Associate Security Consultant

    • Job Tracking ID: KSTC-20-079
    • Job Location: Chantilly, VA
    • Job Level: Entry Level (less than 2 years)
    • Level of Education: BA/BS
    • Job Type: Full-Time/Regular
    • Date Updated: 05/26/2020
    • Years of Experience: Up to 2 Years
    • Radford Job Code: 06581-06586
Invite a friend
facebook LinkedIn Twitter Email


Job Description

Do you take information technology (IT) and information security seriously and want to make a difference? Helping leading-edge technology companies secure their cloud environments is at the core of what we do and we make a difference.   

As an Associate Security Consultant for Kratos, you will be joining a team of professionals working to evaluate and secure innovative cloud computing solutions on the most advanced cloud infrastructures in the world by providing security consulting services and performing security assessments. 

You will gain an understanding of how to apply the principles of information security in a variety of circumstances, expertise in assessment processes, and expertise translating technical, operational, and management requirements and guidelines (e.g. NIST 800-53) into common technical implementations.

Responsibilities:

  • Develop portions of Security Authorization Packages that are compliant with FedRAMP and DOD requirements under the supervision of senior staff members. Package components include: System Security Plans, Contingency Plans, Configuration Management Plans, Incident Response Plans, Privacy Impact Assessments, Security Assessment Plans, and Security Assessment Reports.
  • Assist in the review and analysis of Security Authorization Packages for completeness and compliance with FedRAMP and DOD requirements.
  • Participate in client interviews to complete Security Authorization Packages and Security Assessments.
  • Ensure existing systems Security Authorization Packages remain up to date throughout the life cycle.
  • Provide review and analysis of vulnerability scan results from tools such as Nessus, Qualys, AppDetective, WebInspect, IBM AppScan, Burp Suite, etc.

Experience and Skills

  • Bachelor’s degree in IT, Computer Science or relevant discipline, or relevant work experience.
  • Working towards one or more of the following certificates: CISSP, CEH, CAP, Security +, GSEC, or equivalent.
  • Basic understanding of networks, protocols, security configurations, cryptography, identity and access management, and the systems development life cycle.
  • Ability to translate technical materials and issues into non-technical/layman terms.
  • Basic experience with security tools such as Nessus, Qualys, Nexpose, etc.
  • Familiarity with NIST 800 series guidelines (800-30, 800-37, 800-53 and 53A, 800-60, 800-171 etc.) is desirable.
  • Excellent communication skills, both written and verbal with strong presentation skills.
  • Demonstrated skills in the entire Microsoft desktop suite (Word, Excel, PowerPoint, etc.).
  • Team player able to work well with others in a collaborative manner and is a self-starter.
  • Ability to travel 25%
  • Ability to obtain and maintain a security clearance.

1 to 2 years of experience with the requirements or responsibilities listed above is highly desirable, but not required.