gTANGIBLE

Corporation (gTC),

www.

gtangible.com, is a C corporation and a registered Government

contractor

that provides services and solutions in:National Security ProgramsProfessional, Administrative, and Management SupportMission and Warfighter SupportWe are a Service

-

Disabled Veteran

-

Owned Small Bu

siness (SDVOSB) and the founder

has years of successful experience in the Government contracting arena. Our leadership team is an exceptional group of Government contr

acting professionals.

gTANGIBLE

is in the process

of identifying candidates for the following position.Requisition Type:

Full TimePosition Status:

ContingentPosition

Title

:

Secur

ity

Engineer

(Infrastructure)Location:

Arlington, VASecurity

Clearance:

SecretDuties and Responsibilities

The

Secur

ity

En

gineer

(Infrastructure)

supports this

Transportation Security Administration Information Technology (TSA IT) Task Order (TO)

by

conducting

Infrastructure Security Testing to include Operating System (OS), database, Network Fabric assets and Wireless Communications.

D

uties include the following:Tests

for continuous monitoring, continuous diagnostic & mitigation, Incidents of Compromise, and automated unendorsed scanning.Maintains and stays current with in-depth technical knowledge of operating system security testing tools in use by

the Information Assurance & Cybersecurity Division (

IAD

)

, and testing techniques in general, to perform automated security testing, manual validation of automated results, and manual configuration validation of items not covered by automated testing, of operating systems on servers, workstations, appliances, and other similar assets.Assists with endpoint software, hardware, and operating system image security evaluations.Becomes familiar with TSA and DHS security policies and Technical Standards (TS) relating to the configuration and operation of operating system to facilitate effective security assessments.Makes recommendations for updates, additions, and modifications to TSA security policy as they are identified.Engages with stakeholders to gather all required information to create detailed test plans.Conducts security infrastructure testing using manual and automated tools. Reviews and validates findings during security testing engagements.Participates with stakeholders regarding findings meetings and responses.Provides Subject Matter Expertise on emerging web and mobile technologies, languages, and frameworks.P

rovide

s

expertise and support on DHS Cyber Hygiene and external security audits conducted of the TSA.Knowledge and QualificationsAt least ten (10) years of technical IT security experience.At least five (5) years of experience performing security assessments.At least three (3) years of experience performing security assessments of Windows and Linux operating systems, databases, network devices, and wireless components.At least one (1) year of experience performing security assessments for Federal IT systems.Ability to work independently/minimal oversight

.Experience using automated tools:

SuperScan

, NMAP, Nessus, Tenable.sc, NIPPER,

RedSeal

,

AppDetective

,

Aquafold

Studio, Wireshark, Fluke Devices,

NetStubler

,

Nikto

.Strong understanding of NIST SP 800-53, NIST 800-97, and DISA STIGS

.Required Certifications: CISSP, CEH or other relevant certifications

.Experience with Cisco switches, routers, firewalls, VPN, ISE; Palo Alto firewalls; Juniper firewalls, VPN; F5 BIG-IP GTM, LTM, HEM; DELL switches, and McAfee

WebGateway

.Experience with Microsoft SQL, Oracle, MySQL, DB2, Informix, Splunk, Elasticsearch, as well as Cloud-based databases such as Amazon DynamoDB and Azure SQL.Experience with Windows Server and Windows Desktop platforms, Unix, Linux, AIX, Solaris, MacOS and iOS

.Strong organizational, analytical, and technical writing skills to be able to document findings in reports

.Experience with Wi-Fi, Bluetooth, Near Field Communication (NFC), RFI, Infrared and other non-wired technologies

.Experience with identifying and mitigating common security vulnerabilities such as OWASP Mobile Top 10 and SANS Top 25.Experience with scripting languages such as but not limited to Python, BASH, or PowerShell.gTANGIBLE

Corporation is an equal opportunity employer and does not discriminate against any employee or applicant because of race, age, sex, color, physical or mental disability, religion, sexual orientation, marital status, national origin, or political affiliation

.

#J-18808-Ljbffr