Innova Solutions

Cybersecurity IT Consultant (NIST) - Remote. Can be fully remote but candidate may have to travel to Maryland for training for field engineers; however, this training may be able to be accomplished remotely.. Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).. Knowledge of information technology (IT) risk management policies, requirements, and procedures.. Applicable certifications such as CEH, Security+, CGRC/CAP, GSEC, CASP+, Cloud+, or PenTest+

it consultant

Cybersecurity IT Consultant (NIST) - Remote <ul><li>This is a 6 month contract to provide upload of security software and provide maintenance and reporting</li><li>Assignment to begin end of Aug or Sept.</li><li>Can be fully remote but candidate may have to travel to Maryland for training for field engineers; however, this training may be able to be accomplished remotely.</li><li>Assignment is deadline based - uploading may require 40 hour work weeks followed by maintenance at 20 hrs/week. Contract to complete task to meet client deadlines.</li><li>No clearance needed</li><li>Project is retrieving data for a government installation and this candidate will need to assure secure transfer of data for this 5 month period.</li><li>Experience with NIST 800-53 Risk Management Framework (RMF) and comparable security frameworks required.</li></ul> Key Responsibilities<ul><li>Conduct risk assessments, ensure compliance with federal regulations, and collaborate with stakeholders to mitigate security risks while enhancing overall cybersecurity posture</li><li>Perform Static Application Security Testing (SAST) on delivered software and generate Developer Workbook (DWB) and DISA STIG reports</li><li>Produce Plan of Action and Milestone (POA&M) reports to manage progress of corrective efforts</li><li>Maintain Ports, Protocols, and Services Management (PPSM) documentation IAW DoDI 8551.01</li><li>Generate Vulnerability Management Plans (VMPs) that address processes for dissemination of vulnerability patches to operational systems</li><li>Create Continuous Integration/Continuous Development (CI/CD) procedures to support ongoing maintenance of key information systems</li><li>Capture security controls used during the requirements phase to integrate security within the process, to identify key security objectives, and to maximize software security while minimizing disruption to plans and schedules.</li><li>Compile and write documentation of program development and subsequent revisions, inserting comments in the coded instructions so others can understand the program.</li><li>Perform secure programming and identify potential flaws in codes to mitigate vulnerabilities.</li><li>Translate security requirements into application design elements including documenting the elements of the software attack surfaces, conducting threat modeling, and defining any specific security criteria.</li></ul>Required Qualifications<ul><li>A bachelor's degree in computer science, information technology, cybersecurity, or a related field</li><li>Experience with NIST 800-53 Risk Management Framework (RMF) and comparable security frameworks</li><li>Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).</li><li>Knowledge of secure configuration management techniques. (e.g., Security Technical Implementation Guides (STIGs), cybersecurity best practices)</li><li>Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).</li><li>Knowledge of information technology (IT) risk management policies, requirements, and procedures. (DoD and NIST)</li><li>Ability to develop secure software according to secure software deployment methodologies, tools, and practices.</li><li>Excellent written, verbal communication, and interpersonal skills</li><li>Strong time management and organizational skills</li><li>Comfortable working in a dynamic and fast-paced environment</li></ul>Desired Qualifications<ul><li>Advanced degree in computer science, information technology, cybersecurity, or a related field</li><li>Applicable certifications such as CEH, Security+, CGRC/CAP, GSEC, CASP+, Cloud+, or PenTest+</li><li>Experience processing Vita 49 datasets and Red Hat 9 Linux OS</li><li>Working knowledge of DoD Container Hardening Guidance and DoDI 8500.01</li><li>Experience with Fortify and Anchore vulnerability scanning tools</li></ul> PAY RANGE AND BENEFITS:Pay Range- $170-220K/year range Benefits: Innova Solutions offers benefits( based on eligibility) that include the following: Medical & pharmacy coverage, Dental/vision insurance, 401(k), Health saving account (HSA) and Flexible spending account (FSA), Life Insurance, Pet Insurance, Short term and Long term Disability, Accident & Critical illness coverage, Pre-paid legal & ID theft protection, Sick time, and other types of paid leaves (as required by law), Employee Assistance Program (EAP).Website: https://www.innovasolutions.com/ is an Equal Opportunity Employer and prohibits any kind of unlawful discrimination and harassment. Innova Solutions is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment on the basis of race, color, religion or belief, national origin, citizenship, social or ethnic origin, sex, age, physical or mental disability, veteran status, marital status, domestic partner status, sexual orientation, or any other status protected by the statutes, rules, and regulations in the locations where it operates. If you are an individual with a disability and need a reasonable accommodation to assist with your job search or application for employment, please contact us at or (770) 493-5588. Please indicate the specifics of the assistance needed. Innova Solutions encourages all interested and qualified candidates to apply for employment opportunities. Innova Solutions (HireGenics/Volt) does not discriminate against applicants based on citizenship status, immigration status, or national origin, in accordance with 8 U.S.C. § 1324b.The company will consider for employment qualified applicants with arrest and conviction records in a manner that complies with the San Francisco Fair Chance Ordinance, the Los Angeles Fair Chance Initiative for Hiring Ordinance, and other applicable laws.ABOUT INNOVA SOLUTIONS: Founded in 1998 and headquartered in Atlanta, Georgia, Innova Solutions employs approximately 50,000 professionals worldwide and reports an annual revenue approaching $3 Billion. Through our global delivery centers across North America, Asia, and Europe, we deliver strategic technology and business transformation solutions to our clients, enabling them to operate as leaders within their fields.American Cybersystems, Inc is acting as an Employment Business in relation to this vacancy.

START NEW SEARCH