Security Control Assessor - Pen Tester (Active Polygraph Required)

Clearance Level
Top Secret SCI + Polygraph
Category
Information Security
Location
Mclean, Virginia

REQ#: G2019-66281

Security Control Assessor with Pen-Tester Functionality

 

Performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction.

 

Evaluates the security controls within network systems to identify vulnerabilities and recommend actions to correct problems, working either alone or as part of a team. Ensures integrity of IT systems by identifying and mitigating potential avenues of exploitation, including system level attacks and user level attacks.

 

  • Applies experience with RMF, CNSSI 1253, NIST SP 800-53, and NISPOM
  • Conduct Penetration Testing.
  • Applies experience with Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) Compliance Checker (SCC)
  • Demonstrated experience conducting hands on security testing, analyzing results, documenting risks, and recommending countermeasures
  • Demonstrated experience developing risk assessment reports based on review of security plans and interviews with developer/customer assess systems against information assurance policies, regulations and instructions
  • Demonstrated experience providing threat analysis based on identified security vulnerabilities
  • Develops and documents security evaluation test plans and procedures
  • Demonstrated experience testing security architectures of cloud-based systems and applications, identifying vulnerabilities and providing security remediation
 

Required Skills:

Compliance and vulnerability scanning tools (XACTA, RedSeal, Nessus, Splunk, McAfee ePO, and/or other vulnerability scanners)

Strong understanding of the Assessment and Authorization (A&A) process

Excellent oral and technical writing skills

Desired Certifications: CASP, CCNP Security, CISA, CISSP, GCED, or GCIH

 

,"

BA/BS

","

10+

  

 

#DPOST

#CJPOST

#SWDevIC

#ISDCJ

#ComebackGDIT

#OpportunityOwned

#GDITCareers

#GDITLife

#WeAreGDIT

#HolidayCheer

" We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.