Job Requirements
Columbia, MD
Top Secret/SCI Polygraph not specified
Mid Level Career (5+ yrs experience)
$160,000 - $180,000
Job Description
HyerTek is a federal technology consulting firm delivering secure enterprise applications, data analytics, and modernization services to federal government agencies.HyerTek is hiring a Full Stack / Lead Developer to design, harden, and own the application, API, and data access layers of secure enterprise applications delivered to federal customers built on Azure Government Cloud. You will lead the modernization of existing applications into production-grade, accreditation-ready capabilities — building the server-side logic, migrating and modeling the data tier, implementing enterprise authentication, and standing behind the correctness and security of everything you ship.
This is a hands-on, senior builder role — not a management seat. You will personally write, direct, and review code, including code produced with AI-assisted development tooling, and remain the accountable owner of what ships; in an accredited environment, "the tool generated it" is not an answer. You will work directly with cloud engineers, security engineers, and requirements and QA staff on a delivery team, where your judgment on data integrity, access control, and secure coding directly shapes whether a system earns and keeps its Authority to Operate.
Location: Candidate must be located in the Washington, DC, metro region and available to go onsite to the customer site in Maryland as needed. This role supports secure Government environments; active Top Secret/SCI (TS/SCI) clearance is required. All personnel shall meet DoD 8140/8570 baseline requirements for their role.
Responsibilities:
Own the application, API, and data-access layer end to end — from HTTP surface through business logic to the database — for production-grade federal systems.
Lead migrations from embedded/synchronous data stores to Azure SQL / SQL Server
Implement enterprise authentication and server-revocable session management, including certificate-based (CAC/PIV) auth via DoD PKI at the gateway/reverse proxy.
Enforce role-based and scope-based access control at the API and data layer
Direct and critically review AI-assisted code generation; remain the accountable owner of correctness, security, and maintainability for all delivered code.
Build and maintain integrations to external systems and data feeds under defined, versioned contracts.
Remediate application-security and STIG findings in code — input validation, output encoding, parameterized queries, FIPS-validated cryptography, and least-privilege handling of sensitive data.
Build front-end experiences to Section 508 / WCAG 2.1 AA conformance.
Containerize and deploy applications on hardened base images through a compliant CI/CD pipeline with automated quality and security gates.
Author automated tests; support QA, security, and accreditation staff with the evidence they need for authorization.
Requirements
7+ years of hands-on full-stack development, with deep production experience in Node.js and Express (or equivalent) server-side JavaScript.
Demonstrated experience migrating an application from embedded/synchronous databases to a networked relational database (SQL Server / Azure SQL), including the async refactor and dialect conversion.
Expert SQL and relational dta modeling; comfort with transactions, migrations, and referential integrity across a large schema.
Strong front-end skills (modern JavaScript) and working knowledge of Section 508 / WCAG accessibility.
Proven secure-coding discipline and experience remediating OWASP / DISA ASD STIG findings.
Experience implementing authentication and authorization, including certificate-based auth (x.509 / mTLS) and server-side RBAC.
Working knowledge of Docker and container-based deployment; familiarity with CI/CD pipelines and automated testing.
Excellent judgment, code-review rigor, and willingness to be personally accountable for delivered code in a regulated environment.
Ability to work independently across a team and communicate clearly with architects, security engineers, and Government stakeholders.
Candidates must have and maintain an active TS/SCI clearance with the Department of Defense.
Preferred Qualifications:
Experience with Azure Government, GCC High, or classified Azure environments and the architectural constraints they impose.
Familiarity with DoD IL5/IL6 workloads, RMF, and the CAC/PIV / DoD PKI ecosystem.
Hands-on experience directing AI-assisted development tooling with accountable human review.
Experience with AKS, hardened base images, Key Vault / managed identity, and Azure SQL private-endpoint connectivity.
FIPS-mode / FIPS 140-2/3 validated cryptography experience.
Microsoft certifications relevant to Azure development or data.
