Remote Penetration Tester/Security Analyst (CCNP/CCSA/CISM/CISSP/GSEC/Security+) with wireless, physical/social engineering, web/mobile, Vulnerability Assessment, Incident Response, PM experience

Job ID: CO-8038 (917590404)

Remote Penetration Tester/Security Analyst (CCNP/CCSA/CISM/CISSP/GSEC/Security+) with wireless, physical/social engineering, web/mobile, Vulnerability Assessment, Incident Response, PM experience

Location: Hartford CT (DOL)
Duration: 9 months

Qualifications
Type Category Qualification Description Competency Required
Skills Security CCNP+ (security) Proficient (4-6 Years) No
Skills Security CCSA (security) Proficient (4-6 Years) No
Skills Security CISM (security) Proficient (4-6 Years) No
Skills Security CISSP (security) Proficient (4-6 Years) No
Skills Security GSEC (security) Proficient (4-6 Years) No
Skills Security Security+ Proficient (4-6 Years) No

Application and Network Penetration Testing:
The selected Consultant(s) will perform internal and external network and application penetration testing to identify and exploit network and host-based security vulnerabilities within the infrastructure. Consultant(s) need to supply their own tools with the appropriate licensing. Rules of Engagement and final scope of the testing will be defined when the consultant is on-board. Consultant(s) familiar with the State of Connecticut infrastructure is a plus. This position will have a flexible schedule and full-time may not always be required. The hours will be agreed upon during the development of the scope of testing. The duration of the engagement is until 12/31/2022 but can be extended. More specifics will be provided during the interview phase. Duties include but not limited to:

Perform external, internal, and wireless network penetration tests
Perform physical and social engineering penetration tests
Perform web and mobile application penetration tests
Produce detailed findings and recommendations, and deliver those findings to agency IT management and key stakeholders
Initiate and participate in process improvement
Supports Technical Services team leaders as they assess and consult with clients in delivery of technical services, including Penetration Testing, Vulnerability Assessment, and Incident Response
Contribute to project management, communications and other activities required for successful service delivery
Supports senior members in other aspects of security and risk management

CT_E-RTR.doc