Overview:
The Georgia Tech Research Institute (GTRI) is the nonprofit, applied research division of the Georgia Institute of Technology (Georgia Tech). Founded in 1934 as the Engineering Experiment Station, GTRI has grown to more than 2,900 employees, supporting eight laboratories in over 20 locations around the country and performing more than $940 million of problem-solving research annually for government and industry. GTRI's renowned researchers combine science, engineering, economics, policy, and technical expertise to solve complex problems for the U.S. federal government, state, and industry.
Georgia Tech's Mission and Values
Georgia Tech's mission is to develop leaders who advance technology and improve the human condition. The Institute has nine key values that are foundational to everything we do:
1. Students are our top priority.
2. We strive for excellence.
3. We thrive on diversity.
4. We celebrate collaboration.
5. We champion innovation.
6. We safeguard freedom of inquiry and expression.
7. We nurture the wellbeing of our community.
8. We act ethically.
9. We are responsible stewards.
Over the next decade, Georgia Tech will become an example of inclusive innovation, a leading technological research university of unmatched scale, relentlessly committed to serving the public good; breaking new ground in addressing the biggest local, national, and global challenges and opportunities of our time; making technology broadly accessible; and developing exceptional, principled leaders from all backgrounds ready to produce novel ideas and create solutions with real human impact.
Project/Unit Description
The GTRI CIPHER Lab's Secure Information Systems (SIS) Division is currently seeking a Cyber Security Software Engineer to work within a cohesive team to develop secure solutions to complex challenges involving web applications, DevSecOps, cloud-native SDKs to enable multi-level platform development, and cyber-focused cloud solutions. Ideal candidates should have a strong understanding of modern software development practices, and demonstrated experience in designing, prototyping, building, and testing complex software, from initial requirements through implementation, verification, testing, and deployment. In this role, the selected individual will join a team developing cutting-edge software for Department of Defense (DoD) systems.
Job Purpose
The Cyber Security Software Engineer designs, develops, and tests cybersecurity software in languages such as Java, C, and C++. The Cyber Security Software Engineer requires extensive knowledge of programming languages, software development, and computer operating systems in order to apply engineering principles to software creation. The necessary skill areas for the Cyber Security Software Engineer include programming and coding, fundamentals of computer science, design and architecture, algorithms and data structures, information analysis, debugging software, and testing software. The Cyber Security Software Engineer also creates novel cyber security technology components and software to ensure that critical systems and information are resilient to cyber exploits and attacks. The researcher also performs attendant vulnerability assessments, analysis, and software engineering and design. The Cyber Security Software Engineer also develops hardware and software prototypes, and tests those prototypes in realistic environments.
Key Responsibilities
- Guide software development cycle through all phases including requirements gathering, software design, software implementation, and test.
- Interact with sponsor to determine requirements.
- Help lead software design effort and implementation.
- Ensure proper testing process is in place.
- Primary author of technical reports/presentations for projects of moderate/high complexity.
- Compile report input from other researchers and prepare final report deliverable.
- Lead and/or contribute to white papers and proposals.
