Senior ISSE/Penetration Tester

About The Position

Requirements

• Must possess a TS/SCI clearance appropriate polygraph
• At least 10 years of relevant experience with both ISSE and Penetration Testing
• Extensive, demonstrated knowledge of and experience with common security tools, such as Nessus, NMAP and Wireshark
• Extensive, demonstrated knowledge of and experience with hardware/software security implementation, communication protocol, encryption techniques/tools, and web services
• In-depth understanding and extensive experience with security practices and policies
• Hands-on vulnerability testing using Tenable Nessus scanning products and/or nmap (Network Mapper)
• Experience with Defense in Depth Principals/technology, including access control, authorization, identification and authentication, public key infrastructure, network and enterprise security architecture
• Experience applying risk assessment methodology to system development
• Experience applying Risk Management Framework
• Experience formulating and assessing IT security policy
• Experience with secure configurations of commonly used desktop and server operating systems
• Experience with penetration testing tools
• Experience developing and implementing integrated security services management processes
• Strong verbal and written communications skills
• Committed to adopting and adhering to best practices

Nice To Haves

• Bachelor's degree or master's degree in Computer Science, Information Assurance, Information Security System Engineering, or a related discipline
• DoD 8570 compliance with IASAE Level 2 or 3
• Information Systems Security Engineering Professional (ISSEP) Certification and/or Computer Information Systems Security Professional (CISSP) Certification
• Experience with scripting languages
• GIAC Web Applications Penetration Tester (GWAPT) Certification
• GIAC Penetration Tester (GPEN) Certification
• Certified Ethical Hacker (CEH) Certification
• Certified Information Security Manager (CISM) Certification
• Certified Web Application Defender (GWEB) Certification
• Certified Information System Security Professional (CISSP) Certification

Responsibilities

• Develop and lead Security Testing Events by conducting penetration testing
• Publish penetration testing results
• Research penetration testing tools to enhance overall testing capabilities
• Collaborate with other engineers and technical experts in providing improvements to operational, test, integration, and development systems
• Assess and audit network penetration testing
• Provide anti-virus planning assistance
• Conduct risk analysis
• Provide incident response support
• Provide information assurance support for application development
• Perform system security certifications
• Conduct project evaluations for firewalls that encompass system development, design, and implementation
• Work on multiple systems and components simultaneously in various configurations
• Effectively plan and prioritize tasking
• Communicate clearly regarding technical options and trade-offs
• Perform high quality work both independently and with a team in a fast-moving environment

Benefits

• health insurance
• dental insurance
• vision insurance
• health savings accounts
• 401(k) savings plan
• disability coverage
• life and accident insurance
• employee assistance program
• legal plan
• discounts on home insurance
• discounts on auto insurance
• discounts on pet insurance
• paid time off
• paid holidays
• paid parental leave
• paid military leave
• paid bereavement leave
• applicable federal and state sick leave
• company recognition program