Category Archives: IT Security Jobs

6 Figures in IT Security “cybersecurity” (Do you Want this? If so, sign up here)

August 19, 2018cyberspace workforce, DIARMF, Information Assurance, information system compliance, IT Certifications, IT Security Jobs, Risk Management For DoD IT, security compliancecybersecurity, it security, IT Security Jobs

Course site: https://securitycompliance.thinkific.com

I am thinking of doing a course on how to make 6 figures in IT Security. What do you think? Is this something you would be interested in? This is something I know a lot about.

I would explain:
The landscape of IT Security
Career paths in IT Security
How to choose the right path
How to prepare for that path
What kinds of IT security jobs make 6 figures
What places and companies pay 6 figures
What certifications, degrees and experience you need to start
How to build a bad ass IT security resume
where to post it
how to respond once offers start coming in

IT security position job Q&A (part 1)

August 3, 2018cyberspace workforce, DIACAP, DIARMF Jobs, information system compliance, IT Certifications, IT Security Jobs, Risk Management For DoD IT, rolescybersecurity, cybersecurity analysis, information technology, it security, IT Security Jobs, risk management framework, rmf

Check out my FREE courses at: https://securitycompliance.thinkific.com

In this video we read some of your questions about getting IT Security Jobs.

masaki23joe
“I have a B.A in Telecommunications, would this work for this career field.” see the answer at 00:00:45

shawn 08
“Hey Bruce I got my security + and cap. What do you suggest on how to get into the risk management/ security auditing field when someone doesn’t have any experience? I do have 7 years experience in desktop support and data center monitoring just want to try a different field but not sure how to go about this.”
answer at 00:02:53

David petrell
“What training is need to get into the security field? I have a BS in information security and working a MS in Cybersecurity and working on getting my CEH cert. What are ways that I can get into the security field as I don’t have any security experience and most jobs postings are wanting at least 4 to 5 years of experience”
answer at 00:06:26

DIACAP Compliance Engineer and Information Assurance Lead Jobs (risk management framework)

July 9, 2018Assurance Technology, certification & accreditation, DIACAP, DIARMF, Information Assurance, Information Assurance Jobs, information system compliance, IT Security Jobs, NIST Security Framework, risk management, Risk Management For DoD IT, security complianceDIACAP compliance engineer, Information Assurance Lead, rmf

Role: DIACAP Compliance Engineer
Location: Tarrytown, NY
Duration: 6+ months

Enterprise Solution Inc.
500 E. Diehl Road, Suite 130, Naperville, IL 60563
Office: # 630-214-9485
E-Mail : pradyut@enterprisesolutioninc.com
Gmail : pradyut10.esi@gmail.com

Title: Information Assurance Lead
Location: Aberdeen, MD
Client: Federal
Duration: Full Time

Home

8251 Greensboro Drive, 9th Floor

McLean VA 22102
yogeshk@etalentnetwork.com

Office: (877) 715-3865 Ext.328

I get people contacting me every week about jobs all around the US! Today, I am going to show you a couple that I received recently. I hope that it will give you some idea of what employers and contracts look for in security compliance professionals.

Job position for DIACAP Compliance Engineer at Tarrytown, NY

June 29, 2018cyberspace workforce, DIACAP, DIARMF Jobs, Information Assurance Jobs, IT Security Jobs, risk jobs, STIGSDIACAP, DIARMF, job, PowerShell, risk management frameworkd, rmf, rmf jobs, Source code management (SCM), STIG, windows, writing

Role: DIACAP Compliance Engineer
Location: Tarrytown, NY
Duration: 6+ months

Keywords: – STIG, TFS, DevOps, Windows Imaging WIX, MSI, PowerShell, Anti-Virus, Whitelisting

Job Description:
Background
Source code management (SCM) & DEVOPS team (Infrastructure Team) manages the entire continuous integration, continues development chain process of a global Engineering conglomerate.
Application is developed using Microsoft technology C#, C++, WPF, MVVM and custom control on Windows-7 platform. The backbone of the entire SCM is Microsoft TFS while the packaging strategy is utilizing MSI and WIX. The current build management is driven by customized XMAL with PowerShell usage. Now the plans are to move to VNEXT that provides flexibility as an orchestrator and allows better reporting, triggering and logging facility.
The Goal of this team is to make the entire infrastructure to be in compliant with DIACAP (DoD Information Assurance Certification and Accreditation) process

Expectations – The team is looking out for Engineers who can augment the current team and support on following tasks
This means the identified engineer needs experience in DIACAP process (not knowledge) on how the system could be transformed to be DIACAP compliant system.
• Experienced in the Security Technical Implementation Guide (STIG) that provides security guidance for .NET deployments in workstations or servers and focuses on the secure configuration of the .NET Common Language Runtime (CLR).
• Identify loopholes and open items as part of IIS 7.0 Web Server to ensure that the IIS 7.0 becomes STIG compliant and thus related request handling and filtering are done in control manner and encryption is applied for protocols or data exchange for HTTP, FTP or telnet and more of such tasks etc.
• Ensuring the basic need of McAfee VirusScan 8.8 Managed Client STIG that highly suggests to have antivirus to be monitoring 24*7 along with no possibility of stoppage of such services and availability of antivirus signed files almost every day
• Ensure security enablement in Microsoft Internet Explorer 11 client used on Windows-7 workstations like script execution, popup restrictions as needed and stoppage of unsigned ACTIVEX controls
• Experience in interpreting STIG scans that reflect results on periodic basis.
• Experience in working on adding check and controls in build management system that automates scans ensure STIG compliance.

Soft Skills
• Good Team Player
• Good Written and verbal communication skills
• Customer facing experience would be added advantage

www.enterprisesolutioninc.com Pradyut Bhattacharya
Enterprise Solution Inc.
500 E. Diehl Road, Suite 130, Naperville, IL 60563
Office: # 630-214-9485

Job Title: IT Network Security Analyst

August 28, 2017IT Security JobsIT Security JobsBruce Brown

Job Title: IT Network Security Analyst

Position Type: Contract – 30 hours/wk.
Cleint: CROCS
Location : Niwot
Our client is looking for a Security Analyst to support their team with the network and security related issues. I

Position Requirements:

Possess a great attitude and desire to dig deep into the field of information security
Detail oriented work style with ability to follow through on tasks
Ability to work collaboratively in team environments
Possess strong critical thinking and analytical skills
Strong interpersonal, written, and verbal communication skills
General understanding of below areas:
- IT Security
- Networking
- System administration
- Programming/Scripting
- Willingness to acquire in-depth knowledge of network and host-based security technologies
- Knowledge of the current IT threat landscape and emerging trends in cyber security

Education:

A certificate in a related discipline such as IT Security, Networking, System Administration, and/or Programing/Scripting are preferred.
A degree in Information Technology, or a related academic discipline is preferred, but not required for this position.

**If this is not a fit for you or you are not interested, Ascent Services Group offers an excellent Referral Bonus! We look forward to hearing from you!

RMF for DoD IT

Risk Mangement Framework for DoD IT