Please note that this is a 2 month+ contract position.
Knowledge of industry standards including but not limited to:
- DISA STIGs
- NIST 800 Series
- NIST Cybersecurity Framework
- CIS Benchmarks
- Vendor Best practice documentation
- Other platform specific documentation
Must have a deep understanding of ports, protocols, and services and their interactions within systems
Must be able to methodically secure and harden enterprise level systems and platforms
Policy Oriented – Must be able to understand the effects and application of policy on enterprise critical systems
Deep understanding and established methodologies of securing technologies in all layers of the OSI Layer
Must be able to identify unnecessary processes and functions of a given system or platform
Constative Communicator – Must be able to effectively communicate technical knowledge and translate to business leadership
Skilled Writer – Must be able to communicate technical knowledge effectively through writing
Note: This position includes development of System Hardening policy. This entails working with NIST teams and stakeholders to determine standards and concurrence. If standards are not able to be met then risk acceptance statements need to be created, coordinated and approved.
Extensive experience (5+ years) in information security operations and/or related IT operational functions
Must possess a minimum of a Bachelors Degree in Computer Science, Information Technology or Information Security (Masters Degree preferred) or substitute comparable work experience.
CERTIFICATIONS: (One or more desired)
CompTIA Security +
CPTE - Certified Penetration Testing Engineer or CEH - Certified Ethical Hacker
Applicants must provide their phone number. Please reference job number 3025.
San Francisco, CAContact