This is an exciting opportunity to be responsible for major cyber upgrade, with exposure and interaction between key personnel in the region. This person has the ability to provide management, technology consulting, and engineering services to leading Fortune 500 corporations and governments globally.
Our firm has been at the forefront of strategy and technology for more than 100 years. Today, we provide management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. We partner with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.
Assist with the execution of Cybersecurity testing events by independently executing configuration reviews, vulnerability assessments, documentation review, and interviews. Leverage experience with SCAP–based tools, benchmarks, CIS tools, and manual review techniques and apply expertise with Windows, UNIX, and Linux to provide efficient and accurate assessments of target systems. Work with system administrators to gain access to target systems and discuss initial assessment results. Use automated network vulnerability scanners to assess target systems and perform initial analysis to identify false positives or detect issues requiring further clarification. Leverage expertise in system administration for target operating systems to provide technical guidance to administrators, facilitate the testing process, provide administrators with on–the–job training in testing processes, and make recommendations for the resolution of critical deficiencies. Work with the test lead after each test event to consolidate and analyze results using automated tools and Microsoft Office products.
-2+ years of experience with Windows, UNIX, Linux, or Solaris system administration
-2+ years of small business consulting experience
-1+ years of experience with automated security configuration assessment tools using SCAP to automate configuration compliance reviews for DoD SCAP Compliance Checker or CIS Auditor
-1+ years of experience with configuring, planning, and executing large–scale vulnerability assessments using automated vulnerability assessment tools, including OpenVAS, Nessus, Retina, or Qualys
-CompTIA Security+ CE, GSEC, CISA, CASP, or CISSP andMicrosoft, UNIX, Linux, or Solaris Certification
-Experience with host–based security tools, including anti–virus, host–based IDS, data loss prevention, or disk encryption tools
-Experience with the administration or security assessment of network devices, including Cisco, Juniper, or Alcatel
-Experience with Microsoft Excel, including the use of formulas for analysis and consolidation of data
-Experience with XML and manipulating data sets for analysis and data manipulation.
-Knowledge of basic computer networking concepts