Software Security Engineer (Public Trust)

Job description

Our Digital Modernization Division is an information technology and management consulting department that offers integrated, strategic solutions to its public and private-sector clients. ICF has the expertise, agility, and commitment to design, build, and operate high-performance IT engines to support all aspects of our client’s business. ICF is seeking an experienced and driven Software Security Engineer to lead and oversee mission-critical initiatives in support of the General Service Administration (GSA). In this role, you will help safeguard applications and cloud-based systems by integrating security best practices throughout the software development lifecycle. Job Location: Must be able to go on-site 5 days a week to the client's office in Washington, DC. Hybrid work flexibility may be available after the first 90 days . What You Will Do: Integrate security best practices throughout the software development lifecycle (SDLC) for applications and cloud environments Perform secure code reviews and vulnerability assessments using industry‑standard tools, including SAST, DAST, and SCA solutions Design, implement, and validate security controls within cloud environments such as AWS...