Security Assessment Consultant CISSP, CEH - Contract - Sacramento

Security Assessment Consultant CISSP, CEH
Sacramento, CA
6 Month Contract Opportunity
=====================================================================
An opportunity to be part of a team to perform IT Infrastructure Vulnerability Assessment leveraging white box security assessment techniques and producing reports with recommended prioritized actions the organization must mitigated to reduce its threat and vulnerability exposures. 
Project Required Experience:

  • Five (5) years of experience required in the area of performing security audits consultation and hands-on work  for public firms and/or financial institutions which includes the following:
    • Public facing website where credentials are authenticated; and, where the public facing website has sensitive data passed through secure connections.
  • Demonstrated and current experience in white box security assessments and penetration testing (internal access and external access) approach
  • Demonstrated experience in reviewing application sources code and uncovering code vulnerabilities using tools and related methods.
  • Demonstrated experience of evaluating security posture of services, workstations and network devices using valid network scanning and probing tools.
  • Demonstrated experience of analyzing output of vulnerability and scanning tools and ability to elevate recommendations to resolve the prioritized lists of vulnerabilities and risks impacting the organization’s IT infrastructure .
  • Demonstrated experience for developing written directions for resolving vulnerabilities and security threats through policies, procedures and relevant implementations of mitigating technical controls including but not limited to recommendations of network architectural changes.
  • Demonstrated experience in a leadership role acting as a Software Security Auditor and a Security Advisor.

Certifications: Must currently possess and provide proof of the following valid and current certification(s) and must maintain those valid certification(s) throughout the project:

  • Certified Information Systems Security Professional (CISSP) Certification, and/or 
  • Certified Ethical Hacker (CEH) Certification (or equivalent from an industry recognized security certification entity)

Additional Mandatory Qualifications:

  • CISCO Certification(s).
  • Minimum of two (2) years of experience performing work with a CISCO Certification.
  • Previous relevant experience in the area of performing security audits for government agencies.
  • Previous relevant experience evaluating all security aspects of Oracle database(s).

References:

  • Candidate must furnish 3 (three) project references summarizing work related to the project required experience above and 3 (three) company contacts and address details.