The ideal candidate will be technically very sound and will have practical, professional, hands-on in each of the following areas:
? Information Technology:
Direct experience in one or more information technology disciplines (e.g. system administration, software development, networkengineering, etc.)
? Security Analytics:
Includes Threat Analysis (assessing susceptibility of systems to securitythreats), Vulnerability Assessment (identify and evaluate the impact of potential vulnerabilities to a system and its environment of operation and provide recommendations for compensating controls and solutions to mitigate), etc.
? IT security tools and processes:
E.g. SIEM, IDS/IPS, vulnerability assessment tools, authentication technologies, encryption technologies, firewalls, etc.
? IT Security Compliance (FISMA):
Developing, maintaining, and auditing compliance with FISMA, including keen understanding of the NIST RMF and the SP 800 publication series. Experience with other compliance regimes such as PCI-DSS and DOJ CJIS is a plus.
? Strong written and oral communication skills