CONSULTANT (Key Personnel)
Serves as information security subject matter expert in an information technology enterprise architecture environment. Acquired in-depth knowledge of FISMA, NIST, NSA, and related industry security policies, standards, procedures, guidelines, and best practices. Comprehensive knowledge of incident detection, analysis, coordination and response; auditing systems, databases, and applications; and vulnerability assessments and compliance monitoring. Security engineering experience including designing, configuration, integration, and deployment of security tools. Subject matter expert experience providing analysis and recommendation for resolution of information security problems based on knowledge of major information security systems, products, and services, and an understanding of their limitations. Adept at researching and evaluating emerging information technologies relevant to information security; interpreting requirements and providing analytical reviews for system architecture, equipment, and software; and recommendations. Excellent verbal and written communication skills; capable of communicating information security concepts to others in technical and non-technical terms.
An advanced degree in Computer Science, Information Systems, Engineering, Business, or other related discipline is preferred. This position requires ten (10) years of general experience, eight (8) years of specialized experience in information security and five (5) years information technology experience.
General Experience: Ten (10) years experience in the development of policy, regulations and doctrine in information technology development. Information Security Specialized Experience: Eight (8) years experience in implementing FISMA, NIST, NSA, and related industry security policies, standards, procedures, guidelines, and best practices. Experience in incident detection, analysis, coordination and response; auditing systems, database, and applications; vulnerability assessments and compliance monitoring. Information Technology Experience: Five (5) years experience integrating, developing or deploying security products in an enterprise environment.
An advanced degree in Computer Science, Information Systems, Engineering, Business, or other related scientific or technical discipline considered equivalent to two (2) years generalized and two (2) years information security specialized experience. Certificates such as Microsoft’s MCSE, or Cisco’s, CCNA, CCDA or CCIE, may be considered equivalent to two (2) years of general experience and two (2) years of information technology experience. The CISSP certificate may be considered equivalent to two (2) years of INFOSEC experience.
The Goal,Inc. - 2 years ago