HyerTek offers a comprehensive benefits package, including:
Medical, dental, and vision insurance
401(k) with employer contribution
Paid time off (PTO) and company holidays
Flexible work arrangements
Professional development and certification support
Employee assistance program (EAP)
Life and disability insurance
Salary Range
$160,000 – $180,000 annually, depending on experience and clearance status.
Equal Employment Opportunity (EEO)
HyerTek is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, age, or any other protected status.
This is a hands-on, senior builder role — not a management seat. You will personally write, direct, and review code, including code produced with AI-assisted development tooling, and remain the accountable owner of what ships; in an accredited environment, "the tool generated it" is not an answer. You will work directly with cloud engineers, security engineers, and requirements and QA staff on a delivery team, where your judgment on data integrity, access control, and secure coding directly shapes whether a system earns and keeps its Authority to Operate.
Location: Candidate must be located in the Washington, DC, metro region and available to go onsite to the customer site in Maryland as needed. This role supports secure Government environments; active Top Secret/SCI (TS/SCI) clearance is required. All personnel shall meet DoD 8140/8570 baseline requirements for their role.
Responsibilities:
Own the application, API, and data-access layer end to end — from HTTP surface through business logic to the database — for production-grade federal systems.
Lead migrations from embedded/synchronous data stores to Azure SQL / SQL Server
Implement enterprise authentication and server-revocable session management, including certificate-based (CAC/PIV) auth via DoD PKI at the gateway/reverse proxy.
Enforce role-based and scope-based access control at the API and data layer
Direct and critically review AI-assisted code generation; remain the accountable owner of correctness, security, and maintainability for all delivered code.
Build and maintain integrations to external systems and data feeds under defined, versioned contracts.
Remediate application-security and STIG findings in code — input validation, output encoding, parameterized queries, FIPS-validated cryptography, and least-privilege handling of sensitive data.
Build front-end experiences to Section 508 / WCAG 2.1 AA conformance.
Containerize and deploy applications on hardened base images through a compliant CI/CD pipeline with automated quality and security gates.
Author automated tests; support QA, security, and accreditation staff with the evidence they need for authorization.
Requirements
7+ years of hands-on full-stack development, with deep production experience in Node.js and Express (or equivalent) server-side JavaScript.
Demonstrated experience migrating an application from embedded/synchronous databases to a networked relational database (SQL Server / Azure SQL), including the async refactor and dialect conversion.
Expert SQL and relational dta modeling; comfort with transactions, migrations, and referential integrity across a large schema.
Strong front-end skills (modern JavaScript) and working knowledge of Section 508 / WCAG accessibility.
Proven secure-coding discipline and experience remediating OWASP / DISA ASD STIG findings.
Experience implementing authentication and authorization, including certificate-based auth (x.509 / mTLS) and server-side RBAC.
Working knowledge of Docker and container-based deployment; familiarity with CI/CD pipelines and automated testing.
Excellent judgment, code-review rigor, and willingness to be personally accountable for delivered code in a regulated environment.
Ability to work independently across a team and communicate clearly with architects, security engineers, and Government stakeholders.
Candidates must have and maintain an active TS/SCI clearance with the Department of Defense.
Preferred Qualifications:
Experience with Azure Government, GCC High, or classified Azure environments and the architectural constraints they impose.
Familiarity with DoD IL5/IL6 workloads, RMF, and the CAC/PIV / DoD PKI ecosystem.
Hands-on experience directing AI-assisted development tooling with accountable human review.
Experience with AKS, hardened base images, Key Vault / managed identity, and Azure SQL private-endpoint connectivity.
FIPS-mode / FIPS 140-2/3 validated cryptography experience.
Microsoft certifications relevant to Azure development or data.
HyerTek offers a comprehensive benefits package, including:
Medical, dental, and vision insurance
401(k) with employer contribution
Paid time off (PTO) and company holidays
Flexible work arrangements
Professional development and certification support
Employee assistance program (EAP)
Life and disability insurance
Salary Range
$160,000 – $180,000 annually, depending on experience and clearance status.
Equal Employment Opportunity (EEO)
HyerTek is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, age, or any other protected status.
group id: 91125207