QinetiQ US
Lead Software Engineer - Cybersecurity
QinetiQ US, Falls Church, Virginia, United States, 22042
Lead Software Engineer With Cybersecurity Expertise
We are seeking a Lead Software Engineer with cybersecurity expertise to provide technical oversight and coordination of cybersecurity activities across multiple Integrated Project Teams (IPTs). This role serves as the primary cybersecurity technical lead, working with subcontractors responsible for cybersecurity implementation while ensuring technical adequacy, compliance, and integration across all software systems. The ideal candidate will have deep cybersecurity knowledge combined with software engineering experience to effectively evaluate cybersecurity approaches, challenge processes, and coordinate cybersecurity requirements across complex defense programs. Cybersecurity Technical Oversight & Evaluation
Provide technical oversight and evaluation of subcontractor cybersecurity implementation processes, methodologies, and deliverables Review and assess cybersecurity architectures, security controls implementation, and risk mitigation strategies proposed by subcontractors Challenge cybersecurity approaches and validate technical adequacy of proposed solutions across all software systems Evaluate cybersecurity testing procedures, vulnerability assessments, and penetration testing methodologies Assess compliance with cybersecurity standards and frameworks (NIST, RMF, STIG, FedRAMP) and identify gaps or deficiencies Cross-IPT Cybersecurity Coordination
Coordinate cybersecurity requirements and implementation across Payload, Ground Systems, Network, and specialized software IPTs Ensure consistent application of cybersecurity standards and controls across all software development efforts Manage cybersecurity interfaces and dependencies between multiple project teams and subcontractors Lead cybersecurity integration planning for multi-system software architectures Facilitate cybersecurity knowledge sharing and best practice coordination across IPTs Government Cybersecurity Process Management
Oversee subcontractor preparation of Authority to Operate (ATO) packages, System Security Plans (SSP), and cybersecurity documentation Review and validate Plan of Action and Milestones (POA&M) development and remediation strategies Coordinate cybersecurity compliance activities with government cybersecurity authorities and certification bodies Manage cybersecurity requirement flow-down from government standards to subcontractor implementation Support cybersecurity audits, assessments, and government reviews by providing technical evaluation and oversight Software Security Architecture & Risk Management
Lead cybersecurity risk assessments across integrated software systems and identify cross-system security vulnerabilities Coordinate software security architecture decisions and ensure security-by-design principles across all IPTs Evaluate software security controls including encryption, authentication, access control, and secure communications Assess cybersecurity impacts of software integration, interface changes, and system modifications Lead cybersecurity technical risk identification, assessment, and mitigation planning across multiple projects Contractor Management & Technical Evaluation
Manage technical aspects of cybersecurity subcontractor performance including deliverable quality and process adherence Conduct technical evaluations of cybersecurity vendor capabilities, tools, and proposed solutions Coordinate cybersecurity technical requirements with subcontractors and ensure appropriate implementation approaches Evaluate cybersecurity cost proposals and technical approaches during contractor selection and management Facilitate resolution of cybersecurity technical issues between subcontractors and government stakeholders Cybersecurity Standards & Compliance Coordination
Ensure software systems meet DoD cybersecurity requirements including DISA STIGs, NIST frameworks, and RMF processes Coordinate cybersecurity compliance activities across multiple software development efforts Manage cybersecurity configuration management and change control processes across IPTs Oversee cybersecurity patching strategies, vulnerability management, and incident response coordination Support cybersecurity authorization processes and ongoing compliance monitoring Required Qualifications
Education & Experience
Bachelor's degree in Software Engineering, Computer Science, Cybersecurity, Information Systems, or related technical field 12+ years of relevant software engineering experience with 5+ years in cybersecurity roles Demonstrated experience managing cybersecurity across large-scale software programs Cybersecurity Expertise
Deep knowledge of cybersecurity frameworks and standards (NIST RMF, FISMA, FedRAMP, DISA STIGs) Expert understanding of ATO processes, SSP development, POA&M management, and government cybersecurity authorization Proficiency in cybersecurity risk assessment methodologies and vulnerability management Experience with software security architecture, secure coding practices, and security testing methodologies Knowledge of encryption, PKI, identity management, and secure communications protocols Software Engineering & Technical Skills
