Senior Security Consultant
- San Antonio, TX
What you'll be doing
- Performing vulnerability scanning and assessments. Performing application penetration tests across public and private networks. Developing testing scripts and procedures. Analyzing, disassembling and reversing engineer code to discern weaknesses for exploitation. Performing social engineering exercises. Conducting incident response investigations. Collaborating with internal and external clients on risk analysis and assessments and providing information security advisory and consulting. Other security related projects that may be assigned according to skill that may include: performing security authorization assessments in support of FISMA, NIST, DIACAP, HIPAA, PCI, NERC CIP, ISO27000 series or Fed RAMP frameworks. Conducting interviews with client IT departments to assess IT security practices and procedures and providing recommendations on closing gaps.
What your background should be
- Minimum of 5 years work experience performing security penetration tests or technical security audits. Knowledge of information security practices, networks, software and hardware. Must demonstrate excellent time management skills and be capable of working independently and as part of a dynamic team. Must be familiar and proficient in at least two programming or scripting languages such as Java, C#/C++, Python, Perl and PHP. Demonstrate advanced understanding of business processes, internal control risk management, IT controls and related standards (i.e., PCI, ISO27001/2, FISMA, HIPAA, CIPA, COPPA, SOX). Facilitate use of technology-based tools or methodologies to review, design or implement products and services. Ability to communicate technical issues to technical and non-technical business area representatives. Ability to complete tasks and deliver professionally written reports for clients. Skilled in computer desktop packages such as Microsoft Word, Excel, PowerPoint etc. Ability to obtain and maintain Secret level government clearance.
Required Schooling / Training
- BA or BS degree.
Who is the client company
- The client company provides defense, information technology, information assurance and security products for the U.S. federal government, commercial enterprises and state and local agencies.
- If you are interested in this position, send your resume to firstname.lastname@example.org