Associate Security Consultant

    • Job Tracking ID: KSTC-21-056
    • Job Location: Chantilly, VA
    • Job Level: Mid Career
    • Level of Education: BA/BS
    • Job Type: Full-Time/Regular
    • Date Updated: 04/07/2022
    • Years of Experience: 2+
    • Radford Job Code: 06902 - 06906
Invite a friend
facebook LinkedIn Twitter Email


Job Description

Do you take information technology (IT) and information security seriously and want to make a difference? Helping leading-edge technology companies secure their cloud environments is at the core of what we do and we make a difference. 

As an Associate Security Consultant of Commercial Cybersecurity Services for Kratos, you will be supporting teams of professionals working to evaluate and secure innovative cloud computing solutions on the most advanced cloud and op-premises infrastructures in the world by providing security consulting services and performing security assessments.

You will gain an understanding of how to apply the principles of information security in a variety of circumstances and expertise translating security requirements into common technical implementations. Experience working across multiple compliance frameworks (FedRAMP, DOD SRG, CMMC, NIST, PCI, ISO, HIPAA, SOC, CJIS, etc.) is highly desirable.

 Responsibilities:

  • Evaluate and/or develop portions of Security Authorization Packages that are compliant with FedRAMP and DOD requirements under the supervision of senior staff members. Package components include: System Security Plans, Contingency Plans, Configuration Management Plans, Incident Response Plans, Privacy Impact Assessments, Security Assessment Plans, and Security Assessment Reports.
  • Assist in the review and analysis of Security Authorization Packages for completeness and compliance with FedRAMP and DOD requirements.
  • Participate in client interviews to complete Security Authorization Packages and Security Assessments.
  • Ensure existing systems Security Authorization Packages remain up to date throughout the life cycle.
  • Provide review and analysis of vulnerability scan results from tools such as Nessus, Qualys, AppDetective, WebInspect, IBM AppScan, Burp Suite, etc.
  • Support customer engagements using a consultative advisor mindset.
  • Participate in diagnostic/discovery sessions to gain an understanding of security architecture and control implementations towards identify gaps and developing supporting documentation.
  • Support the documentation of security package deliverables including policies, procedures, SSP, etc.
  • Work with multiple stakeholders (internal and external) to assess and identify security compliance gaps and propose technical and operational remediation solutions.
  • Support technical and operational questions regarding control implementations.
  • Review current system security documentation and recommend remediation and enhancements.
  • Translate complex concepts and solutions into documents required for the certification (i.e. System Security Plan).
  • Collaborate effectively within dynamic teams and across multiple customer organizations with diverse personalities and expertise to drive to agreement on complex issues.
  • Continually seek to advance and update security and compliance knowledge and expertise.

 

  #LI-Remote

Experience and Skills

  • 1 to 2 years of experience with the requirements or responsibilities listed above is highly desirable, but not required.
  • A Bachelor’s degree in IT, Computer Science, or a relevant discipline; will also consider relevant work experience.
  • Working towards one or more of the following certificates: CISSP, CEH, CAP, Security +, GSEC, or equivalent.
  • A basic understanding of networks, protocols, security configurations, cryptography, identity and access management, and the systems development life cycle.
  • The ability to translate technical materials and issues into non-technical/layman terms.
  • Basic experience with security tools such as Nessus, Qualys, Nexpose, etc.
  • Familiarity with NIST 800 series guidelines (800-30, 800-37, 800-53 and 53A, 800-60, 800-171 etc.) is desirable.
  • Excellent communication skills, both written and verbal with strong presentation skills.
  • Demonstrated skills in the entire Microsoft desktop suite (Word, Excel, PowerPoint, etc.).
  • A team player able to work well with others in a collaborative manner and is a self-starter.
  • Ability to travel 25%.

 #LI-Remote

As a federal contractor, and consistent with Executive Order 14042, we will require all newly hired employees in the United States to be fully vaccinated by December 8th 2021 or by your start date if it is after December 8th 2021, subject to approved medical, religious or other accommodation

 

As a federal contractor, and consistent with Executive Order 14042, we will require all newly hired employees in the United States to be fully vaccinated by January 18th 2022 or by your start date if it is after January 18th 2022, subject to approved medical, religious or other accommodation

Job Benefits

  • Medical
  • Dental
  • Vision
  • Tax Savings Accounts (HSA / FSA)
  • Life Insurance
  • Short Term Disability
  • Long Term Disability
  • Employee Assistance Program
  • 401k
  • Employee Stock Purchase Plan
  • PTO
  • Education Assistance Program
  • Paid Holidays
Kratos Defense is an Equal Opportunity Affirmative Action Employer. EOE, Minorities, Females, Vet, Disabled, Sexual Orientation, Gender Identity or any other protected class.
All qualified job seekers are encouraged to apply. Kratos Defense is committed to America's veterans by providing opportunities for them to continue contributing after service to our nation. We also work to provide reasonable accommodations to individuals with disabilities.
EEO Is The Law

Disability Accessibility Accommodation
If you require an accommodation to navigate or apply to our careers site, please send your request to HRAccessibility@kratosdefense.com or call 858-964-2916. Any inquires not related to requesting an accommodation will be discarded.

Pay Transparency
The company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant.

Job Applicant Privacy Notice
For applicants in the EU and California residents, please review our privacy notice.