It Security Specialist - Penetration Tester

Job Title: IT Security Specialist - Penetration Tester
Location: Silver Spring, MD
Clearance Required: Must be able to obtain a Public Trust
Description
The IT Security Specialist - Pen tester is responsible for conducting penetration testing and vulnerability assessments to identify and mitigate security risks within the NWS information systems. They play a vital role in ensuring NWS infrastructure data
security and integrity.
Key Responsibilities:

• To identify security weaknesses, perform penetration testing and vulnerability assessments on NWS information systems, networks, and applications.
• Develop detailed test plans, including selecting appropriate tools and methodologies for conducting penetration tests.
• Execute penetration tests, simulating real-world attacks to evaluate the effectiveness of existing security controls.
• Identify and exploit vulnerabilities, documenting findings and providing recommendations for remediation.
• Collaborate with system administrators and developers to implement necessary security measures and patches.
• Stay updated with the latest security vulnerabilities, attack techniques, and countermeasures.
• Conduct research and participate in security forums and communities to enhance expertise and knowledge.
• Document findings, prepare detailed reports, and communicate recommendations to stakeholders.
• Assist in incident response activities, investigating security incidents and providing technical expertise.
• Provide guidance and support to other team members on penetration testing methodologies and techniques.
• Stay informed about emerging security trends and contribute to developing security best practices and policies.

Required Skills /Education/ Certifications & Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field.
• Knowledge of DOC, NOAA, and NWS IT security policies and implementation standards or those of similar sized organizations AND comprehensive understanding of NIST guidance to include, but not limited to, NIST Special Publications and Federal Information Processing Standards.
• At least 5 years of recent experience (within the last 6 years) in applying IT security concepts, methodologies, principles, procedures and using industry-standard IT security tools
• At least 5 years of recent experience (within the last 6 years) with enterprise architecture methodologies, concepts, procedures, principles, and tools
• At least 5 years of recent experience (within the last 6 years) in contingency planning and backup and recovery best practices and application of NIST guidance in this area
• At least 5 years of recent experience (within the last 6 years) in using technical testing tools (Tenable Security Center, ArcSight, IBM Big Fix, etc.)
• At least 5 years of recent experience (within the last 6 years) in conducting penetration testing or the ability to bring in a Penetration Tester when required
• At least 5 years of performing assessments of Federal Information Systems using the Risk Management Framework

Required Certification/s (1 of the following)

• Certified Information Systems Security Professional (CISSP)
• Certified Information Systems Auditor (CISA)
• GIAC Certified Incident Handler (GCIH)
• GIAC Systems and Network Auditor (GSNA)
• Electronic Commerce Council Certified Ethical Hacker (CEH)
• ISC2 Certified in Governance, Risk and Compliance(CGRC)
• Security Certified Network Professional (SCNP)
• Security Certified Network Architect (SCNA)

Desired Skills:

• Proficiency in verbal and written communication.
• Proficiency in interpersonal skills.
• Proficiency in handling multiple tasks concurrently.
• Proficiency in project and time management.
• Ability to adjust to changing priorities.
• Ability to work in a cohesive team-oriented environment.

About IBSS Corp.

Since 1992, IBSS, a woman-owned small business, has provided transformational consulting services to the Federal defense, civilian, and commercial sectors. Our services include cybersecurity and enterprise information technology, environmental science and engineering (including oceans, coasts, climate, and weather), and professional management services.

Our approach is to serve our employees by investing in their growth and development. As a result, our employees bring greater capabilities and provide an exceptional level of service to our clients. In addition to creating career development opportunities for our employees, IBSS is passionate about giving back to the community and serving the environment. We strive to leave something better behind for the next generation.

We measure our success by the positive impact we have on our employees, clients, partners, and the communities we serve. Our tagline, Powered by Excellence, is a recognition of the employees that make up IBSS and ensures we deliver results with quality, applying industry best practices and certifications.

IBSS offers a competitive benefits package including medical, dental, vision and prescription drug coverage with company-paid deductible, paid time off, federal holidays, matching 401K plan, tuition/professional development reimbursement, and Flex-Spending (FSA)/Dependent Care Account (DCA) options.

IBSS is an affirmative action and equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information. Click https://www.eeoc.gov/poster to see, The EEO is the law.

If you require reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to the HR Department, Francesca Urrutia at (703) 826-4302, or email at HR@ibsscorp.com