Technical Security Assessor

Position Description:

Valiant Solutions is seeking a Technical Security Assessor to join our rapidly growing and innovative cybersecurity team!

You’ll join an existing team of assessors assessing a mix of cloud and on-premise systems seeking new or ongoing authorizations. Our client is very innovative and provides interesting systems to assess a range of new technologies, particularly in the cloud space. The ideal candidate will have prior experience performing similar work for a federal client, including strategic planning, solution development, FISMA assessments, and technical background. This position requires hands-on technical experience along with A&A experience. If you came to GRC from a technical background or have been doing engineering work alongside GRC duties, this may be the job for you! We'll help you build on your technical and GRC knowledge foundation by allowing you to assess systems of all shapes and sizes in the cloud and on-premise.

Valiant Solutions is a company that cares about its employees- we've been named one of the Best Places to Work in the Washington DC area TEN years in a row!  If you are interested in learning more about Valiant and this opportunity, we invite you to apply now! 

This position allows for 100% remote work. Remote work necessitates a high-level trust in our employees and we strictly adhere to the details found below in our Remote Work Policy. 

Required Experience:

• 10+ years of related experience 
• Bachelor's degree in Computer Science, Information Systems, Mathematics, Engineering, or related degree or three (3) additional years of relevant experience
• One of the following certifications is required: CASP, Security+, CISA, CEH, or CISSP
• Must have hands-on technology experience (Engineering, Development, or Operations)
• 5+ years of Information Technology Experience (reviewing, consulting, or advising)
• 5+ years of knowledge and practical understanding of the NIST SP 800 series
• 3+ years of demonstrated experience independently leading and managing assessment projects with the ability to multi-task, prioritize, and work towards strict deadlines
• 2+ years of Technical Writing experience
• 2+ years experience successfully leading assessments for large information systems, training assessment team members, and mentoring assessment team members
• Prior experience working with a wide variety of technologies, be well-versed in the current state of Information Security and Privacy and be able to interpret the requirements of relevant governing bodies (NIST, OMB, GAO, etc)
• Previous experience with scanning tools: Nessus, SIH, AppDetective, WebInspect
• Expert skills in assessment techniques and practices
• Ability to rapidly and effectively research new technologies and apply NIST assessment methods to those technologies 
• Excellent interpersonal, interviewing, analytical, and problem-solving skills to address variable situations
• General knowledge of industry security and privacy requirements, standards, and best practices
• Strong written and verbal communication skills with the ability to read and analyze data effectively to write cogent reports on assessment findings with sound recommendations
• Good human relations, communication, supervisory, and time management skills
• A writing sample must be submitted

Responsibilities:

• Serve as the lead for all assigned client security control assessments,  including training assessment team members and mentoring assessment team members
• Perform security control assessment planning and execution in compliance with client policies and procedures with minimal supervision 
• Conduct walkthroughs of the assessed systems without dedicated engineering support to collect all required artifacts to support assessment findings 
• Assess all layers of the technology stack, including but not limited to operating systems, network equipment, appliances, cloud service providers, applications, tools (AV/AM, endpoint security, etc), and CI/CD pipelines 
• Develop all required assessment deliverables (including the Security Assessment Report, fill out all test cases, and update the POA&M documents) 
• Interface with federal employees and contractors to perform the required activities
• Present the security control assessment status reports and findings to the client

About Valiant Solutions

Valiant Solutions is a security-focused IT solutions provider with public clients nationwide. We are a HUBZone small business and we encourage all candidates who live in a HUBZone to apply. Named one of the fastest growing privately held companies by Inc. 5000, Washington Technology’s Fast 50, and Washington Business Journal’s Best Places to Work in the D.C. area, Valiant Solutions prides itself on providing its employees with great benefits and career development opportunities. As a company, we are just as committed to growing careers as we are to building world-class IT solutions, all while enjoying an unparalleled work-life balance. We are in a phase of tremendous growth and building the team that will take us to the next level. We seek people whose talents and accomplishments will contribute to a thriving company, who have the character to support their capacity, and can make a positive impact on our culture. Alongside our talented team, you’ll learn to think quickly on your feet and expand your own personal and professional skill set. Our management team will inspire you to consider new perspectives and challenge you to become a better practitioner in the fast-paced industry of IT security. We hire people we respect – and we trust them to deliver results leveraging their expertise. If you would enjoy working in a dynamic environment as part of a stellar team of professionals, then we invite you to apply online today.

Benefits Snapshot (includes, but not limited to)

Valiant pays 99% of the Medical, Dental, and Vision Coverage for Full-time Employees

Valiant contributes 25% towards Health Coverage for Family and Dependents

100% Paid Short Term Disability and Life Insurance Policy for Full-time Employees

100% Paid Certifications

401K Matching up to 4%

Paid Time Off

Paid Federal Holidays 

Paid Time On – 40 hours to pursue innovation

Wellness & Fitness Program

Valiant University – Online Education and Training Portal

Reimbursement for Public Transit and Parking

FSA programs for: Medical Costs, Dependent Care, Transit, and Parking

Referral Bonuses

Remote Work Policy 

Remote work necessitates a high level of trust in our employees. To ensure that employee performance does not suffer in a remote work environment, all employees who telecommute are expected to have a quiet and distraction-free workspace with adequate internet, dedicate their full attention and availability to their job duties during working hours, and maintain a schedule during core business hours that align with those of their coworkers and Valiant's clients. In alignment with Valiant's inclusive and engaging environment, cameras are encouraged and can be required to be on during virtual video conferences. Additionally, in alignment with the Office of the Inspector General’s effort to eliminate conflicting employment, all Valiant employees are required to disclose any current or future outside employment engagements. During onboarding and throughout employment, employees must disclose any current activities or intent to engage in outside employment or other professional activities and obtain written approval.  Employees may not solicit or conduct any outside business during core business hours for Valiant Solutions and our clients.

Equal Employment Opportunity

Valiant Solutions is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, ethnicity, color, national origin, sex (including pregnancy, sex stereotyping, gender identity, gender expression or transgender status), religion, age, marital status, sexual orientation, military/veteran status, physical or mental disability, genetic information/history or any other personal characteristic protected by law.

Physical Demands

Sitting or standing at a desk for prolonged periods of time and consistent operation of a computer. Frequent communication and exchanging of accurate information via electronic communication, phones, and in person. Occasionally lift and/or move moderate amounts of weight, typically less than 20 pounds. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the job.

Authorization to Share Resume and Personal Information

By submitting your resume for this position, you authorize Valiant Solutions to share your resume, as well as, personal information included on the resume, with its subsidiaries, affiliates and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education and experience. Should Valiant Solutions or its affiliates and teaming partners wish to initiate pre-employment discussions, you will be asked to complete an employment application and related employment documents.