TalaTek, an integrated risk management firm, located in Northern Virginia is looking to expand its staff. The well-established cybersecurity provider is seeking motivated team members with information security backgrounds that value teamwork and a collaborative culture in a continuous learning environment. If youbre passionate about security and risk management and are interested in growing your career with an entrepreneurial company, webd love to speak with you!
For the below positions, interested candidates are encouraged to submit their resumes at https://talatek.com/careers/.B Direct questions can be sent to [email protected].
Security Assessment & Risk Analyst
TalaTek delivers excellence in integrated risk management services by leveraging our specialized combination of methodologies, processes and technology. Through our cloud-managed service we enable efficient and repeatable risk, compliance and information security management, empowering our clients to make better informed risk decisions.
Integral to our managed service, the Security Assessment & Risk Analyst (SA&RA) is a mid-level position that is a key member of the security team. The SA&RA will provide subject matter expertise for control analysis according to the clients continuous monitoring plans, following TalaTek processes and applicable standards. As a mid-level analyst, the Security Assessment & Risk Analyst will ensure the team achieves client goals, meets deadlines, attains risk management objectives, and reports issues, project progress and recommendations for process improvement to senior management. The SA&RA is involved in all tasks, has experience providing project planning, analyst guidance and mentoring, and supports to the various roles within the team, such as Project Manager Quality Assurance and Security Analysts.
The successful candidate will:
- Work independently with minimal supervision
- Apply great attention to detail when reviewing, updating, comparing documents and deliverables
- Communicate complex issues efficiently and effectively to peers, TalaTek leadership and clients
- Provide onsite (client) support and attend meetings as needed
- Coordinate with team members and client resources to effectively complete project requirements
- Keep abreast of the latest technologies
- Have the ability to manage the execution of multiple projects simultaneously
Requirements:
- Bachelorbs degree in Computer Science, Information Systems, Engineering, or equivalent 4 to
CISSP, CAP, CISA or equivalent certification and continuing related professional development (or within six-months of hire) - An in-depth knowledge of all documents required by both the FedRAMP and FISMA SA&A processes.
- Proficient written and verbal communication skills
Senior Security Assessor & Technical Engineer
TalaTek delivers excellence in integrated risk management services by leveraging our specialized combination of methodologies, processes and technology. Through our cloud-managed service we enable efficient and repeatable risk, compliance and information security management, empowering our clients to make better informed risk decisions.
Integral to our managed service, the Senior Security Assessor & Technical Engineer (SA&TE) is a senior-level position that is an integral part of the security team. The SA&TE will provide subject matter expertise for control analysis, have a deep understanding of vulnerability management, and have experience in penetration testing according to the clients continuous monitoring plans, following TalaTek processes and applicable standards. The SA&TE will ensure the team achieves client goals, meets deadlines, attains risk management objectives, and reports issues, project progress and recommendations for process improvement to senior management. The SA&TE is involved in all technical engineering tasks in order to support internal and external tasks.
B Key Responsibilities
- Perform and manage SA&A and FedRAMP 3PAO assessments and independent audits and complete the necessary documentation
- Manage and run vulnerability scans, perform remediation activities and generate custom reports and metrics
- Perform host and web application penetration testing based on established frameworks using Burp Suite and Kali Linux
- Conduct social engineering campaigns internally or as requested by clients
- Respond to outside audit requests and findings in support of various clients
- Monitor the security of the client infrastructure to ensure it is up-to-date and secure
- Support the TalaTek Technical Security Architect updating design documents and instructional materials for non-security focused teams
B The successful candidate will
- Work independently with minimal supervision
- Apply great attention to detail when reviewing, updating, comparing documents and deliverables
- Communicate complex issues efficiently and effectively to peers, TalaTek leadership and clients
- Provide onsite support and attend meetings as needed
- Coordinate with team members and client resources to effectively complete project requirements
- Keep abreast of the latest technologies
- Have the ability to manage the execution of multiple projects simultaneously
B Requirements
- Bachelorbs degree in Computer Science, Information Systems, Engineering, or equivalent 4 to 6 years of experience in Information Security.
- In depth understanding of Kali Linux and Burp Suite
- OSCP, CISSP, CAP, CISA, or equivalent certification and continuing related professional development (or within six-months of hire)
- An in-depth knowledge of all documents required by both the FedRAMP and FISMA SA&A processes.
- Proficient written and verbal communication skills
