Cyber Security Assessment and Compliance Specialist

Clearance Level
None
Category
Cyber Security
Location
Washington, District of Columbia

REQ#: RQ55701

Travel Required: None
Public Trust: Other
Requisition Type: Regular

The candidate will perform security assessments of National Systems, gather and aggregate assessment data for trends analysis, develop and maintain documentation to support the assessment process, and actively work to ensure the assessment process matures in line with industry and Judiciary requirements and expectations.

Each security assessment will include, at a minimum, the following activities: Documentation Review, Interviews with National System Stakeholders, Security Testing of IT Assets, Physical Control (On-Site) Review, and Process Development/Participation.

Qualifications

Education and Experience:  

  • Bachelor’s Degree in Computer Science or related field. 
  • least 6 years of experience in cybersecurity management, operational, and/or technical activities.
  • At least 4 years of experience in National Institute of Standards (NIST) cybersecurity standards and best practices.
  • least 2 years conducting IT security assessments in an academic or business environment.

Knowledge:  

  • of security assessments and appropriate tools.
  • of potential vulnerabilities and threats to existing web, applications, database, and operating system technologies
  • NIST 800 series guidance for network security.
  • ave CSAM (Cyber Security Assessment Management) tool experience and knowledge of how to measure compliance within a security system and program.

Skills/Abilities:  

  • Excellent verbal and written communication skills
  • Excellent organizational and analytical skills
  • Ability to express thoughts clearly
  • Ability to collaborate in a team environment
  • to detail

Certifications: Possess one industry-recognized cybersecurity certification, such as: Certified Information Systems Security Professional (CISSP), Certification Information System Auditor (CISA), GIAC Certified Incident Handler (GCIH), Offensive Security Certified Professional (OSCP), GIAC Penetration Tester (GPEN), GIAC Web Application Penetration Tester (GWAPT), Offensive Security Web Expert (OSWE), Certified Ethical Hacker (CEH), Security+ or similar Certification and Authorization Professional (CAP).

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.