Cybersecurity Tester, Senior in Arlington, VA at Booz Allen Hamilton Inc.

Date Posted: 8/1/2018

Job Snapshot

Job Description

Job Number: R0029973

Cybersecurity Tester, Senior

Key Role:

Conduct assessments of threats and vulnerabilities through testing and evaluation activities, including security control validation, vulnerability scanning, and conducting interviews. Assess the determination of deviations from required or acceptable configurations, consult on the evaluation of the existing level of risk, and make risk mitigation recommendations. Work in a challenging environment that combines technical security testing, security engineering, policy, and compliance expertise with business consulting to deliver high-value client IT security solutions and program planning. Contribute to a team of security professionals that provide DoD clients assurance that complex information technology systems and networks meet security controls and standards. Plan and execute system security assessments to meet client requirements, analyze results, develop reports to be used to determine system vulnerabilities and risk posture, and provide recommendations for remediation to achieve preferred security and risk posture. Prepare Risk Management Framework (RMF) Security Authorization Packages needed to achieve system or network authorization. Monitor and respond to security-related data calls on behalf of the client organization, as needed.


Basic Qualifications:

-5+ years of experience with Cybersecurity or Information Assurance

-3+ years of experience with performing vulnerability assessments and remediation with DoD Assured Compliance Assessment Solution (ACAS) and DoD Security Technical Implementation Guides (STIGs)

-3+ years of experience with assessing operating system and network device configuration

-3+ years of experience with validating NIST 800-53 Security Controls

-3+ years of experience with developing Security Assessment Plans (SAP), Security Assessment Reports (SAR), and Risk Assessment Reports (RAR) 

-Experience with analyzing and communicating network security issues to peers and to management

-Ability to solve technical problems during assessment activities

-Secret clearance

-BA or BS degree in Technology

-Information Assurance Manager (IAM) Level II or IASAE Level II Certification, including Security+ CE, SSCP, or GSEC


Additional Qualifications:

-2+ years of experience with presenting Cyber assessment results using Microsoft PowerPoint

-2+ years of experience with assessing system architectures and recommending design modifications necessary to meet DoD STIGs

-2+ years of experience with assessing the configuration of firewalls, databases, virtual environment, Web servers, and ports, protocols, and services

-Experience with Navy policy and compliance, RMF Assessment and Authorization (A&A), and weapons systems security

-Experience in working with a Department of the Navy (DON) organization

-Knowledge of Marine Corps or military organization, culture, and policies

-Ability to adhere to project schedule and recommend changes, as necessary to maintain positive project outcomes

-Ability to stay abreast of internal and external security best practices

-Possession of excellent oral and written communication skills

-Navy Qualified Validator (NQV) Level I, II, or III Certified or legacy Fully Qualified Navy Validator (FQNV)

-Professional level certification in one or more technical or OS fields, including Microsoft Windows, UNIX, or Red Hat Linux


Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

NMC

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.