IOMAXIS

  • Penetration Tester / Security Control Assessor (SCA) Test Engineer II

    Job Locations US-VA
    Posted Date 1 month ago(10/28/2019 8:57 AM)
    ID
    2019-1950
    # of Openings
    2
    Category
    Information Technology
  • Responsibilities

    IOMAXIS is a technology engineering company that is recognized for our innovative solutions and unparalleled engineering expertise across a wide variety of technologies. Apply innovative thinking to projects that are difficult to solve. We are seeking an experienced Penetration Tester / Security Control Assessor (SCA) Test Engineer II who thrives in a challenging environment to join our Ingressive division in a full-time capacity supporting operations out of Arlington, VA.   The positions is available and interviews are underway!

     

    What you'll be doing in this role:

     

    -Supporting remote and onsite operations by employing simulated adversarial threat-based approaches to expose and exploit vulnerabilities as a means to identify weaknesses and to improve the security posture and operational procedures in support of a DHS cybersecurity program

    -Performing Penetration Testing and Red Team techniques to discover and exploit vulnerabilities in support our client's security requirements to test and validate the effectiveness of customers’ IT security posture 

    -Using various testing, social engineering, and penetration testing approaches for vulnerability identification, enumeration, and purposeful exploitation to determine the value and effectiveness of a network, system, or application's security configuration

    -Participating in and/or present project kick-off and close-out presentations and findings

    -Participating in mission meetings and generate a mission Rules of Engagement (ROE) Plan

    -Generate Security Assessment Plan (SAP) in preparation of upcoming assessments

    -Conducting mission review meetings and maintain activity log

    -Develops Security Assessment Reports (SARs) that summarize missions, findings, and results

    -Evaluates information system security readiness and supports cybersecurity functions

    -Employs test plans and procedures tailored to the security controls of the system under test

    -Performs manual test procedures for analysis, web assessment software, vulnerability scanning, and penetration testing, and develops/deploys custom scripts

    -Performs onsite and remote testing of FISMA requirements

    -Performs manual testing, vulnerability scans, and penetration testing

    -Prepares detailed weekly status of activities

    -Performs continuous monitoring activities for systems

    -Develops Plan of Action & Milestones (POA&Ms)

    -Performs annual assessments that support the continuous monitoring strategy for all systems with ATO

     

    Qualifications

    Minimum Requirements

     

    Education:

    At least 2-years of penetration testing and vulnerability assessment experience 

     

    Required Technical Experience/Qualifications/Skills:

    -Demonstrated experience in a simulated environment

    -Possess at least one of the following certifications such as Offensive Security Certified Expert (OSCE), Offensive Security Certified Professional (OSCP), Offensive Security Web Expert (OSWE), Offensive Security Wireless Professional (OSWP), GIAC Penetration Tester (GPEN), GIAC Exploit Researcher and Advanced Penetration Tester (GXPN), Licensed Penetration Tester (LPT), Certified Ethical Hacker (C|EH)

    -Ability to support technical analysis and documenting and presenting reports 

    -Must be able to support travel requirements within the National Capital Region (NCR) and Continental United States (CONUS) (upwards to 25%)

     

    Strongly Desired Skills:

    -Prior DoD or DHS Red Team experience

    -Offensive Security Professional Certification (OSCP)

    -In-depth knowledge of at least one or more of the following: server operating systems, workstation operating systems, or switching and routing equipment

     

    Clearance:

    -Positions require an active Top Secret Clearance w/ SCI eligibility and DHS Suitability

     

    Overview

    WHY IOMAXIS:  Unleash your potential and make a dramatic impact! 

     

    Over the past 10 years, IOMAXIS has advanced the state of Cyber RDT&E by bringing together the best software, hardware, and communications experts in the industry to help Federal agencies and organizations develop critical solutions for difficult missions around the globe.  Today, we’re proud to say the most important Federal clients rely on our solutions to perform their missions by developing solutions faster, reducing complexity, cutting costs, and providing a profound level of innovation. IOMAXIS helps our customers deliver exceptional value to their client, America and its people.  IOMAXIS leads the industry in developing superior services and technologies, delivering actionable capabilities and insight— right when customers need it most. 

     

    IOMAXIS is an Equal Opportunity Employer and considers all qualified applicants for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, disability or protected veteran status.

    #CJ

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed