Dieses Jobangebot ist archiviert und steht nicht mehr zur Verfügung.
Vakante Jobangebote finden Sie unter Projekte.

Security Assurance Analyst

Eingestellt von CompuCom

Gesuchte Skills: Network, Unix

Projektbeschreibung

SECURITY ASSURANCE ANALYST PORTLAND, OR CONTRACT OPPORTUNITY

You re covered with COMPUCOM. We offer our temporary employees full benefits. Always have. Always will. Join us!

This role will work in the Security Assurance team, which is tasked with enterprise-wide security assessments to baseline organizational assets, critical information systems, emerging technologies and remediation plans. The candidate will analyze, develop and lead assessment efforts to provide management with a complete view of known vulnerabilities and associated risks.

The analyst will utilize in-depth knowledge and experience of NIST, DIACAP and Risk Management Frameworks RMF 800-37 to complete detailed assessment including POA&M and Security Assessment Report (SAR) deliverables. The information Security Assurance Analyst will perform Information Security Testing to baseline organizational security posture and develop remediation plans to reduce risk to the organization. The Analyst will provide expert analysis and guidance of remediation efforts and recommend strategies to address deficiencies and implement process to administer and streamline this project will include the current assessment criteria, Organizational Security Policy and standard requirements, plan testing objectives and complete assessment plan

DESIRED DELIVERABLES:

Security Assessment Testing methodology, Security Testing Project Plan, Control Testing Plan, Security Assessment Report SAR, Plan of Action and Milestones POA&M.

REQUIRED SKILLS:

- Security testing experience at all layers (eg, network, application, UNIX/Windows)
- 8 or more years of experience preferred
- Comprehensive knowledge of security testing and the NIST frameworks
- Hands-on experience with vulnerability scanners (eg IP360), configuration management scanners (eg CCM), SIEM products (eg QRadar), and a thorough understanding of network security, application security, end-point protection, cryptography, etc.
- Hands-on experience with security suite of tools including vulnerability scanners, configuration management, SIEM, nMap, etc.
- Written and verbal communication skills including familiarity with report writing, audit/assessment documentation, remediation plans, policies/procedures, etc.
- Implementation and Security Assessment of NIST SP 800-37 C&A and RM, 800-39, 800-100 standards, DIACAP Certification and Accreditation, Policies and Procedures Vulnerability and Risk Assessment process and procedures
- Experience with penetration testing, network mapping and vulnerability management tools
- Documentation and presentation material development experience
- Bachelors Degree preferred

Shift: 8-5 or 7-4/no overtime

*CompuCom supports Employment Equity and Diversity* Dallas-based CompuCom Systems, Inc. is a leading provider of end-user enablement, service experience management, and cloud technology services to Fortune 1000 companies. CompuCom partners with enterprises to develop smarter ways they can work, grow and produce value for their business. Founded in 1987, privately held CompuCom has approximately 11,500 associates and supports more than 4 million end users in North America.

Projektdetails

  • Vertragsart:

    Contract

  • Berufserfahrung:

    Keine Angabe

Geforderte Qualifikationen

CompuCom