Job Details

Sr. Security Control Assessor


Blue Canopy Group LLC


Rockville, MD 20847


Founded in 2001, Blue Canopy is an award-winning provider of business solutions in the public and commercial sectors. We're focused on delivering outcomes that matter by combining the best use of technology, process improvement, and the system of government. Our Mission is to serve our clients and help them achieve success by combing governance, industry experience, and information technology excellence.

At Blue Canopy, innovation, collaboration, and teamwork are the driving force behind our success. We are committed to hiring, retaining, and developing best-in-class professionals because we recognize that our team is what differentiates us in the marketplace as an industry-leader. We are driven by excellence, committed to integrity, and inspired to achieve limitless possibilities.

Blue Canopy is currently seeking a full time Security Control Assessment Engineer to provide offsite support in Washington, DC.

The Role:  

* Need experience in applications used to conduct the assessments (but not limited to):
+ Nmap
+ Netcat
+ Nipper Studio
+ Microsoft Baseline Security Analyzer
+ Tenable Nessus
+ Security Center
+ Wireshark
+ Core Impact
+ IBM Appscan Standard
+ Burp Suite Professional
+ Application Security AppDetective Pro
+ HP WebInspect
* Required skills/knowledge for security control assessment support includes:
+ Demonstrates 5-8 years of IT security experience in the IT security Federal arena
+ Possess applicable certifications and credentials such as Certified Ethical Hackers or the equivalent for penetration testing and vulnerability assessment work.
+ In-depth knowledge of laws, directives, orders, etc., pertaining to IT security and directing Federal government agencies.
+ Understanding of security requirements in a non-classified environment.
+ Familiarity with IT security products (hardware, software, and services), technologies, protocols, and best practices.
+ Prior experience writing material to satisfy NIST (National Institute of Standards and Technology) guidance, FISMA (Federal Information Security Management Act), FISCAM (Federal Information System Controls Audit Manual), for non-DOD Federal agencies.
+ Excellent written and oral communications skills.
+ Experience in scanning and testing tools, such as Nmap, Netcat, Nipper Studio, Microsoft Baseline Security Analyzer, Nessus, Wireshark, Core Impact, Appscan,

What You Need to Bring to the Table:  
* 5 to 8+ years Sr. Level knowledge and understanding of NIST 800-53 and FISMA
* 5 to 8+ years prior experience performing system testing (security or functional)
* Security Professional Certification (CISSP, CISA, CISM, GSEC)
* 5 to 8+ years of Information Technology experience
* 3 to 5+ years of experience with Information Security
* Bachelor's degree in information technology related field
* 5 to 8+ years of professional experience with 4-8 years of technical security assessment experience will be considered in lieu of a 4-year degree
* 1 to 3+ years "hands-on" technical experience in one of the following disciplines application development, software engineering, system administration, network administration or database administration experience
* Vulnerability scanning and analysis experience
* Excellent technical writing skills and attention to detail
* Exceptional communication skills
* Strong leadership and organizational skills
* Excellent facilitation skills and ability to lead group discussions
* Experience in mentoring and coaching staff
* This work will require up to 10% of travel in the Continental US.

Desired Qualifications
* Web application assessments
* Security architecture and design
* Security awareness and training
* Identity and access management
* Advanced technical degree
* Project planning and scheduling
* Experience in speaking or presenting at national and local security conferences and events

Operating at the intersection of mission and technology, Blue Canopy Group, LLC is one of the fastest growing woman-owned businesses in the Greater Washington, D.C. area. We focus on delivering outcomes that matter by harnessing the power of technology, combing governance with process improvement. We provide support to both Federal and Commercial clients in five areas: Mission Support Services, Cyber Security, Big Data Analytics, Cloud & Mobility and Agile Development. Our core values around commitment to clients and our people drive Blue Canopy in the relentless pursuit to innovate and help our clients' problem solve by building solutions as a team. Blue Canopy is headquartered in Reston, VA and employs over 400 highly skilled professionals.

Blue Canopy Group, LLC is EOE/AA/M/F/Vet/Disability

#CJ #DC #cb
Post Date:
Minimum Clearance:
25% - defined as 25% of your time traveling
Job Category:
Unspecified annual salary
Unspecified hourly wage
Group ID: