Technical Cybersecurity Assessor (TCA) – Windows Web

Location: Suffolk, Virginia

Experience: 3 Years

Clearance Type: Top Secret/ SCI Eligible

AERMOR is hiring a Technical Cybersecurity Assessor that specializes in security measures for Windows-based web environments. In this position you will be responsible for identifying vulnerabilities, assessing security risks, and providing recommendations to strengthen the protection of web servers and applications running on Windows platforms.

Responsibilities:

• Identifying critical flaws in applications and systems that cyber attackers could exploit
• Conducting vulnerability assessments for networks, applications and operating systems
• Conducting network security audits and scanning on a predetermined basis using automated tools. (e.g. Security Content Automation Protocol (SCAP)) to pinpoint vulnerabilities and reduce time-consuming tasks
• Supply training for systems administrators in the form of recommendations for properly applying required baseline settings and hardening guidance
• Using automated or manual testing techniques and methods to gain a better understanding of the environment and reduce false negatives
• Validating report findings to reduce false positives
• Compiling and tracking vulnerabilities for metrics purposes
• Writing and presenting a comprehensive Vulnerability Assessment report
• Reviewing and defining requirements for information security solutions
• Perform WEB (IIS and/or Apache) security assessments
• Manually validate report findings to reduce false positives
• Review and define requirements for information security solutions
• Supply training for systems administrators in the form or recommendations for properly applying required baseline settings and hardening guidance
• Generate reports to capture the findings
  
  

Required Skills and Experience:

• Experience in Windows Servers, desktops, etc. for WIN2K flavors
• Experienced with performing manual testing methods and procedures using STIGs, SRGs, and checklists
• Experience or knowledge in scripting for Windows (PowerShell, Batch Scripts, etc.)
• Experience or knowledge in deploying Windows OS and applications (IIS, etc.)
• Experience or knowledge in SSL Certificates
• Experience or knowledge in Active Directory/Domains
• DoD IA Workforce Level: IAT2
• Windows (MCSA or MCSE) Preferred, relevant Windows certifications accepted
• Must have the ability to travel locally or internationally between sites, as necessary. Up to 50% of travel time
  
  

Powered by JazzHR

luNRUqS4o5