Cross Domain Security Tester, Mid in Rome, NY at Booz Allen Hamilton

Date Posted: 2/5/2018

Job Snapshot

Job Description

Job Number: R0022198

Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years. Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.


Cross Domain Security Tester, Mid

Key Role:

Conduct assessment of threats and vulnerabilities through testing and evaluation activities, including network penetration testing, Web application security testing, and conducting social engineering exercises. Determine deviations from required or acceptable configurations. Consult on the evaluation of the existing level of risk.


Basic Qualifications:

-5+ years of experience with computer Cybersecurity or information assurance and testing in a professional work environment

-Experience with Cross Domain Solution development and testing and the review and interpretation of DoD Cross Domain requirements and the Cross Domain Risk Model (CDRM) approval process

-Experience with Linux-based operating systems, including Red Hat Enterprise Linux and Kali Linux or associated tools

-Experience with performing source code analysis using the following example tools: HP Fortify, FindBugs, or Klocwork Static Code Analysis

-Experience with Wireshark network protocol analyzer

-Experience in programming with one or more of the following languages: Java, JavaScript, Python, C/C++, Groovy, Ruby, Perl, PHP, jQuery, ASP, .NET, and HTML

-Experience with DoD Risk Management Framework (RMF), including NIST 800-53 and associated overlays

-Ability to perform software validation analysis, defining and documenting test plans and specifications required for regulatory compliance, and developing testing strategies, methodologies, and detailed procedures

-Active TS/SCI clearance

-BA or BS degree


Additional Qualifications:

-Experience with problem solving through out-of-the-box approaches

-Experience with security methodologies, system dependencies, and source code analysis processes

-Knowledge of SELinux

-Knowledge of networking

-Knowledge of Configuration Management and Automation tools, including JIRA, Stash, Subversion, Confluence, or Jenkins

-Knowledge of public-key cryptography, including certificates, certificate authories, and revocation lists

-Knowledge of Agile development and management with Agile Scrum

-Knowledge of Cloud and VM technology to design and implement automated testing and scanning strategies

-Ability to troubleshoot problems that occur during the configuration and scanning process in a fast-paced, constantly changing environment

-Ability to make recommendations that mitigate security vulnerabilities identified in reports

-Possession of excellent oral and written communication skills

-DoD 8570 IAT Level II Certification


Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.

Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions.  Booz Allen is committed to delivering results that endure.

We are proud of our diverse environment, EOE, M/F/Disability/Vet.

CHECK OUT OUR SIMILAR JOBS

  1. Quality Assurance Jobs
  2. QA Tester Jobs

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.