Job Description
Job Description
Software Assurance Analyst
Clearance Requirement: Must be able to pass a Government Security Background Check
Position Summary
Veterans Engineering is seeking a highly skilled and experienced Software Assurance Analyst to join our team responsible for analyzing custom-developed software for security and quality flaws. The ideal candidate will bring a strong software development background, hands-on experience with code scanning tools (Fortify and CodeQL).
This role plays a critical part in maintaining high standards of software security, compliance, and documentation across the development lifecycle. You will work closely with cross-functional customer teams including developers, program managers, security engineers, project managers, and stakeholders.
Key Responsibilities
• Lead, mentor, and support a team of Software Assurance Analysts.
• Set priorities, manage ServiceNOW and GitHub Ticket queue, and manage task backlogs for the team using Agile methodologies. This includes developing all required reporting and associated contractual deliverables.
• Ensure timely review of static code analysis and open-source dependency scans.
• Oversee and review SAST and SCA scans using Fortify and CodeQL tools.
• Validate scan results and support the resolution of findings across multiple projects.
• Provide oversight and technical input on validation reports for ATO and cATO processes.
• Track emerging security threats and ensure analysis practices remain current.
Process Management & Documentation
• Ensure consistent documentation of scan analyses, audit comment reviews, and validation findings.
• Maintain and improve internal procedures and knowledgebases for secure code analysis.
• Support the development of clear, actionable technical notes for developers.
Collaboration & Developer Support
• Partner with development teams to integrate secure development practices.
• Participate in and guide secure code reviews and architectural assessments.
• Deliver training and mentoring to developers on secure coding practices.
Required Qualifications
• U.S. Citizen (due to government clearance requirements)
• Bachelor or Masters of Computer Science
• Must be able to pass a government background investigation
• 5+ years of experience as a software developer with hands-on coding expertise
• Experience managing or prioritizing a technical backlog in Agile environments
• Strong experience with code scanning tools, especially:
- Fortify Static Code Analyzer
- GitHub CodeQL
• Deep understanding of secure software development practices
• Experience reviewing SAST/SCA scan results and writing technical validation reports
• Familiarity with Authority to Operate (ATO) and Continuous ATO (cATO) processes
• Excellent communication and collaboration skills
• Ability to translate technical findings into actionable developer guidance
Preferred Qualifications
• Experience working with federal government or regulated industries
• Familiarity with DevSecOps pipelines and CI/CD environments
• Prior experience training or mentoring software developers in secure coding
• Working knowledge of common compliance frameworks (e.g., NIST, OWASP Top 10)
Company DescriptionVeterans Engineering (VE) is committed to serving our clients by providing cutting-edge technology solutions.
Our mission is to:
Enable Transformation: We assist federal agencies and commercial entities in embracing emerging technologies, driving digital transformation, and optimizing their operations.
Champion Cloud Excellence: VE’s expertise spans the entire cloud journey, from strategy to implementation to cost optimization. We empower organizations to harness cloud computing’s full potential.
Deliver Subject Matter Expertise: Our team delivers high-quality, tailored technical solutions that enhance efficiency, security, and innovation.
Company Description
Veterans Engineering (VE) is committed to serving our clients by providing cutting-edge technology solutions.\r\n\r\nOur mission is to:\r\n\r\nEnable Transformation: We assist federal agencies and commercial entities in embracing emerging technologies, driving digital transformation, and optimizing their operations.\r\nChampion Cloud Excellence: VE’s expertise spans the entire cloud journey, from strategy to implementation to cost optimization. We empower organizations to harness cloud computing’s full potential.\r\nDeliver Subject Matter Expertise: Our team delivers high-quality, tailored technical solutions that enhance efficiency, security, and innovation.