Senior Cybersecurity Vulnerability Assessment Specialist (CUSA)

at General Dynamics Information Technology
Published August 15, 2019
Location Washington, DC
Category Default  
Job Type Full-time  

Description

GDIT has an opportunity for a dynamic and collaborative Cyber Security Assessment and Compliance Specialist to join our team. This Specialist will be a member of our team supporting the Administrative Office of the U.S. Courts (the AO) Information Technology Security Office (ITSO). As a team member, the Cyber Security Assessment and Compliance Specialist will work collaboratively with federal and contractor staff to ensure the security assessment needs of national program offices is met in a timely, compelling, factually accurate, and comprehensive manner.

The Cyber Security Assessment and Compliance Specialist will be an advocate for IT security and engage with business owners in a way that will promote greater awareness and understanding of security risk management.

Responsibilities

The candidate will travel to individual courts to perform documentation reviews, interviews with stakeholders, physical control (on-site) reviews, and participate in documentation development/reporting. The candidate will conduct technical security assessments of judiciary assets using Nessus and other tools, to gather and aggregate assessment data for trends analysis, develop and maintain documentation to support the assessment process, and actively work to ensure the assessment process matures in line with industry and Judiciary requirements and expectations.

Qualifications

Education and Experience

  • Bachelor’s Degree in Computer Science or related field. 
  • least 6 years of experience in cybersecurity management, operational, and/or technical activities.
  • At least 4 years of experience in National Institute of Standards (NIST) cybersecurity standards and best practices.
  • least 4 years conducting hands on IT security assessments using Nessus in a federal government environment.

Knowledge 

  • Perform documentation reviews, interviews with stakeholders, physical control (on-site) review, and process development/participation.
  • Capable of performing in-depth, hands on security testing of Judiciary IT assets, gathering and aggregating testing data for trend analysis, developing and maintaining documentation to support the testing process, and actively working to ensure the testing process matures in-line with industry and Judiciary requirements and expectations.
  • Attention to detail.
  • of potential vulnerabilities and threats to existing web, applications, database, and operating system technologies.
  • Perform security testing activities that include vulnerability discovery and risk analysis, that includes recommendations for risk mitigation.
  • NIST 800 series guidance for network security.
  • ave CSAM (Cyber Security Assessment Management) tool experience and knowledge of how to measure compliance within a security system and program.

Skills/Abilities 

  • Excellent verbal and written communication skills
  • Excellent organizational and analytical skills
  • Ability to express thoughts clearly
  • Ability to collaborate in a team environment
  • to detail
  • Willing to travel at least once a month outside of the DC Metro area

Certifications

Possess one industry-recognized cybersecurity certification, such as: Certified Information Systems Security Professional (CISSP), Certification Information System Auditor (CISA), GIAC Certified Incident Handler (GCIH), Offensive Security Certified Professional (OSCP), GIAC Penetration Tester (GPEN), GIAC Web Application Penetration Tester (GWAPT), Offensive Security Web Expert (OSWE), Certified Ethical Hacker (CEH), Certification and Authorization Professional (CAP) or similar security-related certification.

For more than 50 years, General Dynamics Information Technology has served as a trusted provider of information technology, systems engineering, training, and professional services to customers across federal, state, and local governments, and in the commercial sector. Over 40,000 GDIT professionals deliver enterprise solutions, manage mission-critical IT programs, and provide mission support services worldwide. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.