IPKeys Technologies

Cyber Security Auditor

US-VA-Stafford
Job ID
2017-1611
# of Openings
1
Education
  • Completed and passed test for DISA SRR training in at least one of the following areas: ACAS scan analysis, Operating Systems (Windows, Unix), Boundary defense (network policy, router, firewall), Internal defense (L2 switch, L3 switch), DNS (policy, BIND/Windows), HBSS
  • One of the following certifications: Licensed Penetration Tester (LPT), Certified Expert Penetration Tester (CEPT), Certified Ethical Hacker (CEH), Global Information Assurance Certification Penetration Tester (GPEN), Knowledge of STIG Viewer Tool, Knowledge of VOIP, VTC
  • IAM level III and IAT level II certifications
Security
  • Qualified candidates must maintain an active DoD Secret clearance
Experience
  • Five years of relevant IT experience
  • Three years IA experience

Overview

IPKeys Technologies is seeking a Cyber Security Auditor to provide support a Defense/DoD program located in Stafford, VA.

 

Responsibilities

  • Under general supervision, performs complex security analysis of classified and unclassified applications, systems and enclaves for compliance with security requirements.
  • Performs Command Cyber Readiness Inspections (CCRI) Preparations, Site Assistance Visits (SAV’s)  and Cyber Security Vulnerability Assessments (CVAs). Uses a variety of security techniques, technologies, and tools to evaluate security posture in highly complex computer systems and networks.
  • Ability to perform vulnerability and risk analysis, and participate in a variety of computer security penetration studies. Analyzes and defines security requirements for computer and networking systems, to include mainframes, workstations, and personal computers.
  • Works with senior auditor to recommend solutions to meet security requirements.
  • Gathers and organizes technical information about an organization's mission goals and needs, and assists in making recommendations to improve existing security posture.
  • Demonstrated experience and ability to provide enterprise-wide technical analysis and direction for problem definition, analysis and remediation for systems and enclaves.
  • Ability to provide workable recommendations and advice to client management on system improvements, optimization and maintenance in the following areas: Information Systems Architecture, Automation, Telecommunications, Networking, Communication Protocols, Application Software, Electronic Email, VOIP and VTC.
  • Competent to work on most phases of information systems auditing.

Qualifications

  • Proven proficiency performing CCRI/CVA/ penetration testing on networks, databases, computer applications and IT frameworks
  • Strong analytical and problem solving skills for resolving security issues
  • Strong skills implementing and configuring networks and network components
  • Understanding of DOD Vulnerability Management System
  • DISA CCRI Reviewer experience highly desirable
  • Knowledge and understanding of DOD security regulations, DISA STIGS
  • Understanding of SCAP
  • Understanding of: USCYBERCOM CTO Compliance Program, Wireless vulnerability assessment/penetration testing, Web Services (IIS, Apache, Proxy), Database (SQL Server, Oracle), Email Services (Exchange), Vulnerability Scans (SCCM), Knowledge of Phishing exercises, Physical Security

Experience

  • Five years of relevant IT experience
  • Three years IA experience

Education

  • Completed and passed test for DISA SRR training in at least one of the following areas: ACAS scan analysis, Operating Systems (Windows, Unix), Boundary defense (network policy, router, firewall), Internal defense (L2 switch, L3 switch), DNS (policy, BIND/Windows), HBSS
  • One of the following certifications: Licensed Penetration Tester (LPT), Certified Expert Penetration Tester (CEPT), Certified Ethical Hacker (CEH), Global Information Assurance Certification Penetration Tester (GPEN), Knowledge of STIG Viewer Tool, Knowledge of VOIP, VTC
  • IAM level III and IAT level II certifications

Security

  • Qualified candidates must maintain an active DoD Secret clearance

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed