Senior Security Engineer
Remote in Remote, VA, US • Posted 2 hours ago • Updated 2 hours agoFull Time
On-site
Depends on Experience
Kratos Defense and Security Solutions, Inc.
Fitment
Dice Job Match Score™
👤 Reviewing your profile...
Job Details
Skills
- Continuous Monitoring
- Collaboration
- Web Applications
- Virtualization
- Storage
- Organized
- Attention To Detail
- DevSecOps
- Microsoft Excel
- Vulnerability Scanning
- Authentication
- Inventory
- Inventory Management
- Operating Systems
- Database
- Reporting
- XML
- JSON
- YAML
- Data Structure
- Regulatory Compliance
- STIG
- Auditing
- Writing
- Editing
- Microsoft Office
- Layout
- Documentation
- Communication Planning
- Team Leadership
- Positive Attitude
- Research
- Git
- Version Control
- Kernel-based Virtual Machine
- VMware
- OpenStack
- Docker
- Kubernetes
- Linux Administration
- SQL
- FedRAMP
- SEC
- CISSP
- Cyber Security
- Data Management
- Analytics
- Management
- Windows PowerShell
- Python
- Scripting
- Nessus
- Qualys
- Burp Suite
- Amazon Web Services
- Aerospace
- Communication
- Insurance
Summary
Job Description
Readiness Delivered. Kratos is a leader in assured aerospace communication solutions and services. We are cutting-edge innovators and creative problem solvers working collaboratively to solve our customers' toughest challenges. Our culture is fast-paced and innovative. We are a trusted partner-driven by doing the right thing and achieving maximum success for our customers, our partners and ourselves. Come join a dynamic and engaging work environment as a Senior Security Consultant supporting our Continuous Monitoring capabilities and team within the Kratos DevSecOps organization. Collaborate with engineering and high-profile customers to provide vulnerability scan analysis & validation, Plan of Actions & Milestones (POA&M) review, Risk Exposure Table (RET) analysis, and support in creation / validation of vulnerability deviation requests.
In this role, you will be conducting detailed analysis on operating system, web application, database, virtualization, container, virtual-storage, and driver vulnerability scans. Analysis will be based on validating accuracy of scanning scope based on documented inventories, scan authentication, and determination of the latest vulnerability tool signatures. Reporting will capture gaps in the analysis, and fully compiled vulnerabilities to present the customers complete risk posture.
The ideal candidate is highly organized, detail oriented, and able to trouble shoot data anomalies. Success in this growth position will allow for opportunities to assist in furthering the services and capabilities of the Kratos DevSecOps Team including automation creation and support for a variety of vulnerability scanners, security tools, and administrative tasks.
Experience and Skills
Expert knowledge MS Excel
Experience with PowerShell, GO, and/or Python
Experience with various vulnerability scanners and SBOM Generation tools such as SonarQube, Syft, Grype, NPM Audit, Artifactory xRay, Tenable, Qualys, Burp Suite, etc.
Review & Verify Data Structures / Report Outputs from Vulnerability Scanners
Experience with configuration / compliance checks such as CIS Benchmarks and STIGs
Strong Communication with the customer & fellow team members.
Strong Writing & Editing skills to assist in writing, developing, and editing ConMon processes & documentation.
Ability to effectively accomplish complex tasks with minor guidance from team leadership.
Research may be for personal improvement or to assist team members in dissecting problems.
Preferred Skills/Experience
#LI-Remote
Competitive salary based on experience and education
Kratos is valued for our ability to design and deliver leading edge, resilient solutions for aerospace communication, control, awareness and mission success across a continuum of offerings-from commercial to tailored custom solutions and integrated programs. Customers trust us to stay relevant and know we are in it for the long-haul. We bring both the capability and confidence that our customers value and depend on. And we always deliver.
This posting will close within 90 days from the Posting Date.
Job Benefits
Readiness Delivered. Kratos is a leader in assured aerospace communication solutions and services. We are cutting-edge innovators and creative problem solvers working collaboratively to solve our customers' toughest challenges. Our culture is fast-paced and innovative. We are a trusted partner-driven by doing the right thing and achieving maximum success for our customers, our partners and ourselves. Come join a dynamic and engaging work environment as a Senior Security Consultant supporting our Continuous Monitoring capabilities and team within the Kratos DevSecOps organization. Collaborate with engineering and high-profile customers to provide vulnerability scan analysis & validation, Plan of Actions & Milestones (POA&M) review, Risk Exposure Table (RET) analysis, and support in creation / validation of vulnerability deviation requests.
In this role, you will be conducting detailed analysis on operating system, web application, database, virtualization, container, virtual-storage, and driver vulnerability scans. Analysis will be based on validating accuracy of scanning scope based on documented inventories, scan authentication, and determination of the latest vulnerability tool signatures. Reporting will capture gaps in the analysis, and fully compiled vulnerabilities to present the customers complete risk posture.
