Senior Cyber Capability Developer

Graham Technologies is seeking a highly skilled Senior Cyber Capability Developer to join our cybersecurity team. This role involves providing technical expertise in evaluating secure software development practices, analyzing software for vulnerabilities or malicious logic, and supporting mission-critical systems with secure, scalable capabilities. You will work closely with Information System Security Officers (ISSOs), stakeholders, and other cyber professionals to enhance system integrity and resilience.

Location: Clarksburg, WV

Key Responsibilities:

Secure Code Analysis

• Support ISSOs in reviewing and evaluating delivered software systems for cybersecurity compliance.
• Conduct static analysis of source code in a variety of programming and scripting languages, including but not limited to:
  • C, C++, Java, C#, Groovy, Python, Perl, Puppet, JavaScript, Ruby, Bash, PowerShell, and Objective-C.
• Identify vulnerabilities, insecure patterns, or indicators of potentially malicious logic within source code.

Binary and Reverse Engineering

• Perform dynamic, manual, and automated binary reverse engineering to detect security risks in developed applications.
• Identify both known and unknown malicious code signatures and behaviors in compiled binaries.
• Analyze embedded firmware and hardware interfaces where applicable.

Security Framework and Tool Development

• Create and maintain frameworks, internal tooling, scripts, and application extensions to streamline software security analysis.
• Integrate open-source and custom tools for enhanced automation and scalability of assessment workflows.

Technical Guidance and Threat Modeling

• Provide expertise on identifying malicious logic and intent in both source and binary files.
• Advise on secure coding practices based on industry standards and OWASP Top 10 vulnerabilities.
• Deliver technical guidance to developers and security teams on:
  • Secure web development practices.
  • Secure software development methodologies and lifecycle integration.
  • Threat modeling and risk mitigation strategies.

Stakeholder Support and Risk Evaluation

• Assist Criminal Justice Information Services (CJIS) stakeholders in identifying and assessing technical and operational risks.
• Evaluate security vulnerabilities in CJIS systems, software, and services.
• Develop detailed risk and vulnerability reports, including actionable recommendations.

Communication and Knowledge Transfer

• Present security findings, threat trends, and recommendations through:
  • Briefings, presentations, and stakeholder meetings.
  • Formal reports such as secure code assessments and threat modeling summaries.
• Conduct knowledge transfers and training as assigned to elevate organizational security posture.

Required Skills:

• Must possess active DoD Top Secret
• 6+ years of experience in software security analysis, secure development, or reverse engineering.
• Proficiency in at least five of the following languages: C, C++, Java, C#, Python, JavaScript, Ruby, PowerShell, Bash.
• Strong understanding of OWASP Top 10, secure coding standards, and cyber threat modeling.
• Experience creating custom analysis tools and frameworks.
• Ability to effectively communicate complex technical issues to both technical and non-technical stakeholders.
• Bachelor's degree in Computer Science, Cybersecurity, Engineering, or a related fiel

Desired Skills:

• Master's degree in a relevant technical field.
• Security certifications such as CompTIA Security+ or Certified Ethical Hacker (CEH).
• Prior experience supporting CJIS or similar high-security government environments.
• Familiarity with secure DevOps practices and integration tools (e.g., Jenkins, GitLab CI, SonarQube).
• Background in malware analysis or digital forensics.

Compensation:

At Graham Technologies, we believe in treating everyone with fairness and respect. Our compensation package is designed to ensure fair pay for work, reflecting our commitment to integrity.

Many IT companies offer similar services, but what truly sets us apart is our people! We care deeply about our employees and consistently show our appreciation-not just for the final outcomes, but also for the effort and dedication shown every step of the way. Additionally, our generous benefits package supports our team members in living fulfilling and prosperous lives.

Here are just a few highlights of what we offer:

• Four Weeks of Accrued PTO in the First Year
• Eleven Paid Federal Holidays
• Comprehensive Health, Dental, Vision, and Life Insurance
• 401(k) Plan with Annual Employer Contributions
• Flexible Schedules
• Reimbursements for Continued Education and Training

Why Graham Technologies?

Our core values define who we are:

• Value our Customers
• Care about our Employees
• Passionate about Innovation
• Believe in a Strong Work Ethic
• Rely on Teamwork
• Integrity Matters

Founded in 2007, GTech is a consulting services firm passionate about delivering tailored solutions that meet our clients' needs and maximize the value of their investments. We achieve this by providing top-notch professionals across the IT industry. Our team embodies integrity, commitment, and reliability, which are at the heart of everything we do.

We are also dedicated to fostering a culture of support for our employees-the lifeblood of our business. At Graham Technologies, we've built a family-oriented environment where team members are encouraged to maintain a healthy work-life balance, pursue their passions, and grow professionally through flexible schedules, continued education, and a strong sense of community.