Specialist, Test & Evaluation III

DirectViz Solutions, LLC•Virginia Beach, VA

2d•Onsite

About The Position

We are seeking a highly skilled Specialist, Test & Evaluation 3 to support cybersecurity testing and evaluation activities within a secure DoD environment. The ideal candidate will possess hands-on experience conducting cybersecurity assessments, vulnerability testing, and security validation activities in support of enterprise and mission-critical systems. This role requires expertise in STIG compliance, vulnerability assessment tools, penetration testing methodologies, and network traffic analysis. The successful candidate will work closely with cybersecurity, engineering, and operations teams to develop and execute test plans, identify vulnerabilities, and ensure systems meet DoD cybersecurity requirements and standards.

Requirements

Minimum of five (5) years of experience in Cybersecurity Test & Evaluation.
Demonstrated experience performing STIG assessments, including the use of SCAP benchmarks.
Demonstrated experience conducting vulnerability assessments using ACAS.
Demonstrated experience developing cybersecurity test plans and related documentation.
Demonstrated experience utilizing packet analyzer tools such as Wireshark and tcpdump.
Demonstrated experience utilizing penetration testing tools and methodologies.
Strong understanding of cybersecurity principles, network security concepts, and vulnerability management practices.
Excellent analytical, troubleshooting, and documentation skills.
Minimum certification as DoDD 8140.01 541 Intermediate Level (or equivalent as required by the applicable Technical Instruction).
All personnel performing as Privileged Users must maintain a final adjudicated Tier 5 security investigation with an IT Level I designation in JPAS and/or DISS.
Active DoD clearance preferred or ability to obtain and maintain required clearance.

Nice To Haves

Experience supporting DoD or Navy cybersecurity environments.
Familiarity with RMF, STIG compliance processes, and vulnerability remediation activities.
Experience working in classified or highly secure operational environments.
Knowledge of cybersecurity testing frameworks and best practices.

Responsibilities

Conduct Cybersecurity Test & Evaluation (T&E) activities for systems, applications, and network environments.
Perform Security Technical Implementation Guide (STIG) assessments utilizing SCAP benchmarks and other automated compliance tools.
Conduct vulnerability assessments using the Assured Compliance Assessment Solution (ACAS) tool suite.
Develop, maintain, and execute cybersecurity test plans, procedures, and supporting documentation.
Analyze system and network traffic utilizing packet analysis tools such as Wireshark and tcpdump.
Utilize penetration testing tools to identify security weaknesses and validate system security posture.
Document test findings, vulnerabilities, and remediation recommendations in formal reports.
Support security validation efforts in accordance with DoD cybersecurity policies, standards, and frameworks.
Collaborate with system administrators, engineers, and cybersecurity personnel to remediate identified vulnerabilities.
Assist with continuous monitoring and cybersecurity compliance initiatives.