The Contractor shall provide full-stack web software engineering support to include analysis of business needs and systems flow, and shall determine software, database, data storage and usage requirements while engineering solutions to facilitate business work processes NSWC government-owned business software systems.

The contractor will support administrative and governance requirements such as agreements, policies, procedures, drawings, data pipelines, user training and resources, Remedy change management and incident ticketing, Azure DevOps and other Kanban boards and backlogs, and cybersecurity accreditations.

The position will regularly work with Microsoft software engineering programming languages and technologies, including data integration with data warehouses, data marts SQL, Microsoft (MS) C#.NET, SQL, MS SQL Server, MS SQL Server Integration Services (SSIS), SQL Server Reporting Services (SSRS), MS ASP.NET WebForms and MVC, .NET Framework and .NET Core, MS Internet Information Server (IIS), HTML, React JS JavaScript, , CSS, and MS Visual Studio and modernization of Microsoft applications to up-to-date frameworks, operating systems and agile practices.

The Contractor shall perform the following tasks as directed and approved by the Government:

7.3.5.7. Provide full-stack .NET systems software engineering development using modern software engineering design, object-oriented principles, and abstract data types.

7.3.5.8. Support all aspects of full-stack software engineering including the integration of platforms and features across multiple subsystems, containerization, and microservices architecture.

7.3.5.9. Support the Government in records management, system lifecycle sustainment operations and configuration, testing, training, release, and operations. Archiving final copy documentation and deliverables meeting a definition of done (built, reviewed, verified, tested, ready to operate, and releasable).

7.3.5.10. Support the Government in Product Backlog (PBL) grooming, Sprint Planning, and Sprints. Document user stories using INVEST criteria (independent, negotiable, valuable, estimable, sized, testable) that capture acceptance criteria and include a definition of done (built, reviewed, verified, tested, ready to operate, and releasable).

7.3.5.11. Analyze information and user requirements, design and debug software, and document technical notes within the Government Off the Shelf (GOTS) and approved open-source software.

7.3.5.12. Provide software testing, problem solving, requirements collection, stakeholder collaboration, user support, DevSecOps support, Standard Operating Procedures (SOP), and system maintenance.

7.3.5.13. Submit trouble tickets via Remedy change management system to request changes to system requirements, issues, infrastructure requirements, incidents and other system support.

7.3.5.14. Plan, create, and manage databases, develop back-end systems functionality, and design Application Programming Interfaces (API).

7.3.5.15. Design user interface/experience (UI/UX) and integrate web applications and data systems with back-end systems and databases.

7.3.5.16. Write easy to read, maintainable, documented, and testable code in languages such as C#, JavaScript and SQL, using .NET Framework and .NET Core, utilizing Microsoft Visual Studio and Azure DevOps Server.

7.3.5.17. Support the U.S. Government USG in tasks for data engineering and DataOps processes and accreditation, scans, and documentation to obtain an Interim Authority to Test (IATT), Authority to Operate (ATO), continuous Authority to Operate (cATO), Continuous Monitoring (CONMON) Strategy, Configuration Management (CM) Plan, Social Security Number (SSN) memorandum, Privacy Impact Assessment (PIA), Security Technical Implementation Guides (STIG), Risk Management Framework (RMF) Body of Evidence documents and checklists.

7.3.5.18. Continuously maintain and update on-premises and cloud technology stacks.

• Five (5) or more years of experience within the past ten (10) years in full-stack business systems web software engineering.
• Five (5) or more years of experience within the past ten years in Development security operations (DevSecOps). Examples of relevant functional skill areas: Microsoft Azure DevOps Services, Azure DevOps Server or Team Foundation Server, and management of modern DevSecOps processes
• Five (5) or more years of experience within the past ten (10) years with all of the following: C#.NET software development, JavaScript, MS Visual Studio, SQL, React JS or Angular JS, HTML, CSS, MS ASP.NET, .NET Framework and .NET Core, and MS SQL Server; desired additional experience with Microsoft software modernization, jQuery, Bootstrap, DevExpress, Django frameworks, containerization, Kubernetes, Azure, and cloud-native architecture and design.
• Per DoD 8570.01-M, Paragraph C2.3.9, contractor personnel supporting IA functions shall obtain the appropriate DoD-approved IA baseline certification prior to the start of work. During performance, the Contractor shall maintain and upwardly progress Information Assurance Technician applicable certifications and continuing education as designated by DoDI 8510.01, Risk Management Framework (RMF) for DoD Information Technology and later updated versions. Any of the following certifications will meet the IAT-II requirement: CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, and SSCP. An IAT Level III certification (CASP+ CE, CCNP Security, CISA, CISSP [or Associate], GCED, GCIH, or CCSP) will also meet the certification requirements. An Information Assurance Management (IAM) Level II certification (CAP, CASP+ CE, CISM, CISSP [or Associate], GSLC, CCISP, or HCISPP) certification will also meet the certification requirements. An IAM Level III certification (CISM, CISSP [or Associate], GSLC, CCISP) will also meet the certification requirements. Additional details available at: https://public.cyber.mil/cw/cwmp/dod-approved-8570-baseline-certifications/.
• Five or more years of recent experience (within the past ten years) in agile software development, microservices architecture, relational databases, web application programming interfaces (APIs), continuous integration/delivery (CI/CD), DevSecOps, and cybersecurity.
• Secret security clearance prior to the start of work.