- Propose and lead IRAD programs
- Create and analyze network protocols
- Perform software development, software reverse engineering, software vulnerability research, and software exploitation
- Guide and lead reverse engineering efforts through all phases of the project •Guide and lead software vulnerability research through all phases of the project
Additional Responsibilities
- Full DevSecOps lifecycle including software development, software debugging, software modification / enhancement, usability testing, deploying, and maintaining documentation
- Learning and understanding systems architectures to the extent the job requires such as operating systems, web servers, databases, networking, k8s, and any other system components
- Apply, create and analyze software algorithms
- Understanding and using software issue tracking, specifically as it pertains to agile practice and devsecops pipelines - Unit tests
- Automated testing
- Mentoring team members
- Creating and maintaining documentation, technical reports and presentations Interfacing with external teams
- Deployment of software using tools such as Docker, Kubernetes, Helm, and Ansible Participate in Risk Management Framework (RMF) for software development Design new software security controls, in order to satisfy security requirements Develop Data Exchange specifications and data models
Required Minimum Qualifications
- Experience with one object-oriented language Java, C++, and/or C# Experience with one cloud provider, AWS, Azure, Google and/or Oracle Experience with HTML and JavaScript
- Experience with Linux, UNIX or Windows
- Knowledgeable in version control software such as GIT Willing to pursue an advanced degree
- Technical diagnostic expertise including problem investigation, reproduction, and resolution skills Ability to acquire new skills efficiently
- Thrives in a collaborative environment
- Ability to obtain and maintain DoD 8570 compliance
Preferred Qualifications
- Active TS/SCI Clearance
- Active TS/SCI Clearance
- Experience with web architectures including RESTful API design and Infrastructure as Code
- Jersey/Guice
- Rust
- CI/CD pipelines
- CISSP or Security+ Certifications
- Experience with implementing automated of system deployments using tools such as Ansible, Terraform, Puppet, or Chef
- Experience with SQL and relational databases Experience with GraphQL
- Browser UI experience Angular, React, Vue J2EE, JMS
- Experience in design or implementation of zero trust architectures- Web Services - SOAP, XML, REST, JSON (X)HTML, CSS, LESS, CBOR, JOSE, COSE, JWT
- JavaScript/TypeScript Ajax
- Red Hat Enterprise Linux Gradle, Webpack- Git
Travel Requirements
10% - 25% travel
Education and Length of Experience
This position vacancy is an open-rank announcement. The final job offer will be dependent on candidate qualifications in alignment with Research Faculty Extension Professional ranks as outlined in section 3.2.1 of the Georgia Tech Faculty Handbook
- 14 years of related experience with a Bachelor’s degree in Computer Science, Computer Engineering, or Electrical Engineering
- 12 years of related experience with a Masters’ degree in Computer Science, Computer Engineering, or Electrical Engineering
- 9 years of related experience with a Ph.D. in Computer Science, Computer Engineering, or Electrical Engineering
U.S. Citizenship Requirements
Due to our research contracts with the U.S. federal government, candidates for this position must be U.S. Citizens.
Clearance Type Required
Candidates must be able to obtain and maintain an active security clearance.
Benefits at GTRI
Comprehensive information on currently offered GTRI benefits, including Health & Welfare, Retirement Plans, Tuition Reimbursement, Time Off, and Professional Development, can be found through this link: https://hr.gatech.edu/benefits
The Georgia Institute of Technology (Georgia Tech) is an Equal Employment Opportunity Employer. The University is committed to maintaining a fair and respectful environment for all. To that end, and in accordance with federal and state law, Board of Regents policy, and University policy, Georgia Tech provides equal opportunity to all faculty, staff, students, and all other members of the Georgia Tech community, including applicants for admission and/or employment, contractors, volunteers, and participants in institutional programs, activities, or services. Georgia Tech complies with all applicable laws and regulations governing equal opportunity in the workplace and in educational activities.
Georgia Tech prohibits discrimination, including discriminatory harassment, on the basis of race, ethnicity, ancestry, color, religion, sex (including pregnancy), sexual orientation, gender identity, gender expression, national origin, age, disability, genetics, or veteran status in its programs, activities, employment, and admissions. This prohibition applies to faculty, staff, students, and all other members of the Georgia Tech community, including affiliates, invitees, and guests. Further, Georgia Tech prohibits citizenship status, immigration status, and national origin discrimination in hiring, firing, and recruitment, except where such restrictions are required in order to comply with law, regulation, executive order, or Attorney General directive, or where they are required by Federal, State, or local government contract.
All members of the USG community must adhere to the USG Statement of Core Values, which consists of Integrity, Excellence, Accountability, and Respect. These values shape and fundamentally support our University's work. Additionally, all faculty, staff, and administrators must also be aware of and comply with the Board of Regents and Georgia Institute of Technology's policies on Freedom of Expression and Academic Freedom. More information on these policies can be found here: Board of Regents Policy Manual | University System of Georgia (usg.edu).