Security Test and Evaluation Engineer

Job Category:Information Security Engineer Principal Leader Primary Location:USA-DC: DISTRICT OF COLUMBIA-WASHINGTONSchedule:Full-time Job Type:Regular Employee Status:RegularJob Posting: 04/17/2008Description: Security Test and Evaluation Engineer Top Secret Clearance REQUIRED!Essential Job Functions Lead/participate in Security Certification and Accreditation Assessments, Security Assessments, and Penetration Testing on agency systems in accordance with NIST and DCID 6/3 guidance. Activities include; system documentation review, validation of processes and procedures, vulnerability assessments, and penetration testing. You will also be required to write test and penetration plans as well as document your results both for the technical and non-technical audience. Additional activities include; analyze and evaluate the suitability of proposed security architectures for new IT systems and networks. Work with certification and accreditation authorities to define appropriate system and network security assurance requirements. Identifies security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives. Provides technical support in the development, testing and operation of firewalls, intrusion detection systems, enterprise anti-virus and software deployment tools. Conducts complex security architecture analysis to evaluate and mitigate issues. Develops policies and procedures for securing the system infrastructure and applications. Develops complex technical and programmatic assessments, evaluates engineering and integration initiatives and provides complex technical support to assess security policies, standards and guidelines. Develops, implements, enforces and communicates security policies and/or plans for data, software applications, hardware and telecommunications. Performs highly complex product evaluations, recommends and implements products/services for network security. Validates and tests complex security architecture and design solutions to produce detailed engineering specifications with recommended vendor technologies. Identifies and oversees the installation, modification or replacement of hardware or software components and any configuration change(s) that affects security. Provides complex technical oversight and enforcement of security directives, orders, standards, plans and procedures at server sites. Develops manuals and ensures system support personnel receive/maintain security awareness and training. Assesses the impact on the business unit/customer caused by theft, destruction, alteration or denial of access to information and reports to senior management. Provides leadership and work guidance to less experienced personnel. Other Qualifications Security certifications (e.g., CISSP, GIAC) and technical certifications (e.g MCSE, CNE, CCDP) as well as IBM mainframe operating systems and applications experience are a plus. Other desirable background includes experience with Sun technologies, entry level to high-end servers in cross-domain environment, experience developing complex web applications with ASP/.Net, Flash, Ajax, strong, current networking skills (routers, firewalls, VLANs). Strong communication skills Strong analytical and problem solving skills to troubleshoot and resolve network/operating system security issues Ability to perform and interpret vulnerability assessments Ability to administer the operations of a security infrastructure Ability to balance and prioritize work Basic Qualifications To QUALIFY for this position, you must hold an ACTIVETop Secret security clearance, with a current background investigation and be eligible for Sensitive Compartmented Access (SCI). Bachelor's degree in computer science or related field preferred Must hold Bachelors degree and a minimum of 9 years experience, or equivalent combination of education and experience, in network, host, data and/or application security in multiple operating system environments to include first-hand expertise as a principal security certification or accreditation analyst. Demonstratedexperience with commercial and open source discovery, vulnerability assessment, and penetration testing tools i.e., nmap, Nessus, WebInspect, Coreimpact, Kismet, run-live Linux distros, Wireshark, SRR, VMware, and Windows Scripting and others. Strong ability to analyze raw data and identify vulnerabilities not flagged by tools. Proven experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic mail and access-lists Demonstrated experience working with internet, web, application and network security techniques Demonstrated experience working with relevant operating system security (Windows, Solaris, Linux, etc.) Demonstrated experience working with leading firewall, network scanning and intrusion detection products and authentication technologies Demonstrated experience working with federal regulations related to information security (FISMA, Computer security Act, etc.) Proven experience working with NIST Special Publications and C & A process methodologyRemote Work Location Authorized:No Relocation Assistance:Not AvailableClearance Level:Top Secret Create Success