Strong software engineering background with understanding of secure software development lifecycle Experience with cybersecurity in distributed, cloud-native, and enterprise software architectures Familiarity with DevSecOps practices and continuous security integration in software development Understanding of network security, application security, and infrastructure security controls Experience with cybersecurity tools evaluation and technical assessment capabilities Leadership & Coordination Skills
Demonstrated ability to manage and evaluate cybersecurity contractors and technical service providers Strong technical communication skills for interfacing with government cybersecurity authorities, contractors, and development teams Experience coordinating cybersecurity activities across multiple engineering disciplines and project teams Ability to challenge technical approaches and provide authoritative cybersecurity guidance Conflict resolution skills for cybersecurity requirement conflicts across teams Domain Knowledge
Knowledge of DoD cybersecurity processes and authorization requirements Experience with government cybersecurity compliance and audit processes Understanding of cybersecurity requirements for defense software systems deployment Security & Travel:
Active Secret clearance required with ability to obtain higher clearances as needed Limited travel to support cybersecurity assessments and government coordination Preferred Qualifications
Master's degree in Cybersecurity, Information Assurance, or related field Professional cybersecurity certifications (CISSP, CISM, CEH, Security+) Knowledge of cybersecurity for airborne, space, or embedded defense systems Experience with cybersecurity authorization for classified systems Familiarity with supply chain cybersecurity and software assurance requirements Additional Requirements:
Ability to work effectively in dynamic, fast-paced environment with multiple competing cybersecurity priorities Strong analytical and problem-solving skills for complex cybersecurity integration challenges Ability to maintain technical credibility while managing cybersecurity contractors and evaluating their work Experience working in matrix organizations coordinating cybersecurity across peer-level teams Company EEO Statement
Accessibility/Accommodation: If because of a medical condition or disability you need a reasonable accommodation for any part of the employment process, please send an e-mail to staffing@us.QinetiQ.com or call (540) 658-2720 Opt. 4 and let us know the nature of your request and contact information. QinetiQ US is an Equal Opportunity/Affirmative Action employer. All Qualified Applicants will receive equal consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.
We are seeking a Lead Software Engineer with cybersecurity expertise to provide technical oversight and coordination of cybersecurity activities across multiple Integrated Project Teams (IPTs). This role serves as the primary cybersecurity technical lead, working with subcontractors responsible for cybersecurity implementation while ensuring technical adequacy, compliance, and integration across all software systems. The ideal candidate will have deep cybersecurity knowledge combined with software engineering experience to effectively evaluate cybersecurity approaches, challenge processes, and coordinate cybersecurity requirements across complex defense programs. Cybersecurity Technical Oversight & Evaluation
Provide technical oversight and evaluation of subcontractor cybersecurity implementation processes, methodologies, and deliverables Review and assess cybersecurity architectures, security controls implementation, and risk mitigation strategies proposed by subcontractors Challenge cybersecurity approaches and validate technical adequacy of proposed solutions across all software systems Evaluate cybersecurity testing procedures, vulnerability assessments, and penetration testing methodologies Assess compliance with cybersecurity standards and frameworks (NIST, RMF, STIG, FedRAMP) and identify gaps or deficiencies Cross-IPT Cybersecurity Coordination
Coordinate cybersecurity requirements and implementation across Payload, Ground Systems, Network, and specialized software IPTs Ensure consistent application of cybersecurity standards and controls across all software development efforts Manage cybersecurity interfaces and dependencies between multiple project teams and subcontractors Lead cybersecurity integration planning for multi-system software architectures Facilitate cybersecurity knowledge sharing and best practice coordination across IPTs Government Cybersecurity Process Management
Oversee subcontractor preparation of Authority to Operate (ATO) packages, System Security Plans (SSP), and cybersecurity documentation Review and validate Plan of Action and Milestones (POA&M) development and remediation strategies Coordinate cybersecurity compliance activities with government cybersecurity authorities and certification bodies Manage cybersecurity requirement flow-down from government standards to subcontractor implementation Support cybersecurity audits, assessments, and government reviews by providing technical evaluation and oversight Software Security Architecture & Risk Management
