmesg logs to identify anomalies and security concerns.
* Program and debug software using Web 2.0, Java, Perl, Ada, C++, and Tool Command Language (Tcl/Tk) scripts, including GUIs and configuration management tools such as Microsoft Visual Studio and Rational Clear Case.
* Recommend and implement software modifications to mitigate known vulnerabilities.
* Administer systems running HP-UX, UNIX, Solaris, Linux, and Microsoft Windows operating systems.
* Identify and remediate security flaws in both compiled and human-readable source code.
* Understand and work with real-time operating systems (VxWorks, LynxOS), CORBA, firewalls, and networking protocols.
* Implement NSA-approved encryption technologies and devices and apply DISA Security Technical Implementation Guides (STIGs).
* Incorporate virtual hosting, server technologies, and deceptive technologies (e.g., honeypots) into system architectures.
* Perform and participate in code reviews, static source code analysis, and author recommendations to improve software design and security posture.
* Contribute to the System Security Administrator and Operator's Manual (SSAOM) and ensure all cybersecurity documentation is maintained to DoD standards. Here's what you need:

* Experience:

* Five (5) years of software engineering experience supporting program development or modeling and simulation for DoD or IT systems.
* Five (5) years of Linux experience, demonstrating firm command-line and system administration skills.
* CompTIA Linux+ or FedVTE Linux+ (Linux)
* Five (5) years of Windows experience with solid understanding of enterprise network environments.
* Microsoft course (MCSA; Various)
* Strong working knowledge of common Penetration Testing (PENTEST) tools:
* Kali, Metasploit, NMAP, Cobalt Strike
* Associated Training:
Certified Ethical Hacker or Offensive Security Certified Professional
* Documented experience in at least one of the following areas:
* Penetration Testing (PENTEST) (government or contractor)
* Red Team Operations (government or contractor)
* Tool/Software Development (exploits/malware, C2, reverse engineering, bug bounties)
* Python, C, C Sharp, C++, Go, Perl, Powershell
* Web Dev/Web App Dev/Web Penetration testing
* NSX, vCenter, vRealize Suite, Horizon View (VDI) and others
* PAN-OS
* Fire Power, Nexus, IOS, ASA
* ONTAP, Snap Mirror
* Active-Directory
* Entra  (Azure AD), Active Directory, SSO, MFA, Azure application integration, Identity Federation.
* utomation using Powershell, Power Automate, Logic Apps, Graph API.
* Microsoft Entra  Microsoft 365 in a hybrid environment.
* xperience with Palo Alto, Cisco, VMWare, Net App and Microsoft products.
* Extending or integrating on premises AD with Entra .
* Managing identity and access in Microsoft Entra .
* Experience conducting Red Team operations in an MDE environment.
* Experience with AWS, Cloud Audit, Serverless and Microservice Architecture
* Experience working with AWS services (such as EC2, S3, KMS,…