Electrosoft
Software Developer
Posted: 08/28/2025
Electrosoft Services, Inc. is an award-winning company that provides comprehensive technology-based solutions and services to federal customers. While cybersecurity is our specialty, we also focus on ICAM, enterprise IT modernization, and software solutions. We always seek to delight our customers, so we retain highly qualified employees and offer them meaningful work, growth opportunities, and work-life balance. What sets us apart from all other contractors is the sense of teamwork our employees feel - and the knowledge that outstanding effort is recognized and rewarded. The camaraderie we share emanates from Lunch & Learn sessions where we explore new ideas together, fun group activities ranging from escape rooms to miniature golf, and much, much more. If we've described you and your dream workplace, please apply and share in the many benefits and opportunities we offer.
Software Developer
Responsibilities
Design, implement, and maintain complex GRC platform and application use cases, including POA&M management, Security Incident handling, System Inventory tracking, and ATO workflow automation, aligning to HHS security processes and with appropriate approvals including functional lead(s).
Build and maintain advanced GRC platform features such as Data Driven Events (DDEs), calculated fields, cross-reference relationships, and subform rollups to support integrated FISMA, CDM, and FedRAMP workflows.
Develop secure REST and SOAP APIs for the GRC platform and application to support data integrations with CDM, HSDW, and enterprise data reporting platforms, ensuring alignment with OMB, NIST 800-53 Rev. 5, and Zero Trust principles.
Create custom reports, iViews, dashboards, and level-driven access logic for user groups across multiple HHS OpDivs and mission-specific roles.
Provide hands-on support for all stages of the Dev > UAT > Prod pipeline across HCAP-managed environments.
Perform troubleshooting and root cause analysis in collaboration with Lab Administrators, DBAs, and QA team during development, deployment, and incident escalation cycles.
Participate in weekly release meetings, providing technical demonstrations of new functionality to stakeholders, and leading remediation of system defects or change requests.
Use tools like ServiceNow or Remedy to manage tickets, document issue history, and communicate with OpDiv representatives regarding technical changes and support status.
Maintain and version control use case documentation including GRC platform Configuration Guides, Workflow Maps, Field/Relationship Inventory, and Change Logs.
Mentor mid-level developers on platform architecture, API strategies, control inheritance modeling, and use case optimization techniques.
Possess a bachelor's degree (or higher) in Computer Science, Information Systems, Cybersecurity, or related field.
Demonstrate experience working in a federal cybersecurity environment, with strong understanding of compliance frameworks including NIST 800-53 Rev. 5, FISMA, and DISA STIGs.
Maintain detailed documentation of system designs, configuration changes, and implementation history in compliance with customer audit and knowledge management standards.
Collaborate with cross-functional teams including Business Analysts, QA Testers, Lab Admins, and CISO staff to align GRC platform functionality with security and operational objectives.
Contributes to OSCAL integration for automated control implementation and system documentation.
Basic Qualifications
Possesses at least 10 years of hands-on, software engineering experience with at least 5 years of direct experience configuring, customizing, and supporting the Enterprise Governance Risk and Compliance (currently RSA Archer) platform within a federal enterprise environment.
Possess excellent problem-solving skills and ability to communicate clearly with technical and non-technical stakeholders.
Preferred certifications include RSA Archer Certified Administrator, CISSP, or equivalent GRC/Information Security certifications.
Must be familiar with and adhere to the full Enterprise Performance Lifecycle (EPLC) and defined Software Development Life Cycle (SDLC) policies. This includes responsibility for documenting design, implementation, testing, deployment, rollback, and lessons learned. Any and all alterations, changes, or modifications to a GRC/Archer Production type environment must be processed through the Change Control Board (CCB) with clear risk analysis, system impact reviews, and rollback procedures.
All qualified applicants are considered for employment, and employees are treated during employment without regard to race, color, religion, sex, national origin, age, citizenship, disability, or Veteran status. Additionally, the company provides reasonable accommodations to qualified individuals with disabilities.
