Developer (React/NodeJs/ Cybersecurity)

Job Description:

Manager Notes:

The client is looking for a React/Node.js Developer with hands-on experience in both front-end and back-end development, along with cybersecurity knowledge or experience.

Key Requirements:

• Strong experience with React (front end) and Node.js (back end), with a development split of approximately 65% front-end and 35% back-end.
• Experience building and maintaining web services and writing SQL queries.
• Ability to create and update APIs and integrate them with front-end applications.
• Strong understanding of retrieving data from APIs and database communication.
• Experience with scripting languages, preferably Python or PowerShell.
• Familiarity with Microsoft Azure cloud services is a plus.
• Security+ certification is preferred.
• Ability to follow established project workflows, processes, and implementation steps.

Description:

• The Cybersecurity Developer role is responsible for the development, programming, and coding of Information Technology solutions using ReactJS, Redux, D3 and NodeJS to enable Cybersecurity applications.
• They will engage in all phases of the software development lifecycle which include: gathering and analyzing user/business system requirements, responding to outages and creating application system models.
• Developers are responsible for documenting detailed system specifications and will participate in evaluating, conducting performance testing, and all planned and unplanned maintenance for both internally developed applications and purchased products.
• They will participate in design meetings and consult with clients to refine, test and debug programs to meet business needs and interact and sometimes direct third party partners in the achievement of business and technology initiatives.
• Developers are responsible for including IT Controls to protect the confidentiality, integrity, as well as availability of the application and data processed or output by the application.

Essential Functions:

• The essential functions listed represent the major duties of this role, additional duties may be assigned.
• Develop, support, and maintain web applications for enterprise and affiliates.
• Skilled in react, python, javascript, sql, and other development languages.
• Supports API development development.
• Supports front end and back end development.
• Familiar with authentication and authorization technologies such as OAuth and JSON web tokens
• Familiar with CICD tools such as Jenkins.
• Monitors, reports on, and enhances performance of assigned technical security solutions
• Provides security technology incident response and problem management. Troubleshoots software and/or hardware issues/failures on assigned technical security solutions. Resolves alerts and performs remediation activities as required for return-to-operation.
• Accountable for follow-up of all security work requests including collaborating with other IT areas to ensure timely completion/resolution and obtainment of appropriate approval levels.
• Supports escalations, known issues and out of cycle requests on multiple security solutions for the enterprise and its subsidiaries
• Supports the development and maintenance of operational documentation for technical security solutions (e.g. procedures, engineering diagrams, knowledgebase, etc.).
• Collects, analyzes, synthesizes and presents data on technical security solutions and processes to peers, leadership and business stakeholders
• Assists the migration, upgrade and disposal of complex security capabilities and evaluates risks and impacts
• Collaborates with other business areas to deliver on work group initiatives for the enterprise and its subsidiaries
• Assists with developing continuous testing and validation of product performance and gap analysis for continuous security hardening processes
• Assists execution and alignment to security reference architecture standards and published blueprints.
• Assists Disaster Recovery planning, design, implementation and exercises on security technology solutions
• Assists remediation actions as a result of threat and vulnerability assessments or audits
• Provide training to others on security capabilities, processes, procedures and operational task

Additional Required Qualifications:

• Capacity to work independently and willingness to seek advice/assistance.
• Exposure to Project Management methodologies like Waterfall, Agile, Lean or SAFe methodologies
• Understanding of security concepts and controls for network, application, and operating systems.
• Ability to troubleshoot and investigate security related issues and having experience or knowledge with vulnerability and patch management.
• Strong technical, analytical, and administrative skills.
• Strong corporate work ethics.
• Strong Documentation and Review Skills.
• Have strong problem-solving skills.
• Maintain a positive attitude.
• Are professionals and possess excellent interpersonal and written communication skills.
• Have the desire and ability to learn new things fast.
• Strong Solutioning Skills to help facilitate new technology gaps
• Want to be part of an efficient and effective team.
• Display an ownership attitude and drive initiatives to completion.
• Are a team player that recognizes the bigger picture and understands the value of teamwork.

Required Work Experience:

• 3+ years related work experience
• 2+ years in application development

Required Education:

• Related bachelor's degree or additional related equivalent work experience

Required Licenses and Certifications (required within 180 days of hire):

• Security+
• **In alignment with GW Cybersecurity requirements, contractors must possess a relevant cybersecurity or technical certification for this role. If a relevant certification is not possessed, the contractor will be expected to obtain a relevant certification within 6 months of hire. (Relevant certification will be defined by hiring manager)

Additional Preferred Qualifications:

• Understanding of LDAP technologies such as Active Directory.
• Azure Privileged and non-Privileged access management.
• Well versed in the OWASP Top 10.