View all jobs
Cybersecurity Auditor – Senior
Ft. Belvoir, VA · Information Technology!!! MUST HOLD ACTIVE SECRET CLERANCE !!!
We are is seeking a Senior Cybersecurity Auditor to perform complex cybersecurity inspections, vulnerability evaluations, and compliance assessments. This role supports DoD mission environments and will lead Command Cyber Readiness Inspections (CCRIs) and penetration testing efforts.
KEY RESPONSIBILITIES
REQUIRED QUALIFICATIONS
PREFERRED QUALIFICATIONS
If you are interested in getting more information about this opportunity, please contact Irina Rozenberg Recruiting@arielpartners.com at your earliest convenience.
At Ariel Partners, we solve the most difficult problems that inhibit technology from enabling our customers to achieve their goals. Our vision is to be recognized by our stakeholders as an elite provider of IT solutions, so when they have their biggest challenges, we are on their short list. We are looking for team members who share our values of: Integrity to do the right thing even when it hurts; Commitment to the long-term success and happiness of our customers, our people, and our partners; Courage to take on difficult challenges, accept new ideas, and accept incremental failure; and the constant pursuit of Excellence. Ariel Partners is an Equal Opportunity Employer in accordance with federal, state, and local laws.
We are is seeking a Senior Cybersecurity Auditor to perform complex cybersecurity inspections, vulnerability evaluations, and compliance assessments. This role supports DoD mission environments and will lead Command Cyber Readiness Inspections (CCRIs) and penetration testing efforts.
KEY RESPONSIBILITIES
- Conduct complex security analysis of classified and unclassified systems for compliance with DoD requirements.
- Perform Command Cyber Readiness Inspections (CCRIs) and cybersecurity vulnerability evaluations.
- Execute vulnerability and penetration testing on networks, databases, and applications.
- Analyze and define security requirements for enterprise IT systems.
- Develop remediation recommendations and advise leadership on security posture improvements.
- Support compliance evaluations against DISA STIGs and USCYBERCOM CTO compliance programs.
- Provide enterprise-level technical guidance for security risk reduction and system optimization.
REQUIRED QUALIFICATIONS
- Must hold Active Secret Clerance
- Seven (7) years of IT experience
- Five (5) years of cybersecurity experience
- Proven proficiency performing CCRI/ vulnerability assessment/ penetration testing on networks, databases, computer applications and IT frameworks.
- Strong analytical and problem-solving skills for resolving security issues.
- Strong skills implementing and configuring networks and networks components.
- Command Cyber Readiness Inspection certification or equivalent in at least one of the following areas:
- Nessus Scan Analysis
- Operating Systems (Windows, Unix)
- Boundary Defense) Network Policy, Router, Firewall)
- Internal Defense (L2 Switch, L3 Switch)
- DNS (Policy, BIND/Windows)
- HBSS (remote console, AV, ABM, PA HIPS, ePO)
- Traditional Security (Common, Basic, NCV, SCV)
- Wireless Communications (BES, Handhelds)
- Tenable Certified NESSUS Auditory
- Knowledge and understanding of DOD security regulations, DISA Security Technical Implementation Guides
- Understanding of SCAP
- Knowledge of and proficiency with:
- VULNERATOR
- USCYBERCOM CTO Compliance Program
- Wireless vulnerability assessment
- Web Services (IIS, Apache, Proxy)
- Database (SQL Server, Oracle)
- Email Services (Exchange)
- Vulnerability Scans (NESSUS, SCCM)
- Knowledge of Phishing exercises
- Cloud Security
- Operational Technology
- Artificial Intelligence
- USB Detection
- Physical Security
- Required to be a DISA Risk Management Executive, Cyber Standards Branch Certified Command Cyber Readiness Inspection (CCRI) Team Lead and have a certification in penetration testing, such as:
- Licensed Penetration Tester (LPT)
- Certified Expert Penetration Tester (CEPT)
- Certified Ethical Hacker (CEH)
- Global Information Assurance Certification Penetration Tester (GPEN)
- Familiarity with AUTOCHECKLIST Tool
- Strong verbal communication skills, including the ability to brief government leadership and technical stakeholders.
PREFERRED QUALIFICATIONS
- Experience with VULNERATOR
- Experience with SCCM vulnerability scans
- Experience with Exchange, IIS/Apache/Proxy services, and SQL/Oracle databases
If you are interested in getting more information about this opportunity, please contact Irina Rozenberg Recruiting@arielpartners.com at your earliest convenience.
At Ariel Partners, we solve the most difficult problems that inhibit technology from enabling our customers to achieve their goals. Our vision is to be recognized by our stakeholders as an elite provider of IT solutions, so when they have their biggest challenges, we are on their short list. We are looking for team members who share our values of: Integrity to do the right thing even when it hurts; Commitment to the long-term success and happiness of our customers, our people, and our partners; Courage to take on difficult challenges, accept new ideas, and accept incremental failure; and the constant pursuit of Excellence. Ariel Partners is an Equal Opportunity Employer in accordance with federal, state, and local laws.