Senet Services

IT SECURITY ENGINEER

Job Description: SeNet islooking for experienced IT security engineers to work on multiple federal IT project sconsulting with security officers, systems administrators and federal staff to assist in the assessments of security vulnerabilities as part of Certification and Accreditation (C&A) process. You should have a strong knowledge network infrastracture, information security principles, implementation of security controls, vulnerability assessment tools, etc. You should be able to document fundings and present them to both technical and non-technical  government employees. Must be able to interpret and apply federal regulations including NIST Special publications (NIST SP 800-53A, FIPS 199, FISMA, etc.). The right candidate will have a minimum of 2-5 years of experienceand will have the specific skills outlined below.

This is an excellent, long term opportunity with lots of potential. You will be evaluating and auditing IT systems - working independently on multiple tasks so the abilities to work under pressure, meet deadlines and exhibit professional demeanor are essential. Security certifications (CISSP, CCSP, CAP, GIAC, CISA, etc.) are a definite plus.

Salary, benefits and growth potential are all outstanding.

Duties:

  • Prepare Security Test and Evaluation (ST&E) plans and reports for various Federal agencies
  • Perform security documentation reviews
  • Evaluate technical documentation and identify gaps
  • Assist Security Analysts in the development of risk assessments, security plans and risk mitigation plans (POA&Ms)
  • Research, organize, analyze, and summarize data
  • Prepare written reports and summaries of research literature
  • Assist in the preparation, presentation, delivery, and follow-up briefings.

Skills:

  • Knowledge of Federal, NSA, NIST (NIST SP-800 Series 800-26, 800-18, 800-53, 800-53A, etc…), and DoD (DITSCAP) security policy and guidance, security advisories and latest industry standard security tools and measures

  • In-depth knowledge of vulnerability scanning tools (i.e. Nmap, Nessus, MBSA, Nikto)

  • Database security experience with MSSQL and Oracle.  Knowledge of AppDetective, NGSSQuirrel

  • Experience performing web application assessments using these tools (Paros, WebScarab, AppScan, Nikto, WebInspect, manual techniques)

  • Ability to research and evaluate security tools

  • Experience with design and imp[lementation of technical security controls  (firewalls, IDS/IPS, patch management, etc.)

  • Basic knowledge of security tools and techniques

  • Excellent interpersonal and communication skill

  • Self-motivated and independent thinker for solving problem

  • Flexible, energetic and co-operative

  • Able to interact effectively with more experienced technical staff and management

  • Able to interact with senior Government officials.

  • Strong writing and communication skills

  • Programming experience is a plus.

Qualifications:

  • Bachelor’s Degree in Computer Sciences or related field.  Three years of relevant experience may be substituted for this requirement

  • A minimum of three years of network security experience

  • Experience working on Government IT security programs

  • Proficiency with Microsoft Office Tools (Project, Excel, Word, PowerPoint, Outlook).

  • Excellent oral and written communications skills

  • Professional attitude and good judgment

  • Detail oriented

  • CAP or CISSP is a plus

  • Must be able to obtain a minimum of Public Trust (SF-85P) security clearance.