Senior Security Analyst/Assessor

eGlobalTech

Job Description:

eGlobalTech’s Information and Cyber Security Practice is looking for a Senior Security Analyst/Assessor to join our team out of Arlington, VA and at consulting locations all around the DC Metro Area. Qualified candidates should have exceptional communication skills and experience organizing and preparing security documentation and an active secret clearance. This role offers excellent compensation, career growth potential, and benefits packages including 20 days PTO, paid holidays and corporate events, continuing education reimbursements, and 401K match.

Position will be supporting a critical program and offer the opportunity to work with all groups within the eGT team.

Responsibilities:

  • Hands-on experience with networking (switch, routing, firewall) solutions
  • Experience performing security assessments of server’s/network devices/security appliances
  • Knowledge of Cloud Computing concepts, design, architecture, and security
  • Familiarity with Risk Management Framework-based security controls and requirements
  • Advanced technical competency in one or more of the following supported platforms: Microsoft Windows Server, Red Hat Enterprise Linux servers, VMWare ESX, Enterprise Networking/Firewalls/Intrusion Detection/Prevention Systems, ACAS/Nessus/SCC (SCAP-compliant tools), Access Control concepts, Oracle/MSSQL database security, Apache/IIS Web server security
  • Review security control assessments utilizing NIST Special Publications, industry Best Practices and other security guidelines in support information technology systems security activities
  • Experience in conducting vulnerability assessments on networks, servers, websites and databases to assist with other assessment activities
  • Familiarity with System Security Plan, Incident Response Plan, Contingency Plan, and Configuration Management Plan
  • Prepare and/or assist in creating reports and presentations required for communicating findings of the security assessments
  • Identify and assess vulnerabilities in a system and its environment of operation
  • Review patching and remediation of security weaknesses as they are discovered via a Plan of Actions and Milestones (POAM)
  • Ability to rapidly research to determine answers to questions in collaboration with team members
  • Communicate findings and responses to tasks and possess adeptness with both written and oral communications
  • Experience preparing, reviewing, and revising security relevant artifacts (SSP, CTP, SCTM, Security CONOP, Security Architecture, Privileged Users Guide, POAM, RAR, etc.)

Required Qualifications:

  • Minimum of 6+ years of experience
  • BA/BS or higher preferred, in Computer Science, Information Systems, or other related analytical, scientific, or technical disciplines.
  • Expertise in NIST Special Publications and other Industry Best Practices (e.g. CIS, SANS, ISO, NIST Cybersecurity Framework, NIST RMF)
    CISSP preferred
  • Knowledge of Federal Government A&A practices and policies, FISMA, NIST SP 800-53
  • Demonstrated consulting and analytical skills and experience
  • Strong analytical, problem-solving and decision making capabilities
  • Ability to work independently and also collaborating closely with application developers, engineers and others. Experience with information assurance tools preferred
  • Experience with vulnerability assessment scanning tools and reporting
  • Must be self-motivated and results oriented
  • Effective written and oral communication skills

Apply Here: http://www.Click2apply.net/rwb8c24txchrt8zb

PI112065581