Senior Security Specialist, Information Assurance

November 4, 2024

Apply Now

Receive Emails with Similar Jobs

Softek International

WebsiteLinkedInAll Job Openings

Softek International is a pioneering company dedicated to reshaping user experiences through technology innovation. They specialize in Information Technology (IT), Software Development, and Cybersecurity, providing comprehensive services such as cybersecurity solutions, identity and access management, cloud implementation and migration, and digital transformation. Softek also offers ERP/CRM consulting and implementation, business intelligence and data analytics, and mobile and custom software development. The company is recognized as a SBA certified 8A, Woman-Owned Small Business (WOSB), and holds CMMI Level 3 and ISO quality management certifications. Softek has extensive experience supporting government agencies and organizations, providing IT services that drive efficiency and enterprise outcomes.

51 - 200 employees

Founded 1987

🔒 Cybersecurity

📋 Description

• Support in identifying cybersecurity deficiencies in information systems by performing technical assessments. • Manage Assessment Standard Operating Procedures and Testing Templates. • Develop testing artifacts for each system to include technical assessment plan and documentation. • Conduct assessments through review of security documentation, vulnerability scan results, and audit logs. • Document the results of technical assessments in the draft Security Assessment Report (SAR). • Produce Final SAR within 5 business days after assessment exit conference. • Collect and securely store all final materials and media submitted by the system test team according to the SOP.

🎯 Requirements

• At least 4 years of NIST Security Control Assessor (SCA) experience. • Must have led Assessment teams from planning through execution and finalization an of assessment. • Capable of performing in a fast-paced environment. • Strong communication skills both verbally and in written form. • Mastery of control assessment requirements based on the NIST 800-53A. • Technical expertise in assessing environments such as but not limited to Applications, Operating Systems, Databases, Appliances, Cloud Environments, and Physical environments to validate a full deployment of a defense in depth strategy. • In depth understanding on how to read Nessus scan reports and identifying security vulnerabilities, configuration settings, and security compliance. • Proficient technical writing skills developing control findings, detailed assessment reports, technical requests for the system engineers, and other security assessment documentation. • Extensive experience conducting assessment interviews of system engineers, administrators, and other support personnel including demonstrations to accurately validate system configurations. • Work well within and leading teams with a positive attitude and can solve problems without supervision. • Deep knowledge of Security Control testing and validation on both technical and policy areas. • CSAM experience. • Working knowledge of DHS 4300 Policy. • At least 1 year of Splunk experience or Splunk certification.