Back to jobs

Senior Security Specialist - Threat Risk Assessments (TRA)

Job description

Eagle currently has a career opportunity for a Senior Security Specialist - TRA and we are looking to speak to qualified candidates with the skills and experience outlined below.

This position is a 6-month contract to start immediately.

Key Senior Security Specialist - TRA Skills

  • Expert knowledge in Application Security (8+ years)
  • Hands-On Experience conducting security risk assessment (10+years)
  • Experience conducting application vulnerability assessment/penetration test (5+years)
  • Current experience in Cloud Security and the evaluation/review/RFP of cloud-based service such as Amazon Web Services, Salesforce in a public sector environment
  • Experience working in the government/public sector (4+ years)
  • Experience implementing security policies, procedures and processes (4-8 years)
  • Current experience in external contract/vendor RFP (both Cloud and on-Premise): security requirements, evaluation, due diligence and review (5+ years)
  • Strong understanding of common vulnerability frameworks (CVSS, OWASP Top 10)
  • Professional designation in at least two of the following CISSP, CISA, CISM, CRISC and PMP
  • Strong understanding of Internet security and networking protocols.
  • Professional designation in at least two of the following CISSP, CISA, CISM, CRISC and PMP
  • Current Government Security Clearance
  • Advanced knowledge of security standards such as ISO 27001/27002, NIST, ISO 27018, COBIT and Cloud security frameworks

As Senior Security Specialist - TRA, you will be responsible for:

  • Perform security review(s): Threat Risk Assessments (TRA), vulnerability assessment, Cloud security assessment, technology review, application review, architecture review, project review, RFP evaluation
  • Ability to develop in-house security risk assessment tools including the good software programming ability in languages such as VBA, Python, Java, or C
  • Specify IT security products and processes.
  • Direct the review, development, testing and implementation of Cyber Security plans, products and controls.
  • Conduct research to aid in the security risk assessment of operations, capital projects, and IT systems.
  • Regularly review the enterprise for weaknesses in IT controls and procedures and recommend measures to eliminate or mitigate same.
  • Provide subject matter expert support/consultation to RFP design and evaluations, as directed.

Don't miss out on this opportunity, give us a call for more details and apply online today!

Eagle is an equal opportunity employer and will provide accommodations during the recruitment process upon request. We thank all applicants for their interest; however, only candidates under consideration will be contacted. Please note that your application does not signify the beginning of employment with Eagle and that employment with Eagle will only commence when placed on an assignment as a temporary employee of Eagle.

JOB# 71086