Today
Top Secret/SCI
Unspecified
Unspecified
Reston, VA (On-Site/Office)
Blackstone Talent Group, an award-winning technology consulting and talent agency, is seeking a DevSecOps Engineer to join our team at our client's site in Reston, VA.
Security Clearance Required: TS/SCI
The Opportunity:
As a security test engineer on our team, you'll work with engineers and developers to evaluate software and systems developed for the Department of Defense. Specifically, you will apply your critical thinking and analytical skills to assess Linux systems built within a virtual or containerized environment. You'll work on building security test plans with test cases based on Remedy and Jira change requests. Using automated and manual processes, you'll generate data and execute the test cases to see how the software or operating system performs against vulnerabilities. Then, document and interpret the results, communicating security risks to the development or engineering teams so they can improve the software's or system's security. You'll automate continuous security and performance testing and monitor the health of the Assured Compliance Assessment Solution (ACAS) and other testing tools. This is an opportunity to leverage your skills by writing the code to automate security processes. You'll also further your experience in engineering secure solutions for the testing team and explore new areas, such as cloud computing.
Requirements:
Security Clearance Required: TS/SCI
Blackstone Talent Group is a wholly owned subsidiary of Blackstone Technology Group, a global IT services and software firm that implements technological solutions across commercial industry verticals and the US Federal Government. Blackstone's global talent augmentation practice was founded in 1998. Blackstone Talent Group has offices in San Francisco, Denver, Houston, Colorado Springs, and Washington, DC. We specialize in providing clients the best talent across a variety of industries and sectors.
EOE of Minorities/Females/Veterans/Disabilities
Security Clearance Required: TS/SCI
The Opportunity:
As a security test engineer on our team, you'll work with engineers and developers to evaluate software and systems developed for the Department of Defense. Specifically, you will apply your critical thinking and analytical skills to assess Linux systems built within a virtual or containerized environment. You'll work on building security test plans with test cases based on Remedy and Jira change requests. Using automated and manual processes, you'll generate data and execute the test cases to see how the software or operating system performs against vulnerabilities. Then, document and interpret the results, communicating security risks to the development or engineering teams so they can improve the software's or system's security. You'll automate continuous security and performance testing and monitor the health of the Assured Compliance Assessment Solution (ACAS) and other testing tools. This is an opportunity to leverage your skills by writing the code to automate security processes. You'll also further your experience in engineering secure solutions for the testing team and explore new areas, such as cloud computing.
Requirements:
- DoD 8570.01 IAT II compliant Certification active within one year of expiration
- Experience with multiple system environments, preparation of test plans and reports
- Experience with programming and scripting languages, such as Java, Python, PowerShell, or Bash, to develop automated processes and troubleshoot and fix actions.
- Understanding of containerized environments, the CI/CD pipeline, and related technologies, such as Kubernetes, Docker, or Enterprise Cloud native solutions
- Experience with DoD vulnerability management tools, ACAS, including Tenable's Security Center/Tenable.sc, Nessus Network Monitor/Passive Vulnerability Scanner, Nessus Manager and Agent, and Nessus Scanners
- Knowledge of data security administration principles, methods, and techniques
- Ability to support the administration of the test networks and systems that use VMware and Linux operating systems within a virtual containerized environment.
- Position of or the ability to obtain an additional computing certification in Linux
- Experience with technical writing on POA&M's, Risk Acceptance, and IA Controls
- Experience with DoD STIG's and network compliance analysis
- Knowledge of DoD policies and procedures, including DoD Risk Management Framework, ICD-503, NIST 800-53, and ISO-9001
Security Clearance Required: TS/SCI
Blackstone Talent Group is a wholly owned subsidiary of Blackstone Technology Group, a global IT services and software firm that implements technological solutions across commercial industry verticals and the US Federal Government. Blackstone's global talent augmentation practice was founded in 1998. Blackstone Talent Group has offices in San Francisco, Denver, Houston, Colorado Springs, and Washington, DC. We specialize in providing clients the best talent across a variety of industries and sectors.
EOE of Minorities/Females/Veterans/Disabilities
group id: bstone
