PHP / Drupal Developer

Location: Bethesda, MD (2 Days Onsite - May increase as Client needs change)

Position Title: PHP / Drupal Developer

Clearance: Public Trust

Job Overview: LCG is seeking a PHP / Drupal Developer will support the Client's Information Technology and Applications Center (ITAC) by enhancing, maintaining, and modernizing enterprise Drupal-based web applications that support NIH scientific research and business operations. This role is responsible for full lifecycle Drupal/PHP development, including custom module and theme development, security patching, performance optimization, accessibility compliance, and production support. The developer will work within ITAC's Agile/SAFe delivery framework, collaborating closely with UI/UX, security, DevOps, Enterprise Architecture, and content stakeholders to ensure applications meet federal standards for usability, security, Section 508 accessibility, and operational readiness in a regulated government environment.

Key Responsibilities

Drupal & PHP Application Development

• Enhance and maintain Drupal-based applications (custom and COTS) using PHP, adhering to ITAC coding standards, UI/UX guidelines, and enterprise architecture direction.
• Design, develop, and maintain custom Drupal modules, themes, and extensions, including business logic, reusable components, and configuration management.
• Implement integrations between Drupal and external systems using APIs, services, and enterprise connectors as required by business workflows.
• Support content management workflows including content modeling, publishing workflows, roles/permissions, and editorial governance.

Security, Patching, and Compliance

• Apply Drupal core, contributed module, and PHP dependency patches, ensuring remediation of vulnerabilities within required federal timelines.
• Support application security scanning and remediation using Invicti (NetSparker) and related security tooling; analyze findings and implement secure coding fixes.
• Ensure applications comply with Client, NIH, and Federal cybersecurity mandates, supporting RMF-aligned remediation activities and documentation as required.

Accessibility & UI Standards (Section 508)

• Ensure all Drupal applications meet Section 508 / WCAG accessibility requirements, aligning with ITAC UI/UX standards and review processes.
• Support accessibility testing and remediation using SortSite and manual accessibility validation techniques; address findings related to keyboard navigation, screen readers, color contrast, forms, and semantic markup.
• Collaborate with UI/UX and 508 compliance SMEs to validate UI mockups prior to development and ensure compliance throughout the SDLC.

Performance Optimization & Quality

• Analyze and implement performance improvements for Drupal applications, including caching strategies, database query optimization, configuration tuning, and front-end performance enhancements.
• Create and maintain automated tests where feasible using PHPUnit, supporting regression coverage and quality assurance efforts.
• Participate in functional, integration, regression, performance, and smoke testing activities in alignment with ITAC test management processes.

DevSecOps, CI/CD, and Configuration Management

• Use GitHub and/or Bitbucket for source control, following ITAC branching, pull request, and code review standards.
• Support application builds and deployments through Jenkins and/or GitHub Actions, collaborating with ITAC DevOps and Configuration Management teams.
• Package and support deployments across environments, including post-deployment validation and production smoke testing.

Agile Delivery & Production Support

• Participate in Agile/SAFe ceremonies including PI planning, sprint planning, daily standups, sprint reviews, and retrospectives.
• Maintain development tasks, defects, and technical debt in Jira, ensuring traceability to requirements and acceptance criteria.
• Provide Tier 3 production support, including troubleshooting, defect resolution, and emergency fixes.
• Support deployment hyper-care periods and contribute to transition activities, documentation updates, and knowledge transfer to maintenance teams.

Requirements

NIH Experience preferred.

Experience optimizing Drupal performance and scalability in enterprise environments

Familiarity with DevOps practices and deployment pipelines in containerized or cloud-hosted environments

Experience:

• 5+ years of hands-on professional experience in PHP and Drupal development supporting enterprise web applications.
• 3+ years of experience developing custom Drupal modules and themes (Drupal 8/9/10 preferred).
• 2+ years of experience supporting applications in a regulated or compliance-driven environment (Federal/Government preferred).
• 2+ years of experience working in an Agile development environment, delivering work in sprints and program increments.
• 1+ year of experience supporting Section 508 accessibility compliance and remediation activities.

Education: Bachelor's degree preferred in Computer Science, Software Engineering, Information Systems, or a related technical discipline (or equivalent professional experience).

Certification:

• Drupal Certification (e.g., Acquia Certified Developer - Drupal)
• Web accessibility or Section 508-related certifications (nice to have)
• Security or secure coding certifications (nice to have)

Required Technical Skills

• Languages & Frameworks: PHP, Drupal, PHPUnit
• CMS Expertise: Content types, views, taxonomy, workflows, roles/permissions, configuration management
• Version Control: GitHub and/or Bitbucket (branching, pull requests, code reviews)
• CI/CD: Jenkins and/or GitHub Actions
• Security & Compliance Tools: Invicti (NetSparker) for vulnerability scanning
• Accessibility Tools: SortSite and manual 508 testing techniques
• SDLC Tooling: Jira for backlog, sprint, defect, and RFC management; SharePoint for documentation

Compensation and Benefits

The projected compensation range for this position is $100,000 to $130,000 per year benchmarked in the Washington, D.C. metropolitan area. The salary range provided is a good faith estimate representative of all experience levels. Salary at LCG is determined by various factors, including but not limited to role, location, the combination of education/training, knowledge, skills, competencies, certifications, and work experience.

LCG offers a competitive, comprehensive benefits package which includes health insurance options (medical, dental, vision), life and disability insurance, retirement plan contributions, as well as paid leave, federal holidays, professional development, and lifestyle benefits.

Devoted to Fair and Inclusive Practices

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law.

If you are interested in applying for employment with LCG and need special assistance or an accommodation to apply for a posted position, contact our Human Resources department by email at hr@lcginc.com.

Securing Your Data

Beware of fraudulent job offers using LCG's name. LCG will never request payment-related details or advancement of money during the application process. Legitimate communication will only come from lcginc.com or system@hirebridgemail.com emails, not free commercial services like Gmail or WhatsApp. If you receive suspicious emails asking for payment or personal information, contact us immediately at hr@lcginc.com.

If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.