Cyber Security SME IV&V

20 Nov 2024

Vacancy expired!

  • "Top Secret Clearance" Required
  • Certifications required: CISSP or EHC or CPT ( Certified Penetration Testing) or any combination of CISM, ITIL, CAP, Security +, CCNA, GIAC and SANs Certification (GWAPT) and Continuous Monitoring.
  • 10+ years of experience as a Cyber Security Engineer/Analyst
  • Shall develop and maintain standard operating procedures that support detailed IV&V testing that is repeatable and measurable. Develop security test plans and reports in support of all IV&V test events.
  • Shall perform and or develop detailed technical reports in the following task areas: System scan report, Vulnerability identification reports, Vulnerability remediation status report, Vulnerability management report, Security Assessment Report, Scan Analysis Report and Risk and vulnerability assessments.
  • Shall ensure dynamic testing is conducted against software applications.
  • Understanding and knowledge of OWASP tools and methodologies and security attack vectors
  • Validate scan results, research mitigation methods and retest findings.
  • Experience with Nessus, Fortify, Tenable, Burp, Kali Linux, DB Protect or equivalent technologies
  • Vulnerability Risk Management tracking tool experience is a plus.
  • Ability to develop custom scripts using common scripting languages (e.g., Python, PowerShell, VBA)
  • Knowledge of FedRAMP, FISMA compliance methodologies

  • ID: #23052662
  • State: District of Columbia Washington 00000 Washington USA
  • City: Washington
  • Salary: Depends on Experience
  • Job type: Permanent
  • Showed: 2021-11-20
  • Deadline: 2022-01-18
  • Category: Et cetera