Announcement Number: 19-AHOCT-08 Location: Washington, DC Salary: 120,000 to $170,000 per year Appointment Type: Permanent Work Schedule: Full Time Relocation expenses: None Point of Contact: ahamilton@analogiks.com Opening/Closing Dates: 10/12/2019 - 10/21/2019 About the Position The Application and Systems Security Engineer is a multifaceted role that combines the strengths and responsibilities of an Application Security Engineer, a Systems Security Engineer, and an overall Penetration Tester and security vulnerability expert. Responsibilities If you are selected for this position, you will work with Subject Matter Experts, developers and IT Security staff in performing the following duties: Identifies and mitigates security issues Provide suitable evidence and documentation for security related activities Identifies and resolves security breaches Key Requirements Must be a US Citizen Degree in Computer Science, Information Systems, Engineering, or other related scientific or technical discipline At least 5 years of experience as an Information Systems Security Engineering Professional (CISSP-ISSEP) Qualifications In order to qualify, you must meet the education and paid experience requirements described below. You will receive credit for all qualifying experience. Your application must clearly describe your relevant experience. Transcripts and applicable certifications will be required as part of your application. Unofficial transcripts will be accepted however, official transcripts will be required if selected. EDUCATION: A Bachelor's degree or higher in Computer Science, Information Systems, Engineering, or other related scientific or technical discipline. EXPERIENCE: Candidates must have at least 5 years experience in leading application and system security initiatives; providing technical expertise in designing secure public-facing and internal-facing services and APIs; analyzing security risks and providing mitigation activities and security controls to resolve any identified security risks across systems, application, and environments; and design and automate penetration testing across environments to identify and resolve vulnerabilities. KNOWLEDGE, SKILLS AND ABILITIES: In addition to the experience identified above, candidates must possess the following knowledge, skills and abilities: Working knowledge of toolsets, such as but not limited to: nikto, Wireshark, Metasploit, Burp Suite Working knowledge of waterfall and agile (Scrum & Kanban) SDLC Skill in authoring, editing, and maintaining design documentation, standard operating procedures, and system configuration documentation. Working knowledge of Java EE configurations. Ability to communicate fluently in the English language, in writing and orally. Working knowledge of DevOps, test driven development, and test automation for all levels of the test Benefits We a comprehensive and industry-competitive array of benefits to meet the different needs of our diverse workforce. Additionally, the firm offers a generous 401(k) plan with an attractive match, and with its training and education reimbursement program, fosters a culture of learning to enhance the professional development of its employees. Our recognition and rewards are aggressive and are geared towards affirming the achievements and performance of outstanding employees. Benefits include: Life Insurance Long term & Short term Disability Health, Dental and Vision insurance Flexible Spending Account 401(k) Retirement Plan Tuition Reimbursement 529 Plans Paid Leave