Software Security Assessment Expert for Cybersecurity Hiring Assessments

---

---

We are seeking individuals with advanced expertise in the Software Security Assessment, one of the NIST NICE Framework work roles. This role focuses on assessing the security of new and existing software systems, analyzing vulnerabilities, and supporting the development of secure code practices and cybersecurity assessments. Ideal candidates will have 15+ years of hands-on experience in software security and a deep understanding of cybersecurity risks, tools, and secure development methodologies. Required Technical Expertise Candidates must demonstrate advanced proficiency in the following areas: • Performing root cause and vulnerability analysis • Identifying critical infrastructure systems and insecure design patterns • Conducting static code analysis and black-box software testing • Designing secure test plans and implementing PKI and digital signatures • Developing and evaluating security controls for software systems • Building mathematical and statistical models to support security assessments • Integrating cybersecurity measures into the software development lifecycle (SDLC) • Communicating technical risk and design insights to engineering and leadership teams • Conducting risk analysis for system changes, updates, or patch management Candidates should have demonstrable experience performing tasks such as: • Consulting on secure system design and maintenance strategies • Performing secure code reviews and preparing supporting documentation • Integrating cybersecurity testing tools into QA processes • Developing threat models and evaluating software-hardware interfaces • Determining security controls for centralized and decentralized environments • Analyzing security impacts across the product lifecycle, including end-of-life • Documenting attack surface elements and integrating cybersecurity into application design • Conducting penetration testing and developing secure applications • Supporting quality assurance, validation procedures, and vulnerability reporting • Communicating requirements with customers and translating them into security features Qualifications: • Minimum 15 years of experience in software security assessment or secure software development • Excellent communication skills, both oral and written, required. Must be able to convey technical information effectively to diverse audiences. • Advanced degree or relevant certifications (e.g., CISSP, CSSLP, CEH) preferred • Experience with NIST standards and frameworks (e.g., NICE, NIST SSDF) • U.S. citizenship required. Engagement Details: This is a freelance, part-time role with flexible assignments throughout the year. Estimated workload is 2–15 hours per month, with some months possibly having no tasks. Selected candidates will be invited to a 30-minute screening interview. Successful candidates may be asked to contribute to developing or reviewing assessment content, including test items, task simulations, and pilot testing materials.

Keyword: Design Expert

Price: $100.0

Application Security Vulnerability Assessment Penetration Testing