IT Security Specialist - Pen Tester

September 2, 2024

☕ Washington – Remote

Although this job is listed in Washington, this company may be open to hiring remote in other states.

💵 $110k - $120k / year

⏰ Full Time

🟡 Mid-level

🟠 Senior

🔧 QA Engineer (Quality Assurance)

Apply Now

Receive Emails with Similar Jobs

3M Consultancy

WebsiteLinkedInAll Job Openings

3M Consultancy is an established Information Technology Staffing Firm dedicated to fulfilling hiring needs for businesses of all sizes. With over 15 years of experience, they pride themselves on sourcing top talent by meticulously understanding client requirements and business culture. Their strategic approach, which combines flexibility and a deep understanding of industry demands, ensures that organizations receive candidates who fit their unique needs and goals.

Recruitment • Staffing • Recruiting • Workforce Solutions • Staffing Solutions

2 - 10 employees

Founded 2018

🤝 B2B

🎯 Recruitment

📋 Description

• This is a remote position. • Analyzes information security systems and applications and recommends and develops security measures to protect information against unauthorized modification or loss. • Familiar with a variety of the field's concepts, practices, and procedures. • Relies on experience and judgment to plan and accomplish goals. • Performs a variety of complicated tasks. • May lead and direct the work of others. • Typically reports to a project leader or manager. • A wide degree of creativity and latitude is expected.

🎯 Requirements

• Knowledge of DOC, NOAA, and NWS IT security policies and implementation standards or those of similar sized organizations • Comprehensive understanding of NIST guidance to include, but not limited to, NIST Special Publications and Federal Information Processing Standards • At least 5 years of recent experience (within the last 6 years) in applying IT security concepts, methodologies, principles, procedures and using industry-standard IT security tools • At least 5 years of recent experience (within the last 6 years) with enterprise architecture methodologies, concepts, procedures, principles, and tools • At least 5 years of recent experience (within the last 6 years) in contingency planning and backup and recovery best practices and application of NIST guidance in this area • At least 5 years of recent experience (within the last 6 years) in using technical testing tools (Tenable Security Center, ArcSight, IBM Big Fix, etc.) • At least 5 years of recent experience (within the last 6 years) in conducting penetration testing or the ability to bring in a penetration tester when required • At least 5 years of performing assessments of Federal Information Systems using the Risk Management Framework • Certification: Information System Security Training for Significant Roles for a Certification Agent/Security Controls Assessor: Certified Information Systems Security Professional (CISSP) Certified Information Systems Auditor (CISA) GIAC Systems and Network Auditor (GSNA) Electronic Commerce Council Certified Ethical Hacker (CEH) ISC2 Certified in Governance, Risk and Compliance (CGRC) Security Certified Network Professional (SCNP) Security Certified Network Architect (SCNA) If the contractor’s employee(s) does not possess one of the aforementioned certifications, they must provide documentation that they have already taken training and they must pass the exam within six months of joining the contract.