Click on 'Apply Now' to submit your application for this position.
Sr. Information Assurance Specialist
08 - 10 years
MD - Baltimore
*Provides system design expertise to ensure that as new systems are designed, security implications and security requirements are incorporated into the system from the initial design phase. *Reviews network designs, database system designs, communication engineering designs, etc. as they relate to security requirements. *Performs security audits and code inspections during the development and testing of new systems. *Trains developers in secure coding processes. Inspects code for security vulnerabilities and uses the results to improve the development process.
*Bachelor’s Degree in related IT field or minimum 5 years’ experience in systems security.
*Experience in providing leadership to Development Teams in secure coding techniques.
*Must have the ability and skills to professionally write policy, technical whitepapers, checklists, standard operating procedures, and author formal technical and non-technical reports. Experience
*Extensive knowledge of a variety of the IA field’s concepts, practices, and procedures to ensure the secure integration and operation of all systems
*Experience with evaluating application,system, and network security controls against requirements such as FISMA, FIPS, and NIST guidelines *Possess a thorough understanding of secure code development processes (OWASP, SEI CERT, BSIMM, OMG, etc.)
*Ability to perform risk assessments and security audit services.
*Experience with application security, database security, and network security tools and IA controls.
*Experienced in performing vulnerability scanning execution, assessment, and analysis utilizing security systems tools
*Experience and knowledge with IT Security Tools such as: o IBM AppScan Source (Ounce) o HP Fortify o Veracode o AppDetective o Burp Suite o Nessus o Metasploit o BackTrack o Qualys
*Must possess at least one current (non expired) industry compliant certifications in security or information assurance such as CISA, CISSP, CEH, GCIA, CISM, or Security +
Experience and knowledge with IT Security System Tools such as;
o McAfee EPO,
o RSA Netwitness,
o Xceedium Gatekeeper,
• Ability to perform risk assessments and security audit services.
• Experience with application security, database security, and network security tools and IA controls
• Ability to assess and weigh current and evolving security threats in an operational environment
• Experience in supporting, monitoring, testing, and troubleshooting hardware and software IA problems
• Experience with Security Information and Event Management (SIEM) systems
ActioNet has a mentor program designed to get you up to speed in your new job quickly...helping you succeed and grow with the company.
ActioNet Inc. is an Equal Opportunity/Affirmative Action Employer.