Cyber Security Specialist

Location: St Louis, Missouri
Date Posted: 02-09-2018
We are seeking a candidate for a contract Cyber Security Specialist opening in St. Louis, Missouri. All applicants must have an active Secret Clearance.

Performs security assessments of software including research, manual, and automated testing.
• Documents security findings and recommends mitigations.
• Knowledge of web applications and database technologies with basic understanding of common vulnerabilities affecting these technologies (OWASP Top 10 / CWE).
• Must have experience with both Windows and Linux operating systems.
• Educates team members on security best practices and participates in architecture meetings with application owners.
• Familiarity with the Department of Defense (DoD) technical security standards and Risk Management Framework (RMF).
• Participates in the development of standards, procedures and technical documentation.
• Ability to manage priorities in a fast-paced environment and passion for security.
• Must have active minimum DoD Secret clearance and possess DoDD 8570 Security+ Certification
Develops, deploys and/or maintains enterprise-wide computing and information security requirements, policies, standards, guidelines and procedures for a stakeholder organization or program/sub program. Advises on a broad range of compliant information security and data protection requirements. Determines acceptability of unique configurations and verifies security parameter placement. Investigates and resolves security incidents. Participates in security assessments and audits.
Representative Major Tasks (Reflects typical job family activities. Specific activities may vary by Business Unit, region, site or assignment):
• Develops, deploys and maintains computing and information security requirements, policies, standards, guidelines and procedures for a stakeholder organization or program/sub program. Evaluates capability risk/gaps and takes action to meet objectives.
• Analyzes security situations, environmental factors and business objectives. Advises on a broad range of information security issues and interprets data protection requirements. Contributes to or develops security plans to meet assurance or protection requirements.
• Analyzes and documents computing security events. Identifies root causes, prioritizes threats and recommends and/or implements corrective action. Determines acceptability of unique configurations and verifies security profile settings. Tests and deploys risk mitigation processes and tools.
• Investigates, analyzes and resolves security questions and issues. Tests and deploys incident response processes and tools. Leads or participates on incident response teams.
• Collects, preserves and documents security event information to determine facts and maintain chain of custody. Conducts investigations and takes corrective action or recommends further actions.
• Performs security compliance monitoring. Participates in security policy assessments and audits. Evaluates and tests security controls and applications. Contributes to corrective action planning and/or execution.
 
or
this job portal is powered by CATS