Vulnerability Assessment Engineer - 1186

Washington  ‐ Onsite
This project has been archived and is not accepting more applications.
Browse open projects on our job board.

Keywords

Description

Any candidate accepted for this position will be responsible for carrying out vulnerability assessments and penetration tests on a wide range of information technologies.

Additional responsibilities include:

  • Automated testing development
  • Threat landscape research and Intel gathering
  • Generate executive level reports and presentations
  • Co-develop Vulnerability dashboard for executive review

Requirements:
Applicants selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. Must be clearable to the Top Secret level.

Bachelor's Degree from an accredited college or university and 5 years of specialized experience. Security + certification required.

Specialized experience:
Demonstrated experience in implementing software in accordance with security standards. Experience incorporating cyber security management processes into system design, development, testing, and implementation

Education and experience requirements may be substituted with:

  • A Master's or Doctorate degree and 3 years specialized experience.
  • No degree and 9 years of specialized experience.
  • Successful candidates must possess a thorough working knowledge of common commercial and/or open source vulnerability assessment tools and techniques used for evaluating operating systems, networking devices, databases and web applications. 
  • Specifically, candidates should be proficient with the following tool sets: nCircle, FoundStone, WebInspect, DBProtect/AppDetective
  • Successful candidates should be familiar with certification and accreditation processes in general; experience with the NIST 800 series of documents would be advantageous.
  • Successful candidates must be able to quickly master new technology/software for the purposes of evaluating or subverting the security functionality of the technology/software. 
  • A thorough working knowledge of evaluating major applications and general support systems based on 800-53A using both commercial and open source assessment technologies. 
  • Experience with Web Applications and services and databases is a significant plus. 

May need to conduct some security testing during off hours.

Knowledge of Configuration Management (CME) processes helpful.

Start date
n.a
Duration
3 years contract
From
Knowledge Consulting Group
Published at
26.10.2012
Project ID:
439709
Contract type
Freelance
To apply to this project you must log in.
Register