Previous Job
Previous
SI - Security Consultant - Level 1
Ref No.: 16-02925
Location: Gaithersburg, Maryland
Start Date / End Date: 10/24/2016 to 12/08/2016
Position Overview
Three or more years of experience in an Information Security or Information Technology discipline with demonstrated experience in one or more the following:

• Experience providing and validating security requirements related to cloud security for private, public and hybrid
• Experience with providing security consulting services for global deployments
• Experience providing and validating security requirements related to information system design and implementation
• Experience providing and validating security requirements related to a broad range of operating systems and databases
• Experience conducting risk assessments, vulnerability assessments, vendor and third party risk assessments and recommending risk remediation strategies
• Experience in the use of tools and methods to identify security exposures and business risks
• Knowledge of common information security standards, such as: ISO 27001/27002, NIST, PCI DSS, ITIL, COBIT
• Knowledge of OWASP top 10 and remediation's of attacks against web applications. The ability to convey the risks to IT and business stakeholders
• Familiarity with information system attack methods and vulnerabilities
• Working experience with the design and engineering of web-based multi-tier information systems and architecture design
• Working experience with web technologies, application firewalls and programming languages
• Working experience with operating systems and database platforms
• Working experience with mobile applications and mobile enterprise application platforms
• Penetration Testing

Relevant Certifications / Qualifications:
Any of the following certifications would be highly beneficial:
• CISSP
• ISO27001 Lead Auditor
• CCP IA Architect / SIRA / IA Auditor
• PCI QSA
• CISM/CISA
• CEH