Northramp is looking for smart, dedicated individuals with a true passion for excelling in their field. The ideal candidate will have federal cybersecurity experience, knowledge of the High Value Asset program and associated assessment requirements, and a deep technical background with penetration testing/security architecture experience.  You will have demonstrated your ability to analyze and apply critical thinking to a wide variety of complex problems and partner with your customers to identify and implement successful solutions that solve their most pressing challenges.  

 

We are currently looking for a Penetration Tester / HVA Program analyst who will:

 

  • Review and update the existing System Security Plans (SSP) for the organization's HVAs.  An emphasis should be placed on the requirements defined in OMB M-19-03:  Strengthening the Cybersecurity of Federal Agencies by Enhancing the High Value Asset Program.
  • Obtain an understanding of the organization specific HVA requirements around penetration testing, vulnerability scanning, and social engineering testing.
  • Work with HVA system owners and external technical points of contact to schedule Vulnerability Assessment and Penetration Testing (VAPT) testing in accordance with guidance published in DHS Securing High Value Assets Requirements – HVA Assessments and Frequency Requirements.
  • Support organizational responses to data calls on HVA compliance and progress.
  • Liaise with authorized third parties to perform testing for HVA systems as required. 

 

The successful candidate will have:

 

  • Deep functional understanding of the NIST RMF and 800-53a is required. Candidate must know 800-53 and be able to explain what sort of artifacts might be requested to illustrate compliance with specific controls.
  • Experience leading assessments from kickoff to final SAR creation and executive level briefing.
  • Understanding of the DHS HVA program and HVA assessment requirements.
  • Experience as a penetration tester/security architecture reviewer.

 

Required Qualifications

 

  • 3+ years of relevant experience and skills including experience supporting a High Value Asset Program.
  • Skills and experience related to Enterprise Risk Management (ERM), IT Risk Management, and Risk Identification.
  • Strong project management skills.
  • 2+ years in security engineering, application development, or security operations.
  • Bachelor’s Degree.
  • US citizenship; ability to obtain a security clearance; ability to pass, and maintain, a federal background check and drug screen successfully.
  • Strong skillset using Microsoft Office tools, especially proficient in PowerPoint, Word, and Excel.

Desired Qualifications

  • 6+ years security engineering/technical/pen testing experience.
  • Master’s Degree.
  • CISM, CISA or equivalent security certification strongly desired.

 

Clearance


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

 

About Northramp

 

At Northramp, our passion, our true north, is to help our clients cut through the fog and obtain technical and operational clarity to help them make the most significant impact possible.  Focused like a laser on driving value for our clients, Northramp specializes in helping public and private sector clients streamline their IT operations, improve their technical services, and drive greater returns from IT investments.

 

If you are curious in learning more about Northramp, please visit our website at https://www.northramp.com.

 

All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status.

 

Reasonable Accommodation Requests

Northramp is committed to working with and providing reasonable accommodation to individuals with physical and mental disabilities. If you need special assistance or an accommodation while seeking employment, please e-mail PeopleOPS@northramp.com or call: 703-772-5588 - Northramp Human Resources. We will make a determination on your request for reasonable accommodation on a case-by-case basis.

 

EEO is the Law

The law requires Northramp to post a notice describing the Federal laws prohibiting job discrimination. For information regarding your legal rights and protections, please click on the following link: EEO is the Law and EEO is the Law Supplement.

 

Pay Transparency Non-Discrimination

Northramp will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay. Please see the Pay Transparency Nondiscrimination Provision for more information.

 

E-Verify

As a Federal Contractor, Northramp is required to participate in the E-Verify Program to confirm eligibility to work in the United States. For information please click on the following link: E-Verify.

This position has been filled.