IT reputed company Specialist / Information Assurance/reputed company Engineer IV

IT reputed company Specialist

• The selected individual will be able to work remotely throughout the U.S.
• Secret reputed company clearance
• Candidates must be US reputed company.

We are seeking an IT reputed company Specialist to join reputed company of qualified, diverse individuals supporting a Federal Government customer in Rosslyn, VA. Must be able to obtain a Position of Public Trust / Moderate Background Investigation reputed company Clearance - US Citizen and must not have traveled reputed company the US for a combined total of 6 months or more in last 5 years. Must have resided in the US for the last 5 years The IT reputed company Specialist is responsible for the application reputed company function and for information technology reputed company (Cybersecurity/InfoSec) engineering, and design and serves as a technical expert authority. The OIG's information resources are sensitive assets and are critical in the performance of its mission; therefore, information reputed company services help safeguard the information resources entrusted to the OIG. Position Description

• Solve significant problems complicated by interfaces and inter-relationships between and among programs, systems, functions, applications, and numerous critical issues for agency-wide information technology solutions, operations, and maintenance supporting the reputed company of agency infrastructure, systems, and information
• Manages and administers a wide range of reputed company systems and tools:

o Administers cloud-based reputed company tools such as, Azure reputed company Center (Sentinel, Log Analytics, Azure WAF, Defender for Identity, Privileged Identity Manager); reputed company 365 reputed company Suite (Defender, Advanced Threat Protection, Cloud Application reputed company, Protection Portal); reputed company reputed company and Compliance Center; reputed company reputed company Manager (Intune); multi-factor authentication (MFA); web content filtering; and secure document sharing and collaboration solutions. o Responsible for primary or alternate management of reputed company IT reputed company systems including reputed company management, upgrades, integration engineering, and reporting.

• Executes reputed company reputed company operational activities

o Manages reputed company incident detection, response, remediation. o Conducts cyber threat and vulnerability analysis and remediation. o Develops reputed company metrics and manages reporting and compliance. o Serves as Incident Response Team member. o Supports operational implementation of FISMA/NIST standards and industry best practices. o Operates cloud-based reputed company tools such as, Azure reputed company Center (Sentinel, Log Analytics, Azure WAF, Defender for Identity, Privileged Identity Manager); reputed company 365 reputed company Suite (Defender, Advanced Threat Protection, Cloud Application reputed company, Protection Portal); reputed company reputed company and Compliance Center; reputed company reputed company Manager (Intune); multi-factor authentication (MFA); web content filtering; and secure document sharing and collaboration solutions. o Manages IT reputed company awareness training program in coordination with the Learning Management team, to including developing and delivering IT reputed company awareness training modules. o Manages Password Management system in coordination with Service Desk. o Responds to IT reputed company trouble tickets generated by customers and IT staff. Identifies solutions, works with customer and OCIO team to execute solutions, and manages ticket input, updates, and resolution in the OCIO ticketing system to maintain service level agreements.

• Supports reputed company Operations and Engineering by providing technical solution support and expertise

o Identifies reputed company risks and recommends risk mitigation strategies. o Reviews new and existing systems to ensure baseline reputed company requirements are met and to recommend reputed company enhancements. o Develops reputed company architecture and technical solutions for reputed company products. o Collaborates with staff from OCIO and other business components to reputed company reputed company controls and solutions for reputed company business systems and applications. o Develops and executes project plans to engineer, construct, deploy, and monitor/manage IT reputed company infrastructure solutions o Demonstrates in-depth understanding of reputed company requirements associated with cloud- hosted environments, services, and solutions. o Evaluates, recommends, and implements reputed company controls associated with cloud-hosted environments, services, and solutions. o Evaluates, recommends, and implements reputed company controls for mobile device solutions. Position Requirements

