This position is responsible for developing plans and performing testing to evaluate compliance with all applicable DoD/DHS and industry security requirements, standards, and best practices. Common T&E components include but not limited to:

• Utilizing and implementing DISA Security Technical Implementation Guides (STIG)/Security Review Guides (SRG)
• Performing automated scans and analysis using the Assured Compliance Assessment Solution (ACAS)/Nessus or current DoD/DHS approved tools
• Assessing security controls using security evaluation and reporting tools.

The position also performs activities required to perform a security analysis of a system or application in its operational environment to ensure compliance with all DoD/DHS cybersecurity requirements. The analysis must meet all A&A requirements and must ensure that all system security vulnerabilities are identified. This position also includes the following support:

• Providing vulnerability remediation guidance
• Penetration testing support
• Static/dynamic code analysis
• Web- Application Security testing utilizing government approved toolsets
• The generation of System Security Test and Evaluation Reports.
• The implementation of cybersecurity vulnerability alerts, bulletins, and technical advisories for Transport components per Government (e.g., DoD, DON, National Security Agency (NSA), Defense Information Systems Agency (DISA)) directives.

Minimum Qualifications

• Associates or higher degree in computer science, information technology, or a related discipline
• DoD 8570.01-M, Cyber Security Assurance Workforce Improvement Program IAT Level 2 certification
• Experience with NIST or other systems engineering best practices desired
• Experience applying DISA STIGs and SRGs
• Experience implementing cybersecurity vulnerability alerts, bulletins, and technical advisories
• Experience performing automated scans using ACAS, Nessus, or other vulnerability identification tools.
• Two years of job-related experience

Desired Qualifications

• Penetration testing experience a plus
• Experience conducting web-application security testing

Position Contingent Contract Award

EEO Statement:

We are an Equal Opportunity/Affirmative Action Employer. We consider applicants without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, or membership in any other group protected by federal, state, or local law.