Security Software Engineer at MKS2 Technologies

Job DescriptionJob DescriptionMKS2 Technologies, LLC, an award-winning high growth small business, creates innovative and customer-centric technology solutions in the areas of Cyber Security, Instructional Design and Training, Software Engineering and IT Support Services to improve the security and well-being of our clients. Our commitment to excellence and our "Mission First" orientation has resulted in steady growth and an expanding client base across government agencies. We have employees nationwide and for the past three consecutive years were named one of the fastest growing Veteran-owned companies in the nation. Please take a moment to browse through our website and learn more about what it means to serve with MKS2.Security Software EngineerClearance Requirement: Top Secret clearances; must be SCI eligibleLocation: Dahlgren, VAPosition Type: Full-TimeOverviewWe are seeking a highly skilled Security Software Engineer with Red Team penetration testing expertise to support advanced cybersecurity operations within DoD environments. This role demands a deep understanding of software engineering, penetration testing tools, and secure system architecture across both Linux and Windows platforms. Candidates will contribute to offensive security operations, vulnerability assessments, and secure software development for mission-critical systems.Minimum QualificationsExperience:5+ years in software engineering applied to program development, modeling, and simulation for DoD or IT systems5+ years of hands-on experience with Linux and Windows environmentsTraining & Certifications:COMPTIA Linux+ or FedVTE Linux+Microsoft MCSA or equivalent Windows trainingIAT Level II certification per DoD 8570.01 (or successor)Penetration Testing Certification (one or more of the following):Offensive Security: OSCP, OSCE, OSEE, OSWPSANS: GPEN, GWAPT, GXPN, SEC642, SEC564OSD Cyber Operation Academy Course (COAC) graduateSecurity Clearance: Top Secret clearance SCI eligibleTechnical Skills & ToolsStrong working knowledge of penetration testing tools: Kali, Metasploit, NMAP, Cobalt StrikeProgramming and scripting proficiency in: Python, C, C++, C#, Go, Perl, PowershellWeb development and testing: PHP, ASP, Java, HTML, SQL/NoSQL, RESTful/SOAP APIsEnterprise technologies:NSX, vCenter, vRealize Suite, Horizon ViewPAN-OS, FirePower, Nexus, IOS, ASAONTAP, SnapMirror, Active Directory, Entra ID (Azure AD), SSO, MFAMicrosoft 365 hybrid environmentsAutomation: Powershell, PowerAutomate, Logic Apps, Graph APIAWS services: EC2, S3, KMS, RDS; serverless and microservice architectureSecurity protocols: OAuth2, SAML, LDAPExperience with Palo Alto, Cisco, VMWare, NetApp, and Microsoft productsCore ResponsibilitiesConduct Red Team operations and penetration testing in MDE environmentsDebug and reverse engineer software and analyze system logs (Windows Events, Linux syslog, boot logs, dmesg)Identify and mitigate vulnerabilities in compiled and source codeOperate and administer systems running HP-UX, UNIX, Solaris, Linux, and WindowsApply DISA STIGs and NSA encryption technologiesDesign and implement deceptive technologies (e.g., honeypots)Perform static source code analysis and participate in code reviewsAuthor recommendations for secure software design and contribute to SSAOM documentationIntegrate and manage identity and access across hybrid environments using Entra IDExtend on-premises Active Directory with cloud identity solutionsConduct security research leading to CVE publicationParticipate in Capture the Flag (CTF) exercises (e.g., DEFCON, Hack the Box, OTW)Diversity creates a healthier atmosphere: MKS2 Technologies is proud to be an Equal Employment Opportunity / Affirmative Action employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.