---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Information Assurance Analyst
Location: Washington, District of Columbia, United States
Type: Permanent F/T
Closing Date: 2005-10-27
Sr. Network Engineer – INFOSEC
Location: Washington, DC
•Applicants selected will be subject to a government security
investigation and must meet eligibility requirements for access to classified
information.
•Three years of experience performing systems security assessments,
documentation, and security upgrades for live networks, desktop systems,
servers, and enterprise data bases leading to successful accreditation and
certification of such systems.
(1)Assess network, server and data base security requirements and
vulnerabilities against NIST standards.
(2)Baseline analysis and documentation of existing security infrastructure,
policies and procedures;
(3)Performing and documenting risk assessments, analyzing security
vulnerabilities, and the metrics to measure the risks associated with those
vulnerabilities;
(4)Based on the risk profile of the analyzed systems, development and
documentation of Contingency Plans for ameliorating those risks;
(5)Design, development and documentation of comprehensive Systems Security
Plans, covering at a high level the infrastructure, policies and procedures
which define the systems security profile for the analyzed systems;
(6)Development of Security Features Users Guides specific to selected networks,
desktop computers, servers and data base systems;
(7)Design, development, and validation of System Test and Evaluation (ST&E)
reviews for new and/or legacy systems.
(8)Development of specific policies and procedures for compliance with FISMA
and FISCAM requirements and best practices for systems security controls in
such areas as system development life cycle, configuration management, change
management, separation of duties, software architecture, software library
management,
b.Specific Hardware / Software Qualifications:
(1) Requirements Analysis and Design of network-based intrusion detection
systems
(2)Network Engineering - installation, configuration and support for CISCO
network management software and equipment
switches - 2+ years
routers - 2+ years
CISCO Works - 2+ years
(3)Intrusion Detection System - installation, configuration and support for
CISCO IDS software and hardware
•IDS Probe Hardware: Cisco 4200 Series Sensors (including 4208/4235/4250
Appliance Sensors) switches - 2+ years
•IDS Probe Software: Cisco Sensor Software version 4.x (3.x, 2.x) - 2+
years
•IDS Master Console (Director) Software: VMS Bundle 2.2.3 for Windows or
Solaris - 1 year
•IDS Probe Attack Signature download and configuration - 2 years
(4)Intrusion Detection System - Operation and monitoring
IDS log analysis
IDS shunning implementation
IDS log data base development and reporting
Staff training on the operation and monitoring of IDS hardware and software
(5)Firewalls - Assess network vulnerabilities and security requirements, and
design, install and implement one or more Firewalls at points of interface
between the Division’s network and external networks, to protect the
former from unauthorized access through the latter
Cisco PIX firewall - 2 year
Other Stateful and Proxy-based firewall software - 1 year
(6)Vulnerability & Patch Scans - Configures, builds templates, and executes
vulnerability and patch scan software. Analyses results and works closely with
system administrators and DBAs to remediate vulnerabilities, or document the
business requirements which make the acceptance of the risks associated with
identified vulnerabilities acceptable.
Foundstone Server Scan Software - 1 year
AppDetective Data Base Scan Software - 1 year
HFNetChk Patch Scan Software - 1 year
Performs a full range of systems security accreditation and certification
tasks, and engineers IDS, firewall, SIM, and vulnerability scan solutions.
JOB REQUIREMENTS
---------------------------------------------------
Performs a full range of systems security accreditation and certification
tasks, and engineers IDS, firewall, SIM, and vulnerability scan solutions.
Network Engineering - installation, configuration and support for CISCO network
management software and equipment
switches - 2+ years
routers - 2+ years
CISCO Works - 2+ years
CONTACT
---------------------------------------------------
Paul Coleridge
SR Recruiter
Knowledge Consulting Group
VA Office 703 467 2000 x 115
Toll Free 866 311 0758 x 115
Cell 703 963 2188
Email:Paul.Coleridge@knowledgecg.com
www.Knowledgecg.com
Knowlewdge CG
Paul Coleridge
Sr Recruiter
paul.coleridge@knowledgecg.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
