Certification, Accreditation and Test (CAT) Team
Location: McLean Virginia
Description: ACET is hiring Certification, Accreditation and Test (CAT) Team right now, this vacancy will be placed in Virginia. Further informations about this vacancy opportunity kindly see the descriptions. OVERVIEW
The Intelligence Community Information Assurance (ICIA) CAT Team â€" Test Engineer (CAT-TE) will work as part of the Certification, Accreditation, and Test Tea! m. The ICIA CAT-TE must have a broad systems security engineering (SSE) background, as well as demonstrated experience in information assurance and/or information security. This background and experience MUST be at the technical level. The successful candidate must also have documented hands-on experience with US Government Information Assurance (IA) policies and procedures. This background and experience MUST be in DCID 6/3 (with profile knowledge in NIST 800-53 and Committee on National Security Systems Instruction (CNSSI) 1253 recommended), and one or more of the following focus areas: DITSCAP/DIACAP, and/or NIACAP. Experience in or knowledge of Blue and Red Team Operations is desired. The CAT-TE must be self-motivated, flexible, and willing to take the initiative on tasks supporting IC Certification and Accreditation efforts.
RESPONSIBLITIES
The primary responsibilities for the ICIA CAT Team â€" Test Engineer include:
Perform in-depth technica! l analysis and review of information systems compliance with U! S Government security requirements
Perform in-depth technical analysis and review of systems built upon Linux, Solaris, Windows and other operating systems
Perform full scope security assessments of information systems using commonly available tools, such as those found on the Backtrack Linux Live CD
Provide systems security engineering “advice & assistance†to programs throughout the System Development Lifecycle (SDLC)
Coordinating activities with other ODNI CIO components/teams
Briefing senior government officials regarding the results of formal requirements validation testing
Reporting on status and completion of assigned actions
Performing other related duties as assigned
QUALIFICATIONS
Required:
Experience within the IC as a technical engineer
Bachelor’s degree in a technical/engineering field (may be waived with significant technical experience, or a combination ! of adequate technical experience and relevant training)
Background and experience working with DCID 6/3 (profile knowledge of NIST 800-53 and CNSSI 1253 recommended)
MUST possess knowledge/experience base in Unix or Unix-like operating systems
MUST possess a demonstrated willingness to think “outside the box†in relation to technology
Must be knowledgeable of a very wide variety of technologies, as an example; (note: NOT ALL in the list are “requiredâ€, however, ideal candidates possess some combination of the following knowledge/experience base)
Cross-Domain or Multi-Level Security Solutions
Trusted Solaris and/or Trusted Extensions
Linux and SELinux
Windows, Cisco, Web Technology, Firewalls, Intrusion Detection Systems, Encryption, Network Security, PKI , Network and Systems Engineering, Oracle
Experience performing technical evaluations of information systems, to include comprehensive! vulnerability assessments and/or penetration testing
Ability ! to either read, evaluate, or program in at least one scripting or application programming language
Experience performing web application development or web application assessments
Exposure to and/or experience with Service Oriented Architectures & Cloud Computing
Willingness to travel locally (within the Washington DC Metropolitan area), as well as throughout CONUS
Possess outstanding verbal and written communication skills, including the ability to write at the executive level
An Industrial Security Staff Approval/Top Secret (ISSA/TS) clearance with access to Sensitive Compartmented Information (SCI) based on a full field background investigation and a counter-intelligence polygraph test
Desired:
Experience in or knowledge of Blue and Red Team Operations
Experience with manual and automated exploit techniques and tools
Experience with reverse engineering and disassemblers
Ability to! work comfortably in a multi-vendor, high-energy environment
Current Information System Security Profession (CISSP) or similar certifications is desired.
One or more of the following technical certifications is highly desired:
SANS GCIH, GCFW, GCIA, GCUX, GSOC, GCWN
RHCT, RHCE (RedHat)
SCSA, SCNA, SCSEA (Solaris)
MCSE Security
CCNA, CCNP, CCSP
- .
If you were eligible to this vacancy, please email us your resume, with salary requirements and a resume to ACET.
If you interested on this vacancy just click on the Apply button, you will be redirected to the official website
This vacancy starts available on: Thu, 25 Apr 2013 00:53:29 GMT