Senior Information Security Analyst

INFO SECURITY ANALYST IVLocation: Columbia, MDPosition Type: OnsiteContract Duration: 6 monthsRole SummaryWe are seeking an experienced Info Security Analyst IV to support FIPS 140 validation projects within a hands-on lab environment. This role focuses on security analysis, cryptographic validation testing, product evaluations, automation, and technical reporting in support of National Defense initiatives. The ideal candidate will have strong experience in cryptographic technologies, testing methodologies, and security engineering, along with a mandatory Cryptographic Validation Program (CVP) Certification.Key ResponsibilitiesSupport and execute FIPS 140 validation projectsPerform general security analysis and vulnerability testingConduct physical security testing and system-level logical analysisEvaluate products against Technology Type standardsPerform cryptographic and Public Key Infrastructure (PKI) testingExecute cryptographic algorithm testingConduct source code review activitiesDevelop technical reports and documentationAutomate testing through scriptingDevelop applications to support test casesAssist with product architecture and design analysisBuild and maintain testing environmentsAnalyze and troubleshoot security-related issuesRequired Technical SkillsMUST HAVE Cryptographic Validation Program (CVP) CertificationKnowledge of:Cryptographic encryption algorithmsKey exchange algorithmsHashing and message authentication algorithmsPKIRandom number generatorsExperience with programming languages such as:CC++PythonJavaExperience with testing automation and scriptingUnderstanding of security standard requirements and product complianceExperience with networking concepts including subnetting and routingKnowledge of security protocols including:SSHIPsecTLSExperience building testing environments and documenting resultsStrong troubleshooting and problem-solving skillsStrong multitasking and time management skillsPreferred / Nice-to-Have SkillsExperience working in a lab environmentExperience with Python programmingExperience with debugging tools such as:Android Debug Bridge (adb)WinDBGVisual StudioExperience with entropy source statistical analysisKnowledge of:OpenSSLOpenPGPActive DirectoryLinuxX.509 certificate validationVulnerability analysis and penetration testing experienceRelated certifications:CCNA / CCNP / CCIEJNCIA / JNCIS / JNCIP / JNCIEHands-on experience with hardware testing tools such as:OscilloscopeFunction generatorMulti-meterSignal generatorLocal to Columbia, MD areaQualifications & ExperienceBachelor’s degree requiredTypically requires 2–4 years of relevant experienceStrong written and verbal English communication skillsAbility to work onsite in a collaborative lab settingPrevious experience supporting security validation projects preferredAbout the Team / CompanyThe role supports the Accredited Testing and Evaluation (AT&E, Common Criteria/FIPS) team in a collaborative onsite environment focused on National Defense and cybersecurity initiatives. The team consists of 12 team members and 3 project managers supporting secure communications and product validation efforts.