Synergy ECP
Information Security Engineer/Security Tester
Synergy ECP, Hanover, Maryland, United States, 21098
COMPANY DESCRIPTION:
Synergy ECP is a Service-Disabled Veteran-Owned Small Business (SD(VOSB)) that was formed in July 2007 with Headquarters in Columbia, MD. We are made up of talented, dedicated staff to provide a broad range of services to the defense, intelligence, and health care industries.
In an ultra-competitive environment, Synergy ECP has thrived by adhering to our name, making sure excellence is displayed by our Employees, to our Customers, and by Improving Performance (ECP). It’s what sets us apart, enabling us to be an autonomous yet agile business that delivers huge results - showing we’re ready to meet our customers’ evolving demands.
Synergy ECP has earned a client list that includes numerous Fortune 100 companies, in addition to multiple branches of the US government and military services. Synergy ECP is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, veteran status, or any other protected class.
Clearance Required:
TS/SCI w/ Full Scope Polygraph
Other Requirements:
U.S. Citizenship
Job Requirements:
Three (3) years of direct experience with an intelligence community or signals intelligence activity.
Eight (8) years experience integrating information assurance disciplines into the system design, development, integration, and implementation.
Two (2) years experience with Defense in Depth principles and technology including access/control, authorization, identification and authentication, public key infrastructure, network, and enterprise security architecture.
Four (4) years experience developing security plans for employing enterprise-wide security architecture.
Four (4) years experience assessing and auditing network penetration testing, antivirus planning assistance, risk analysis, and incident response.
Four (4) years experience applying security risk assessment methodology to system development, including threat model development, vulnerability assessments, and resulting security risk analysis.
Four (4) years experience with the NSA Certification and Accreditation process (NISCAP).
Three (3) years experience enforcing the design and implementation of trusted relationships among external agency systems and architectures.
Two (2) years experience in the implementation of cross domain solutions e.g. an information assurance solution that provides the ability to manually and/or automatically access and/or transfer between two or more differing security domains.
Two (2) years experience developing systems that process information with different classifications and categories that simultaneously permits access by users with different security clearances and denies access to users who lack authorization.
Two (2) years experience in network security certifications.
Two (2) years experience in system certifications.
Five (5) years experience applying Federal, NSA, intelligence community, and DoD Information Security regulations, publications, and policy.
At least one Information Security related certification (Security+, CISSP, CISM).
Additional Requirements:
Experience w/ NESSUS in a complex network environment as well as Security Center version 5.X
Strong Linux skills
Strong understanding of vulnerability assessment and penetration testing
Experience tailoring Scan Policy NESSUS/Security Center
Experience with both compliance and vulnerability scanning
Knowledge of cloud computing platforms
Scripting and coding experience a plus
#J-18808-Ljbffr
Synergy ECP is a Service-Disabled Veteran-Owned Small Business (SD(VOSB)) that was formed in July 2007 with Headquarters in Columbia, MD. We are made up of talented, dedicated staff to provide a broad range of services to the defense, intelligence, and health care industries.
In an ultra-competitive environment, Synergy ECP has thrived by adhering to our name, making sure excellence is displayed by our Employees, to our Customers, and by Improving Performance (ECP). It’s what sets us apart, enabling us to be an autonomous yet agile business that delivers huge results - showing we’re ready to meet our customers’ evolving demands.
Synergy ECP has earned a client list that includes numerous Fortune 100 companies, in addition to multiple branches of the US government and military services. Synergy ECP is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, veteran status, or any other protected class.
Clearance Required:
TS/SCI w/ Full Scope Polygraph
Other Requirements:
U.S. Citizenship
Job Requirements:
Three (3) years of direct experience with an intelligence community or signals intelligence activity.
Eight (8) years experience integrating information assurance disciplines into the system design, development, integration, and implementation.
Two (2) years experience with Defense in Depth principles and technology including access/control, authorization, identification and authentication, public key infrastructure, network, and enterprise security architecture.
Four (4) years experience developing security plans for employing enterprise-wide security architecture.
Four (4) years experience assessing and auditing network penetration testing, antivirus planning assistance, risk analysis, and incident response.
Four (4) years experience applying security risk assessment methodology to system development, including threat model development, vulnerability assessments, and resulting security risk analysis.
Four (4) years experience with the NSA Certification and Accreditation process (NISCAP).
Three (3) years experience enforcing the design and implementation of trusted relationships among external agency systems and architectures.
Two (2) years experience in the implementation of cross domain solutions e.g. an information assurance solution that provides the ability to manually and/or automatically access and/or transfer between two or more differing security domains.
Two (2) years experience developing systems that process information with different classifications and categories that simultaneously permits access by users with different security clearances and denies access to users who lack authorization.
Two (2) years experience in network security certifications.
Two (2) years experience in system certifications.
Five (5) years experience applying Federal, NSA, intelligence community, and DoD Information Security regulations, publications, and policy.
At least one Information Security related certification (Security+, CISSP, CISM).
Additional Requirements:
Experience w/ NESSUS in a complex network environment as well as Security Center version 5.X
Strong Linux skills
Strong understanding of vulnerability assessment and penetration testing
Experience tailoring Scan Policy NESSUS/Security Center
Experience with both compliance and vulnerability scanning
Knowledge of cloud computing platforms
Scripting and coding experience a plus
#J-18808-Ljbffr