Lead Cybersecurity Testing Analyst
Job Summary
Emerging Tech (ET) is seeking a Lead Cyber Security Testing Analyst to support our government client on-site at Langley AFB, Langley, Virginia. This position will provide on-site support to perform Independent Verification and Validation (IV&V) security testing of a Commercial Solutions for Classified system. The government customer is seeking to achieve Commercial Solutions for Classified (CSfC) approval from National Security Agency (NSA) and Authority to Operate (ATO) from Authorizing Official (AO).
Responsibilities and Duties
This role oversees the development of all testing and works in tandem with the Technical PM to complete all contracted deliverables. This includes leading the supporting Testing Analyst, both off-site and on-site.
Facilitates and manages all activities related to NSA CSfC and external stakeholders (Department of State etc.).
Evaluates security solutions to ensure they meet security requirements for processing classified information.
Defining the testing activities for subordinates – testers or test engineers.
All responsibilities of test planning.
Manage all necessary resources to execute the testing activities.
Prepare the status report of testing activities.
Update project manager regularly about the progress of testing activities.
To read all the documents and understand what needs to be tested.
Based on the information procured in the above step decide how it is to be tested.
Inform the test lead about what all resources will be required for testing.
Develop test cases and prioritize testing activities.
Execute all the test case, document test results, and update test log.
Work with other engineers and administrators to capture the required evidence.
Engage the supporting Testing Analyst to review and validate the test cases.
Assist with the development of Testing Report.
Qualifications and Skills
Active Secret Security Clearance required (if not currently cleared, must be willing to complete SF 86, and must be cleared at an interim Secret level, minimum, prior to project initiation)
Experience within Information Technology programs
Knowledge of Commercial Solutions for Classified (CSfC) Capability Packages (CP)
Experience must include at least two (2) of the following areas: knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools
Preferred Skills and Certifications
Experience documenting security controls and conducting IA assessments.
Knowledge of current security tools, hardware/software security implementation, communication protocols, and encryption techniques/tools
Experience with the DoD
CompTIA Security+
CompTIA Network+
CISSP