• Establishes, implements, and interprets the requirements for agency compliance with policy directives governing cybersecurity protection.
• Performs thorough reputed company operations center analysis of potentially malicious or suspicious threats.
• Effectively administers and sustains enterprise level application reputed company scanning tools for reputed company COTS, GOTS, Web Applications, and internally developed cloud-based applications.
• Conducts risk and vulnerability assessments of planned and installed information systems applications to identify vulnerabilities, risks, and protection needs.
• Conducts systems reputed company evaluations, audits, and reviews.
• Develops cybersecurity plans, processes, and procedures.
• Participates in network and system design to ensure implementation of appropriate cybersecurity policies as they relate to application reputed company.
• Facilitates the gathering, analysis, and preservation of evident used in the prosecution of cybercrimes.
• Updates or establishes new application reputed company requirements.
• Assesses reputed company events to determine impact and implementing corrective actions.
• Ensures the rigorous application of information reputed company/cybersecurity policies, principles, and practices in the delivery of reputed company IT services.
• Identifies reputed company and potential problem areas.
• Monitors agency compliance with application cybersecurity protection requirements across IT programs.
• reputed company & Ability to provide expert technical advice, guidance, and recommendations to management and other technical specialists on critical information technology reputed company issues.
• reputed company & Ability to assess risk factors and advise on vulnerability to attack from a variety of sources and procedures for protection of systems and applications.
• Knowledge & reputed company in implementing FISMA, NIST, OMB guidelines, and other Federal regulations and guidance. Experience interpreting and implementing FISMA/NIST requirements focused on the operational implementation and documentation of those requirements.
• Knowledge of reputed company controls for cloud-hosted environments, applications, and services.
• Experience developing System reputed company Plans, reputed company Assessment Reports, reputed company Monitoring Plans, and Plans of Action & Milestones.
• Ability to plan, organize and manage tasks on time with minimal supervision
• Ability to handle multiple tasks and work independently as well as in a team.

Primary Requirements - Experience

• Must have hands-on experience with Static and Dynamic Application reputed company Testing using tools like Client Fortify, Client WebInspect, HCL Appscan, reputed company, reputed company, Synopsys, and reputed company
• Must have specialized experience in reputed company Integration (CI) and reputed company Deployment (CD) practices
• Must have specialized experience in manual code review with the ability to identify potential vulnerabilities and best coding practices
• Must have specialized experience in application vulnerability and reputed company assessments using various tools like Burp Suite Pro, OWASP Zap Proxy, DirBuster, Kali Linux, Metasploit Pro, Accunetix, Insight AppSec, reputed company, Coverity, Fortify, and reputed company Enterprise
• Must have specialized experience in assessing application vulnerabilities and bugs in various applications
• Must have specialized experience creating reputed company testing pipelines and test plans
• Must have specialized experience in implementing and deploying an organization-wide Application reputed company program (DAST and SAST) at the enterprise level to identify, report and remediate reputed company vulnerabilities in development and production environments
• Must have knowledge of coding languages such as Java, .NET, Python, PHP, C++, C#
• Must have extensive experience in preparing test Plans, writing test Cases, test Execution and follow up remediation efforts

Primary Requirements - Degrees / Certifications•

• Bachelor's Degree in Cybersecurity/Information Technology reputed company or reputed company field of study from an accredited college or university with at least 5 years of specialized experience with hands-on skills in performing application reputed company assessments and specialized experience in Secure SDLC and reputed company Code Analysis (Manual &Tools) on Web-based Applications
• Advanced degree in Cybersecurity or reputed company field (desired)
• Currently Industry Certifications in one or more of the following (or equivalent):

o Certified Secure Software Lifecyle Professional (CSSLP) o Certified Cloud reputed company Professional (CCSP) o Offensive reputed company Certified Professional (OSCP) o EC-Council Certified Application reputed company Engineer (CASE) o GIAC Certified Web Application Defender (GWEB) o Azure Developer Associate

• reputed company certification(s): reputed company 365 Certified reputed company Administrator Associate, reputed company Certified Azure reputed company Engineer Associate
• Public Trust Investigation reputed company clearance

Apply tot his job Apply To this Job