Job Overview

Company:
Triad Technology Group
Title:
Security Assurance Analyst
Skills:
aTAC , ZAP, ZED, BURP. security analyst, security engineer, vulnerability scanners, Security Testing, Web Application Testing
Date Posted:
7-30-2015
Location:
Portland, OR
Area Code:
503
Employ. Type:
CON_CORP CON_IND CON_W2
Pay Rate:
DOE
Job Length:
12 months
Position ID:
008
Dice ID:
TRIADTOR
Travel Required:
none
Telecommute:
no

Contact Information

Contact:
Jeff Morris
Address:
12520 SW 68th Ave
 
Suite B
 
Tigard, OR 97223
Phone:
(503) 293-9547
Fax:
503293.9546
Save this job
Click Here to Apply
Printer-Friendly

Job Description

  • Security Assurance Analyst
  • Portland, OR

**All resumes will remain strictly confidential.  Candidates must be LOCAL to the Pacific Northwest and available for onsite interviews

Job Overview:

The Security Assurance team is tasked with enterprise-wide security assessments to baseline organizational assets, critical information systems, emerging technologies and remediation plans. The candidate will analyze, develop and lead assessment efforts to provide management with a complete view of known vulnerabilities and associated risks. Scope of assessment includes: The analyst will utilize in-depth knowledge and experience of NIST, DIACAP and Risk Management Frameworks RMF 800-37 to complete detailed assessment including POA&M and Security Assessment Report SAR deliverables. The information Security Assurance analyst will perform Information Security Testing to baseline organizational security posture and l develop remediation plans to reduce risk to the organization. The Analyst will provide expert analysis and guidance of remediation efforts and recommend strategies to address deficiencies and implement process to administer and streamline this project will include the current assessment criteria, Organizational security policy and standard requirements, plan testing objectives and complete assessment plan

Implementation and Security Assessment of the following frameworks and standards, NIST SP 800-37 C&A and RM, 800-39, 800-100 standards, DIACAP Certification and Accreditation, Policies and Procedures Vulnerability and Risk Assessment process and procedures, Experience with penetration testing, network mapping and vulnerability management tools Documentation and presentation material development.

 

Job Requirements:

  • Seeking a candidate with experience with Security Testing and Evaluation 3-5 years
  • Must have the ability to do Web Application Testing, Test a system based on a set of controls, and document the outcome of the control
  • 3-5 years running ATAC , ZAP, ZED, BURP proxies
  • Defining the likelihood of a scenario / vulnerability
  • CEH Certification would be a HUGE +++++
  • Must have familiarity with vulnerability scanners (IP360).....

 

Save this job
Click Here to Apply