Technical Security Assessor

Are you a security assessment professional with a background as an engineer, developer, or analyst?

Valiant Solutions is seeking a Technical Security Assessor to join our team supporting a large Federal client. You’ll join an existing team of assessors assessing a mix of cloud and on-premise systems seeking new or ongoing authorizations. Our client is very innovative and this provides very interesting systems to assess a range of new technologies, particularly in the cloud space. This position requires hands-on technical experience along with A&A experience. If you came to GRC from a technical background or have been doing engineering work alongside GRC duties then this is the role for you! We'll help you build on your foundation of technical and GRC knowledge by giving you opportunities to assess systems of all different shapes and sizes, in the cloud and on-premise. Valiant Solutions is a rapidly growing Cybersecurity company that cares about its employees- we've been named one of the Best Places to Work in the DC area EIGHT years in a row! 

This position can be located in Washington DC, Kansas City MO, or Fort Worth, TX and allows for a 60% - 80% telecommute benefit. 100% remote can be considered for candidates that live outside of the above listed regions.  Remote work necessitates a high-level trust in our employees. To ensure that employee performance does not suffer in a remote work environment, all employees who telecommute are expected to have a quiet and distraction-free workspace with adequate internet, dedicate their full attention to their job duties during working hours, and maintain a schedule during normal business hours that overlaps with those of their coworkers and Valiant's.

Job Summary:

The Technical Security Assessor will serve as the lead for all assigned client security control assessments. The candidate will be responsible for the performance of security control assessment planning and execution in compliance with client policies and procedures with minimal supervision. The candidate will be required to conduct walkthroughs of the systems being assessed without dedicated engineering support to collect all required artifacts to support assessment findings.  The candidate will be required to assess all layers of the technology stack including but not limited to: operating systems, network equipment, appliances, cloud service providers, applications, tools (AV/AM, endpoint security, etc) and CI/CD pipelines.  The candidate will be responsible for developing all required assessment deliverables (including the Security Assessment Report, filling out all test cases, and updating the POA&M documents). The candidate must have had prior experience working with a wide variety of technologies, be well versed in the current state of Information Security, and be able to interpret the requirements of relevant governing bodies (NIST, OMB, GAO, etc). The candidate will be required to interface with federal employees and contractors to perform the required activities. Additionally, the candidate will be responsible for assisting in the presentation of the security control assessment status reports and findings to the client. The ideal candidate will have prior experience performing similar work for a federal client, including strategic planning, solution development, FISMA assessments, and technical background.

Experience/Skills Requirements:

• Must have hands-on technology experience (Engineering, Development, or Operations)
• 2+ years of Technical Writing experience
• 2+ years of Information Technology experience. 
• 5+ years of Information Technology Experience (reviewing, consulting, or advising)
• 5+ years of knowledge and practical understanding of NIST SP 800 series.
• 3+ years of demonstrated experience independently leading and managing assessments projects with the ability to multi-task, prioritize and work towards strict deadlines.
• Security Professional Certifications (CISSP, CISM, CISA, CRISC, CAP, CEH).
• Previous experience with scanning tools: Nessus, SIH, AppDetective, WebInspect.
• Expert skills in assessment techniques and practices.
• Ability to rapidly and effectively research new technologies and apply NIST assessment methods to those technologies. 
• Excellent interpersonal, interviewing, analytical and problem-solving skills to address variable situations
• General knowledge of industry security requirements, standards, and best practices.
• Strong written and verbal communication skills with the ability to read and analyze data effectively to write cogent reports on assessment findings with sound recommendations.
• Good human relations, communication, supervisory and time management skills.
• Bachelor’s degree in information technology-related field.
• A writing sample must be submitted
• Valiant Solutions is a federal contractor and this position is subject to the COVID-19 Vaccine Mandate as a condition of employment.  All applicants must be fully vaccinated for COVID-19 with a Food and Drug Administration (FDA) authorized or FDA-approved COVID-19 vaccine OR must have an approved reasonable accommodation granting an exemption from vaccine requirements. See below for more details.

About Valiant Solutions:

Valiant Solutions is a security-focused IT solutions provider with both public and private sector clients nationwide. We are a HUBZone small business and we encourage all candidates who live in a HUBZone to apply. Named one of the fastest growing privately held companies by Inc. 5000, Washington Technology’s Fast 50, and Washington Business Journal’s Best Places to Work in the D.C. area, Valiant Solutions prides itself on providing its employees with great benefits and career development opportunities. As a company, we are just as committed to growing careers as we are to building world-class IT solutions, all while enjoying an unparalleled work-life balance. We are in a phase of tremendous growth and building the team that will take us to the next level. We seek people whose talents and accomplishments will contribute to a thriving company, who have the character to support their capacity, and can make a positive impact on our culture. Alongside our talented team, you’ll learn to think quickly on your feet and expand your own personal and professional skillset. Our management team will inspire you to consider new perspectives and challenge you to become a better practitioner in the fast-paced industry of IT security. We hire people we respect – and we trust them to deliver results leveraging their expertise. If you would enjoy working in a dynamic environment as part of a stellar team of professionals, then we invite you to apply online today.

Benefits Snapshot (includes, but not limited to):

Valiant pays 99% of the Medical, Dental, and Vision Coverage for FTE

Valiant contributes 25% towards Health Coverage for Family and Dependents

100% Paid Short Term Disability and Life Insurance Policy for FTE

100% Paid Certifications

Wellness & Fitness Program

401K Matching up to 4%

Paid Time Off

Paid Time On – 40 hours to pursue innovation

Valiant University – Online Education and Training Portal

Reimbursement for Public Transit and Parking

FSA programs for: Medical Costs, Dependent Care, Transit, and Parking

Referral Bonuses

Vaccination Mandate:

In accordance with Executive Order 14043, Federal employees and contractors are required to be fully vaccinated against COVID-19 regardless of the employee's duty location or work arrangement (e.g., telework, remote work, etc.), subject to exceptions that may be required by law. If selected, you will be required to submit proof of vaccination by November 22, 2021 or before your entrance on duty if you are selected after the compliance date. Human Resources will provide information for providing proof of vaccination and instructions for how to submit a request for a legally required exception, if needed, to comply with vaccination requirements.

Equal Employment Opportunity:

Valiant Solutions is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, ethnicity, color, national origin, sex (including pregnancy, sex stereotyping, gender identity, gender expression or transgender status), religion, age, marital status, sexual orientation, military/veteran status, physical or mental disability, genetic information/history or any other personal characteristic protected by law.

Physical Demands

Must be able to remain in a stationary position 50% of the time and also be able to occasionally move about inside the office to access file cabinets, office machinery, etc.

Must be able to constantly operate a computer and other office productivity machinery, such as a copy machine, and computer printer.

Must be able to communicate, detect, converse with, discern, convey, express one self, and exchange information visually and verbally.

Must be able to occasionally bend and lift files and papers up to 10 pounds throughout the office space for events and meetings.

Work Environment:

Individual's primary workstation is located in an office area

The noise level in this environment is low to moderate

Authorization to Share Resume and Personal Information:

By submitting your resume for this position, you authorize Valiant Solutions to share your resume, as well as personal information included on the resume, with its subsidiaries, affiliates and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education and experience. Should Valiant Solutions or its affiliates and teaming partners wish to initiate pre-employment discussions, you will be asked to complete an employment application and related employment documents.