Web Assessment (Journeyman)

  • Perspecta,
  • Adelphi, MD
  • 2 hours ago
IT, Network, Linux, Windows, PHP, CMS, Apache, CCNA, Security, CISSP
Full Time

Job Description

Business Group Highlights

Defense

The Defense group supports the Department of Defense (DoD) mission to keep our homeland and its citizens safe. We provide solutions to improve the Nation's defense by providing software, systems engineering, IT, training and logistics and fleet management solutions.

Responsibilities

Position is in support of the U.S. Army CCDC C5ISR Center Sustaining Base Network Assurance Branch (SBNAB). Program objective is to address today's cyber threats by designing and deploying game-changing cyber defense capabilities that allow organizations to defend better, react faster, coordinate rapidly, prioritize efforts, and respond smarter to security events, increased risks, and/or operational directives.

Description: Provides feedback to design engineers and evaluates end-to-end systems and systemsoriented products through their entire life cycle. Working as expert, conducts research and evaluates technical performance of software products and overall segments and systems. Ensures products and systems comply with requirements and government information assurance and cyber security standards and practices through formal verification methods. Verifies/validates systems with specific emphasis on network operations and cyber warfare tactics, techniques, and procedures focused on the threat to information networks. Assesses performance using evaluation criteria and technical performance measures. Prepares assessments and cyber threat profiles of current and planned products based on sophisticated testing, research, and analysis. Participates in design reviews of components (hardware and software) to ensure applicability to the current system and traceability of requirements. Reviews test plans/procedures and ensures they verify/validate the requirements. Develops and maintains analytical procedures to meet changing requirements. Produces high-quality papers, presentations, recommendations, and findings for senior US government intelligence and operations officials. Career level with a complete understanding and wide application of technical principles, theories and concepts. Working under only general direction, provides technical solutions to a wide range of difficult problems. Independently determines and develops approach to solutions. Conduct formal security assessments on web-based applications using both automated tools and manual techniques, including penetration testing tools and other hacking methods, in order to enumerate vulnerabilities in web technologies. After each assessment, prepare a formal report that highlights mission impact and ranking of each finding by severity. Work with web site administrators after the assessments to recommend strategies to mitigate the vulnerabilities, and harden the DoDIN sites. In short, assessors are ethical hackers that find the vulnerabilities in DoD web sites before our adversaries do. Work requires in-depth knowledge of both Linux and Windows operating systems, networking, network protocols, databases, scripting languages, and some programming. It also requires extensive knowledge of web technologies: PHP, CSS, CMS, Apache, Burp, Metasploit, etc.; keeping up with the latest vulnerabilities and versions of all these technologies, and keeping up with new technologies, products, and hacking techniques. While they will often run pre-determined types of tests, they also design their own tests a large portion of the time, which requires creativity and imagination, along with a superb level of technical knowledge and know-how.

Qualifications

1. Bachelor's (or equivalent) with 5 yrs of experience, or a Master's with 3 yrs of experience.

2. Requires active TS/SCI clearance.

3. Requires current Information Assurance IT-III Certification (CASP+ CE, CCNA-Security, CISA, CISSP (or associate), GCED, GCIH) and current Computing Environment certification IAW DoD 8570.01-M.

About Perspecta

What matters to our nation, is what matters to us. At Perspecta, everything we do, from conducting innovative research to cultivating strong relationships, supports one imperative: ensuring that your work succeeds. Our company was formed to bring a broad array of capabilities to all parts of the public sector-from investigative services and IT strategy to systems work and next-generation engineering.

Our promise is simple: never stop solving our nation's most complex challenges. And with a workforce of approximately 14,000, more than 48 percent of which is cleared, we have been trusted to do just that, as a partner of choice across the entire sector.

Perspecta is an AA/EEO Employer - Minorities/Women/Veterans/Disabled and other protected categories.

As a government contractor, Perspecta abides by the following provision

Pay Transparency Nondiscrimination Provision

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of the other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c).

Posted By

Adelphi, MD

Dice Id : appblok
Position Id : 7173_98723
Originally Posted : 1 month ago
Have a Job? Post it