Senior Secret Cleared IT Security Vulnerability Specialist (10+ Years) to provide support and advice on IT Security related audits and assess departm
S.i. Systems
Ottawa, ON-
Number of positions available : 1
- Salary To be discussed
-
Contract job
- Published on April 26th, 2024
-
Starting date : 1 position to fill as soon as possible
Description
Our valued Public Sector client is seeking the services of Senior Secret Cleared IT Security Vulnerability Specialist (10+ Years) to provide to provide support and advice on IT Security related audits and assess departmental IT Security Mechanisms within the Public Sector
Objective:
Our client requires specific skill and knowledge with respect to IT Security to assess whether appropriate departmental IT security mechanisms are in place and working properly. The objective is to provide IT security technical specialists to support the IT audit team in conducting IT security related audits, reviews and advisories on an as-and-when requested basis
Must Haves:
- Two of the following certifications: Global Information Assurance Certification (GIAC) Security Essentials Certification (GSEC); GIAC Security Expert (GSE); GIAC Penetration Tester (GPEN); GIAC Certified Incident Handler (GCIH) EC-Council Certified Ethical Hacker (CEH); CompTIA PenTest+;CompTIA Advanced Security Practitioner (CASP+).
- SECRET Clearance
- Review, analyze, and/or apply:
- Threat agents analysis tools and other emerging technologies including privacy enhancement, predictive analysis, VoIP, data visualization and fusion, wireless security devices, PBX and telephony firewall;
- War dialers, password crackers;
- Public Domain IT vulnerability advisory services;
- Network scanners and vulnerability analysis tools such as SATAN, ISS, Portscan & Nmap;
- Networking Protocols (HTTP, FTP, Telnet);
- Internet security protocols such as SSL, S-HTTP, S-MIME, IPsec, SSH, TCP/IP, UDP, DNS, SMTP, SNMP;
- Wireless Security;
- Intrusion detection systems, firewalls and content checkers; and,
- Host and network intrusion detection and prevention systems - Anti-virus management;
- Identify threats to, and technical vulnerabilities of, systems including web-facing applications
- Collect, collate, analyze and disseminate public domain information related to network computer threats and vulnerabilities, security incidents and incident responses;
- Develop test plans and customized testing methodologies based on Project Authority or their delegate’s approved engagement plans;
- Write customized scripts to scan systems and databases and review results of scans to provide weaknesses and associated risk, impact, fixes and level of effort required for remediation actions.
- Conduct configuration review and analysis over departmental IT security solutions, checking settings and maintenance processes;
- Assess the implementation and application of security policies and procedures;
- Examine compliance monitoring and reporting and identify areas of non-compliance; and,
Apply
Requirements
Level of education
undetermined
Work experience (years)
undetermined
Written languages
undetermined
Spoken languages
undetermined
Other S.i. Systems's offers that may interest you