Information Systems Security Engineer (ISSE) / Penetration Tester - FULLY CLEARED with POLYGRAPH REQUIRED

United States·Annapolis JunctionSystems Security Personnelmid

OtherInformation Systems Security Engineer

0 views0 saves0 applied

Apply Now

Quick Summary

Overview

Risk Management Framework (RMF), NMAP, PKI, Wireshark, auditing, penetration testing, scripting, IASAE, CISSP, ISSEP, NISCAP Due to federal contract requirements, United States citizenship and an active TS/SCI security clearance and polygraph are required for the position.

Technical Tools

typescript

Risk Management Framework (RMF), NMAP, PKI, Wireshark, auditing, penetration testing, scripting, IASAE, CISSP, ISSEP, NISCAP

Due to federal contract requirements, United States citizenship and an active TS/SCI security clearance and polygraph are required for the position.

Must be a US Citizen
Must have TS/SCI clearance w/ active polygraph
Must have ten (10) years of experience with both ISSE and Penetration Testing, not just one or the other.
Must have extensive, demonstrated knowledge of and experience with common security tools, such as Nessus, NMAP and Wireshark hardware/software security implementation, communication protocol, encryption techniques/tools, and web services.
Must have in-depth understanding and extensive experience with security practices and policies and hands-on vulnerability testing using Tenable Nessus scanning products and/or NMAP (Network Mapper).
Must have experience with Defense in Depth Principals/technology, including access control, authorization, identification and authentication, public key infrastructure, network and enterprise security architecture, and applying risk assessment methodology to system development.·
Must have experience applying Risk Management Framework.
Must have experience formulating and assessing IT security policy.
Must have experience with secure configurations of commonly used desktop and server operating systems.
Must have experience with penetration testing tools.
Must have experience developing and implementing integrated security services management processes, such as assessing and auditing network penetration testing, anti-virus planning assistance, risk analysis, and incident response.
Must have experience providing information assurance support for application development that includes system security certifications and project evaluations for firewalls that encompass system development, design, and implementation.
Must be comfortable working on multiple systems and components simultaneously in various configurations.
Must be able to effectively plan & prioritize tasking and communicate clearly regarding technical options and trade-offs.
Must be capable of performing high quality work both independently and with a team in a fast-moving environment.

Bachelor's degree in Computer Science, Information Assurance, Information Security System Engineering, or a related discipline.
DoD 8570 compliance with IASAE Level 2 or 3.
Information Systems Security Engineering Professional (ISSEP) Certification and/or Computer Information Systems Security Professional (CISSP) Certification.
Experience with scripting languages.
Candidates with certifications in the following areas are strongly preferred:
- GIAC Web Applications Penetration Tester (GWAPT)
- GIAC Penetration Tester (GPEN)
- Certified Ethical Hacker (CEH)
- Certified Information Security Manager (CISM)
- Certified Web Application Defender (GWEB)
- Certified Information System Security Professional (CISSP)