Secure Coder

Hawk Associates Secure Coder - Web Development (C ) - Ft. Huachuca/Sierra Vista, AZ Job Description: Hawk is looking for a mission-driven, highly skilled and detailed oriented
Secure Coder. Must have a strong background in C and a deep understanding of secure coding
practices to ensure the integrity and security of our web application. The Secure Coder will join
our CIO G6 Intelligence Knowledge Network (IKN) Team - a team of skilled professionals who
strive for successful user and mission support while providing a positive customer experience. Key Responsibilities

• Develop and Maintain Secure Web Applications: Write clean, scalable, and secure code using C and ASP.NET.

• Security Best Practices: Implement and advocate for secure coding standards and practices to protect against common vulnerabilities such as SQL injection, XSS, and CSRF.

• Code Reviews and Audits: Conduct regular code reviews and security audits to identify and mitigate potential security risks.

• Documentation: Create and update documentation to meet NIST/RMF requirements.

• Collaboration: Work closely with cross-functional teams, including QA, DevOps, and Product Management, to ensure security is integrated throughout the development lifecycle for all projects.

• Stay Updated: Keep abreast of the latest security trends, vulnerabilities, and technologies to continuously improve our security posture. Qualifications

• Bachelor's degree in Computer Science, Information Security, or a related field

• Minimum of 2 years of experience in web development with C and ASP.NET

• Strong understanding of OWASP Top Ten, secure coding principles, and best practices

• Proficiency in C , ASP.NET, MVC, and familiarity with front-end technologies (HTML, CSS, JavaScript).

• Excellent analytical and problem-solving skills with a keen eye for detail

• IAT Level II required (Security+, CISSP, etc.) Additional relevant cyber or programming certifications are a plus

• Current SECRET security clearance with ability to attain a TS/SCI Preferred Skills

• Familiarity with static, dynamic, and binary analysis tools, penetration testing, and vulnerability management

• Experience with securing applications in cloud environments (e.g., Azure, AWS)

• Knowledge of integrating security practices into CI/CD pipelines (DevSecOps)