Vulnerability Assessment Engineer
Knowledge Consulting Group - Washington, DC
This job is no longer active. View similar jobsJob Summary
- Company
- Knowledge Consulting ... Knowledge Consulting Group
- Location
Washington, D.C., US
- Job Type
- Regular
- Job Classification
- Full Time
- Experience
- not provided
- Education
- not provided
- Company Ref #
- 10211021
- AJE Ref #
- 554295846
- [+] More
Job Description
Applicants selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. Must be clearable to the Top Secret level.
Any candidate accepted for this position will be responsible for carrying out vulnerability assessments and penetration tests on a wide range of information technologies.
Additional responsibilities include:
Automated testing development
Threat landscape research and Intel gathering
Generate executive level reports and presentations
Co-develop Vulnerability dashboard for executive review
Requirements:
Successful candidates must possess a thorough working knowledge of common commercial and/or open source vulnerability assessment tools and techniques used for evaluating operating systems, networking devices, databases and web applications.
Specifically, candidates should be proficient with the following tool sets: Incircle, FoundStone, WebInspect, DBProtect/AppDetective
Successful candidates should be familiar with certification and accreditation processes in general; experience with the NIST 800 series of documents would be advantageous.
Successful candidates must be able to quickly master new technology/software for the purposes of evaluating or subverting the security functionality of the technology/software.
A thorough working knowledge of evaluating major applications and general support systems based on 800-53A using both commercial and open source assessment technologies. Experience with Web Applications and services and databases is a significant plus.
Successful candidates should have a minimum of 3 years of experience in vulnerability assessment or a technical field within information security, as well as a degree in a related field. If no degree, must possess 5 years of related experience. Professional certifications and progress toward a college degree will be taken into consideration.
May need to conduct some security testing during off hours. Knowledge of Configuration Managemetn (CME) processes helpful.
