Senior Security Evaluator

SGSColumbia, MD
107d$73,500 - $98,000
Match Resume

About The Position

A senior engineer must be well versed in, but not limited to, operating systems, data structures, design/analysis of algorithms, database systems, programming languages, computer systems architectures, and networking and will be responsible to work independently as well as lead teams and mentor junior engineers to conduct security compliance analysis or testing of operational, management, and technical controls for IT products, including COTS and GOTS, networks, and systems. This may include: Develop test plans and procedures using applicable security control catalog, including DCID 6/3, DoD 8500, or NIST SP 800-53; Perform security testing and vulnerability analysis of product or system designs against applicable security criteria using common tools such as Nessus, NMAP, and WireShark; Perform other evaluation activities, including but not limited to documentation and source code analysis, where applicable; Develop security testing and other evaluation reports to detail the findings noted during testing and other evaluation activities; Develop mitigation strategies to address vulnerabilities uncovered during security testing; facilitate and coordinate development of or updates to security documentation to meet certification and authorization requirements as required; Work effectively and efficiently either alone and with other team members to accomplish the tasks summarized above; and, Work with the organization managers to help identify and implement changes that could improve the overall effectiveness of the organization.

Requirements

  • Bachelor’s degree in science or computer degree preferred.
  • 5+ years of experience in relevant areas such as cryptographic algorithms, key management techniques, and security policy requirements.
  • Familiarity with operating systems including Microsoft, UNIX, LINUX, ARM, and Apple.
  • Experience with security testing tools like Nessus, NMAP, and WireShark.
  • Knowledge of cryptographic protocols including SSL, TLS, IKE, SSH, and OTAR.
  • Understanding of tamper detection and response techniques.

Nice To Haves

  • Experience with evaluated operating systems under the Common Criteria.
  • Familiarity with environmental failure protection/testing.
  • Knowledge of hardware implementations and tamper-evident techniques.

Responsibilities

  • Develop test plans and procedures using applicable security control catalog.
  • Perform security testing and vulnerability analysis of product or system designs.
  • Conduct documentation and source code analysis.
  • Develop security testing and evaluation reports.
  • Create mitigation strategies for vulnerabilities uncovered during testing.
  • Facilitate updates to security documentation for certification and authorization.
  • Work independently and collaboratively with team members.
  • Identify and implement changes to improve organizational effectiveness.

Benefits

  • Competitive salary.
  • Comprehensive health, dental, and vision insurance for full time employees.
  • Retirement savings plan.
  • Continuous professional development and training opportunities.
  • A dynamic, collaborative work environment.
  • Access to cutting-edge cryptographic technology and tools.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Senior

Education Level

Bachelor's degree

Number of Employees

5,001-10,000 employees

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service