KEYW Corporation

  • Computer Security Scientist

    Job Locations 1 month ago(4/18/2018 12:49 PM)
    ID
    2018-17817
    # of Openings
    1
    Posted Date
    Information Technology
    Default: Location : Location
    US-AZ-Sierra Vista
    Default: Location : Location
    US-AZ-Sierra Vista
  • Overview

    Description 

    Join our DCGS-A software security team responsible for analyzing security threats to software and systems utilized in the DoD intelligence community, and providing resolutions for them. Regulations and best business practices will be continuously researched by the Security Engineer, who will assess their applicability, and guide and monitor implementation.

    Responsibilities

    Responsibilities

    As an IAVA security engineer, you will work individually and as part of a team to comprehensively monitor known and potential security threats and assess appropriate resolution as needed. Specifically, you will:

     

    • Collaborate with internal and external stakeholders to plan the implementation of security threat resolution for issues that come in via external sources (e.g. IAVA) as well as internal testing, scans, and analysis
    • Work with security solution developers and independent testers to ensure that authored solutions correctly and fully satisfy the mitigation criteria for reported vulnerabilities
    • Review applicable regulations governing software development efforts and environment, present applicable findings to multiple stakeholder levels in the software development lifecycle process, and monitor and assist with compliance
    • Operate manual and automated security vulnerability scanning processes, record and analyze the findings, then report the findings to stakeholders throughout the organization
    • Use subject matter expertise of the assigned systems to proactively seek vulnerabilities prior to their materialization from external sources
    • Execute formal and informal tests with objectivity and strict attention to detail
    • Monitor available patches for software and operating systems, and recommend courses of action based on formal policy and risk assessment
    • Install and configure assigned systems, including operating systems, patches, applications and networking connectivity
    • Design and execute custom manual and automated tests for known and potential security vulnerabilities, analyze and present the results, and recommend courses of action to mitigate any adverse findings
    • Comply with ISD PPSS Lifecycle requirements for software baseline handoffs to configuration management, integration and independent testing

    Qualifications

    Minimum Qualifications

    • A bachelor's degree specifically in Computer Science, Electronics Engineering or other Engineering or Technical discipline and 4 years of professional work experience in the field of information security
    • At least 2 years’ experience in RedHat or VMWare; and MS Windows administration, including activities such as operating system installation, configuration and patching, and application installation and configuration
    • Experience in security hardening of operating systems and networked communications
    • Experience using industry standard security scanning tools
    • Use of industry standard tools for creating professional documentation (e.g., MS Word, Excel)
    • Understanding of networking technologies and protocols
    • Must be self-starter, willing to take complete ownership of complex technical problems
    • Should be able to think clearly and articulate with appropriate level of abstraction his/her thought process on complex technological issues
    • DoD 8570 IAT Level 2 certified--baseline security certification (e.g. CompTIA Security+ CE) and technical computing environment training or certification (e.g. Server+) prior to start of work
    • TS/SCI Clearance Required.

    Preferred Qualifications

    • At least 2 years’ experience with CHARCS or another DCGS-A family system
    • At least 2 years software development experience in shell scripting languages (e.g. Bash, csh, ksh, PowerShell)
    • Experience developing utilities in a MS Windows, Linux and/or UNIX environment
    • Experience developing automated testing mechanisms
    • Demonstrated ability to utilize virtualization technologies (preferably VMware) in a development and testing environment
    • Knowledge of DoD messaging and classification markings

    About the Organization

    KeyW is a total solutions provider for the Intelligence Community, solving their toughest challenges. We support the collection, processing, analysis and dissemination of information across the full life cycle of the Intelligence Community’s mission. We employ and challenge the most talented professionals in the industry with solving such complex problems as preventing cyber threats, transforming geospatial imaging into intelligence, and combating global terrorism.   

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share to your network!