The ideal candidate is highly organized, detail oriented, and able to trouble shoot data anomalies. Success in this growth position will allow for opportunities to assist in furthering the services and capabilities of the Kratos DevSecOps Team including automation creation and support for a variety of vulnerability scanners, security tools, and administrative tasks.
Experience and Skills
Expert knowledge MS Excel
Experience with PowerShell, GO, and/or Python
Experience with various vulnerability scanners and SBOM Generation tools such as SonarQube, Syft, Grype, NPM Audit, Artifactory xRay, Tenable, Qualys, Burp Suite, etc.
- Validate Vulnerability Scan Quality (Authentication, Signature Updates, Configuration, etc.)
- Ability to validate scans against an inventory & ensure all hosts within a boundary are scanned. (Host Inventory Management)
- Familiarity and ability to differentiate different asset types such as containers, operating systems, databases, web scans, etc.
- Familiarity and ability to differentiate different types of audit checks such as CIS Benchmark / SITG checks and vulnerability checks.
Review & Verify Data Structures / Report Outputs from Vulnerability Scanners
- Ability to understand and verify data structures such as XML, JSON, YAML, etc.
- Ability to identify required data fields for reports and utilize them accordingly
- Ability to correlate potentially complex data structures and consolidate the data into a single format for analysis
Experience with configuration / compliance checks such as CIS Benchmarks and STIGs
- Ability to identify & verify authenticated & non-authenticated scans and agent-based scans.
- Ability to validate that vulnerability tool signatures are updated to the latest version and maintain a consistent update schedule.
- Ability to validate the scope of the audit checks enabled by the scanner are properly executing on the applicable assets
Strong Communication with the customer & fellow team members.
- Actively communicate issues or concerns to the customer & team
- Actively listens and participates in meetings
Strong Writing & Editing skills to assist in writing, developing, and editing ConMon processes & documentation.
- Ability to write, edit, review, and assemble documents utilizing Microsoft Office & Markdown formatting syntax
- Ability to effectively write and clearly convey information
- Familiarity with code layout and able to extract comments to document functionality
- Familiarity with documentation styles that identify tasks that need to be accomplished & their required resources. Examples include:
- Plan of Action and Milestones (POA&M)
- Deviation Requests
- Project Plans
- Communication Plans
Ability to effectively accomplish complex tasks with minor guidance from team leadership.
- Ability to sequence and execute work efficiently with set timelines.
- Seek understanding and clarification of objectives within set tasks
- Ability to demonstrate flexibility and resilience in response to changing or ambiguous work situations while maintaining a positive attitude and making them learning opportunities.
- Enthusiasm for conducting research on a variety of technical & non-technical topics.
Research may be for personal improvement or to assist team members in dissecting problems.
Preferred Skills/Experience
- Experience with using git collaboratively for configuration, file, and document version control.
- Basic Experience operating in virtualized environments (e.g., KVM, VMware, OpenStack).
- Basic Experience operating in containerized environments (e.g., Docker, Kubernetes, OpenShift)
- General Linux systems administration and SQL experience.
- FedRAMP experience
- Cyber Security certifications (e.g.,Sec+, CISSP, etc.)
- Individuals currently working in or interested in Cyber Security, Vulnerability Data Management & Analytics, or long time experience in the tech field.
- Good interpersonal skills to interact with management, team members, and customers.
- Familiarity with coding languages such as PowerShell, Python and GO.
- Experience in use of, creation, and or maintenance of automation, scripts, code bases, etc.
- Familiarity with vulnerability scanners such as Nessus, Qualys, Burp Suite, AWS Inspector, etc.
#LI-Remote
Competitive salary based on experience and education
Kratos is valued for our ability to design and deliver leading edge, resilient solutions for aerospace communication, control, awareness and mission success across a continuum of offerings-from commercial to tailored custom solutions and integrated programs. Customers trust us to stay relevant and know we are in it for the long-haul. We bring both the capability and confidence that our customers value and depend on. And we always deliver.
This posting will close within 90 days from the Posting Date.
Job Benefits
- Medical, Dental & Vision Insurance Coverage
- Life/ADD & Short/Long Term Disability Insurance
- 401(k) Savings Plan
- Employee Stock Purchase Plan (ESPP)
- Paid Time-Off (PTO)
- Holidays
- Education Reimbursement
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
- Dice Id: 10152085
- Position Id: 85347-367175
- Posted 2 hours ago
Company Info
Kratos Defense & Security Solutions, Inc. develops and delivers a wide range of products, services and solutions that support government and commercial customers around the world. We specialize in delivering mission-critical systems, advanced technologies and engineering solutions in areas ranging from unmanned solutions to space systems, secure communications, C5ISR, training and more. With offices across the United States and in technology centers around the globe, our people are dedicated to solving complex challenges that demand creative, innovative thinking.
Kratos offers a competitive Benefits package including a 401(k) plan with an employer match and an employee stock purchase program.
Create job alert
Never miss an opportunity! Create an alert based on the job you applied for.Similar Jobs
It looks like there aren't any Similar Jobs for this job yet.
Search all similar jobs