Security Assessment Tester Raytheon
Washington, DC

Job Description

How do you protect against those with bad intentions? You create innovative technical processing solutions and collaborate with some of the finest talent in the IT field. Whether you're an Information Systems Technologist or an Encryption Strategy Expert, at Raytheon you'll grow a varied and rewarding career. And you'll be supported with a comprehensive and competitive benefits package that promotes work/life balance. If you're ready to take on today's big challenges, discover a world of opportunity at Raytheon.

* America's Best Large Employers by Forbes
* Career & Development Opportunities
* Full-time
* Entry, Mid, Senior

Back to Job Navigation (Overview)

Responsibilities

SECURITY ASSESSMENT TESTER

Raytheon Cybersecurity & Special Missions (CSM) provides cybersecurity and advanced intelligence solutions that strengthen our global customers' critical infrastructures, information systems and mission.

Raytheon supports a mission critical full life-cycle Enterprise Information Technology (IT) Services contract, which includes strategic initiatives, establishing policies, providing governance, defining IT solutions, and delivering IT capabilities through innovation, transformation, and collaboration. Raytheon is looking for cleared, industry leading IT professionals to deliver innovative, mission critical IT capabilities and services in support national defense.

JOB SUMMARY:

The Security Assessment Tester will examine information systems to determine if vulnerabilities exist and, if they are found, what mitigating strategies can be applied. The end goal is to ensure the systems integrity by identifying and mitigating potential avenues of exploitation, including system level attacks and user level attacks. The Security Assessment Tester coordinates planning, scheduling, and testing of projects in the Certification and Accreditation (C&A) process.

JOB DUTIES /TASKS & RESPONSIBILITIES:

* Develop and document security evaluation test plan and procedures
* Review and make recommendations on program-level documentation (e.g., requirements specification, system architecture, design documents, test plans, security plans, etc.).
* Assist in researching, evaluating, and developing relevant Information Security policies and guidance.
* Actively participate in or lead technical exchange meetings and application review boards, documenting actions items/results of these events.
* Brief management, as needed, on the status of action items and/or results of activities.
* Conduct hands-on security testing analyze test results, document risk, and recommend countermeasures.
* Coordinate with other program elements conducting security testing.
* Assess/calculate risk based on threats, vulnerabilities, and shortfalls uncovered in testing.
* Identify mitigating countermeasures to identified threats, vulnerabilities, and shortfalls.
* Identify needs for testing equipment and gaps in testing capabilities; conduct research on and evaluation of automated testing tools and provide summaries and reports to sponsor on the tool capabilities, in support of potential procurement by the Sponsor.
* Perform network security analysis and risk management for designated corporate networks.
* Develop, assemble, and submit C&A testing results reports that document testing activity and results to support the creation of C&A risk assessments and C&A approval packages.
* Clarify security requirements and recommend security countermeasures
* Read and analyze SSPs and develop understanding of systems and applications into security test plans.

Minimum Qualifications

EXPERIENCE & SKILLS:

* Security Assessment Experience (specific computer languages, systems or technologies, expertise with the subject matter or technology outweighs the number of years of experience, especially with emerging technologies.), commensurate with education, as outlined below.
* Strong technical skills and analytic abilities, as well as, experience performing network security analysis and risk management.
* Broad knowledge of network architectures and network management tools
* Demonstrated ability to perform complex technical tasks in pursuit of overall goals with minimal direction.
* First rate written and oral communications skills.
* Ability to translate an understanding of systems and applications into security test plans and perform hands on security testing.
* Knowledge of risk management methodologies.
* Demonstrated ability to analyze test results and suggest mitigations for security problems.
* Broad knowledge of Information Security policies and guidance, as well as the ability to assist in researching, evaluating, and developing relevant security policies and guidance.
* Working knowledge of Intelligence Community Information Assurance policies and regulations and how the certification and accreditation (C&A) process relates to it.
* Ability and skill in using Information Assurance test and risk assessment tools.

EDUCATION:

* Degree in Computer Science, Information Systems, Engineering, Business, or a scientific or technical discipline
* Masters plus 3 years' experience; Bachelors plus 5 years' experience; Associate plus 7 years' experience; High School/GED plus 9 years' experience.

CERTIFICATIONS:

* Either an ISC2 CISSP certification or SANS GSEC certification within 9 months of start date on the contract.

SECURITY CLEARANCE:

Qualified applicants may be subject to a security investigation and must meet minimum qualifications for access to classified information.

* U.S. Citizenship and an active TS/SCI with favorable polygraph Security Clearance is required. *

Position is contingent upon contract award and may be filled by Team Raytheon members

This position requires a US person.

126275BR 126275

Business Unit Profile

Raytheon Intelligence, Information and Services delivers innovative technology to make the world a safer place. Our expertise in cyber, analytics and automation allow us to reach beyond what others think is possible to underpin national security and give our global customers unique solutions to solve the most pressing modern challenges -- from the cyber domain to automated operations, and from intelligent transportation solutions to creating clear insight from large volumes of data. IIS operates at nearly 550 sites in 80 countries, and is headquartered in Dulles, Virginia. The business area generated $6.1 billion in 2017 revenues. As a global business, our leaders must have the ability to understand, embrace and operate in a multicultural world -- in the marketplace and the workplace. We strive to hire people who reflect our communities and embrace diversity and inclusion to advance our culture, develop our employees, and grow our business.

Relocation Eligible

No

Clearance Type

TS/SCI with Poly - Current

Expertise

Computer Engineering

Computer Science

Computer/Management Information Systems

Cyber Jobs

Data Networking

Systems Engineering

Technical

Type Of Job

Full Time

Work Location

DC - Washington

VA - McLean

Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.