Posted: 08/28/2025
Electrosoft Services, Inc. is an award-winning company that provides comprehensive technology-based solutions and services to federal customers. While cybersecurity is our specialty, we also focus on ICAM, enterprise IT modernization, and software solutions. We always seek to delight our customers, so we retain highly qualified employees and offer them meaningful work, growth opportunities, and work-life balance. What sets us apart from all other contractors is the sense of teamwork our employees feel - and the knowledge that outstanding effort is recognized and rewarded. The camaraderie we share emanates from Lunch & Learn sessions where we explore new ideas together, fun group activities ranging from escape rooms to miniature golf, and much, much more. If we've described you and your dream workplace, please apply and share in the many benefits and opportunities we offer.
Software Developer
Responsibilities
Design, implement, and maintain complex GRC platform and application use cases, including POA&M management, Security Incident handling, System Inventory tracking, and ATO workflow automation, aligning to HHS security processes and with appropriate approvals including functional lead(s).
Build and maintain advanced GRC platform features such as Data Driven Events (DDEs), calculated fields, cross-reference relationships, and subform rollups to support integrated FISMA, CDM, and FedRAMP workflows.
Develop secure REST and SOAP APIs for the GRC platform and application to support data integrations with CDM, HSDW, and enterprise data reporting platforms, ensuring alignment with OMB, NIST 800-53 Rev. 5, and Zero Trust principles.
Create custom reports, iViews, dashboards, and level-driven access logic for user groups across multiple HHS OpDivs and mission-specific roles.
Provide hands-on support for all stages of the Dev > UAT > Prod pipeline across HCAP-managed environments.
Perform troubleshooting and root cause analysis in collaboration with Lab Administrators, DBAs, and QA team during development, deployment, and incident escalation cycles.
Participate in weekly release meetings, providing technical demonstrations of new functionality to stakeholders, and leading remediation of system defects or change requests.
Use tools like ServiceNow or Remedy to manage tickets, document issue history, and communicate with OpDiv representatives regarding technical changes and support status.
Maintain and version control use case documentation including GRC platform Configuration Guides, Workflow Maps, Field/Relationship Inventory, and Change Logs.
Mentor mid-level developers on platform architecture, API strategies, control inheritance modeling, and use case optimization techniques.
Possess a bachelor's degree (or higher) in Computer Science, Information Systems, Cybersecurity, or related field.
Demonstrate experience working in a federal cybersecurity environment, with strong understanding of compliance frameworks including NIST 800-53 Rev. 5, FISMA, and DISA STIGs.
Maintain detailed documentation of system designs, configuration changes, and implementation history in compliance with customer audit and knowledge management standards.
Collaborate with cross-functional teams including Business Analysts, QA Testers, Lab Admins, and CISO staff to align GRC platform functionality with security and operational objectives.
Contributes to OSCAL integration for automated control implementation and system documentation.
Basic Qualifications
Possesses at least 10 years of hands-on, software engineering experience with at least 5 years of direct experience configuring, customizing, and supporting the Enterprise Governance Risk and Compliance (currently RSA Archer) platform within a federal enterprise environment.
Possess excellent problem-solving skills and ability to communicate clearly with technical and non-technical stakeholders.
Preferred certifications include RSA Archer Certified Administrator, CISSP, or equivalent GRC/Information Security certifications.
Must be familiar with and adhere to the full Enterprise Performance Lifecycle (EPLC) and defined Software Development Life Cycle (SDLC) policies. This includes responsibility for documenting design, implementation, testing, deployment, rollback, and lessons learned. Any and all alterations, changes, or modifications to a GRC/Archer Production type environment must be processed through the Change Control Board (CCB) with clear risk analysis, system impact reviews, and rollback procedures.
All qualified applicants are considered for employment, and employees are treated during employment without regard to race, color, religion, sex, national origin, age, citizenship, disability, or Veteran status. Additionally, the company provides reasonable accommodations to qualified individuals with disabilities.