Lead cybersecurity risk assessments across integrated software systems and identify cross-system security vulnerabilities Coordinate software security architecture decisions and ensure security-by-design principles across all IPTs Evaluate software security controls including encryption, authentication, access control, and secure communications Assess cybersecurity impacts of software integration, interface changes, and system modifications Lead cybersecurity technical risk identification, assessment, and mitigation planning across multiple projects Contractor Management & Technical Evaluation
Manage technical aspects of cybersecurity subcontractor performance including deliverable quality and process adherence Conduct technical evaluations of cybersecurity vendor capabilities, tools, and proposed solutions Coordinate cybersecurity technical requirements with subcontractors and ensure appropriate implementation approaches Evaluate cybersecurity cost proposals and technical approaches during contractor selection and management Facilitate resolution of cybersecurity technical issues between subcontractors and government stakeholders Cybersecurity Standards & Compliance Coordination
Ensure software systems meet DoD cybersecurity requirements including DISA STIGs, NIST frameworks, and RMF processes Coordinate cybersecurity compliance activities across multiple software development efforts Manage cybersecurity configuration management and change control processes across IPTs Oversee cybersecurity patching strategies, vulnerability management, and incident response coordination Support cybersecurity authorization processes and ongoing compliance monitoring Required Qualifications
Education & Experience
Bachelor's degree in Software Engineering, Computer Science, Cybersecurity, Information Systems, or related technical field 12+ years of relevant software engineering experience with 5+ years in cybersecurity roles Demonstrated experience managing cybersecurity across large-scale software programs Cybersecurity Expertise
Deep knowledge of cybersecurity frameworks and standards (NIST RMF, FISMA, FedRAMP, DISA STIGs) Expert understanding of ATO processes, SSP development, POA&M management, and government cybersecurity authorization Proficiency in cybersecurity risk assessment methodologies and vulnerability management Experience with software security architecture, secure coding practices, and security testing methodologies Knowledge of encryption, PKI, identity management, and secure communications protocols Software Engineering & Technical Skills
Strong software engineering background with understanding of secure software development lifecycle Experience with cybersecurity in distributed, cloud-native, and enterprise software architectures Familiarity with DevSecOps practices and continuous security integration in software development Understanding of network security, application security, and infrastructure security controls Experience with cybersecurity tools evaluation and technical assessment capabilities Leadership & Coordination Skills
Demonstrated ability to manage and evaluate cybersecurity contractors and technical service providers Strong technical communication skills for interfacing with government cybersecurity authorities, contractors, and development teams Experience coordinating cybersecurity activities across multiple engineering disciplines and project teams Ability to challenge technical approaches and provide authoritative cybersecurity guidance Conflict resolution skills for cybersecurity requirement conflicts across teams Domain Knowledge
Knowledge of DoD cybersecurity processes and authorization requirements Experience with government cybersecurity compliance and audit processes Understanding of cybersecurity requirements for defense software systems deployment Security & Travel:
Active Secret clearance required with ability to obtain higher clearances as needed Limited travel to support cybersecurity assessments and government coordination Preferred Qualifications
Master's degree in Cybersecurity, Information Assurance, or related field Professional cybersecurity certifications (CISSP, CISM, CEH, Security+) Knowledge of cybersecurity for airborne, space, or embedded defense systems Experience with cybersecurity authorization for classified systems Familiarity with supply chain cybersecurity and software assurance requirements Additional Requirements:
Ability to work effectively in dynamic, fast-paced environment with multiple competing cybersecurity priorities Strong analytical and problem-solving skills for complex cybersecurity integration challenges Ability to maintain technical credibility while managing cybersecurity contractors and evaluating their work Experience working in matrix organizations coordinating cybersecurity across peer-level teams Company EEO Statement
Accessibility/Accommodation: If because of a medical condition or disability you need a reasonable accommodation for any part of the employment process, please send an e-mail to staffing@us.QinetiQ.com or call (540) 658-2720 Opt. 4 and let us know the nature of your request and contact information. QinetiQ US is an Equal Opportunity/Affirmative Action employer. All Qualified Applicants will receive equal consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.