| Position :Security and Compliance Testing Engineer VISA: Only US-Citizens Location :REMOTE at Remote, Remote, USA |
| Email: [email protected] |
| From: Bharath Kumar, oncorre [email protected] Reply to: [email protected] Position : Security and Compliance Testing Engineer VISA: Only US-Citizens Location : REMOTE ECS is seeking a Security and Compliance Testing Engineer to support a Mint Sales and Marketing Division program (remote). Job Description: The primary mission of the Mint is to produce an adequate volume of circulating coinage for the Nation to conduct its trade and commerce. The Mint also produces and sells numismatic coins, American Eagle gold and silver bullion coins, and national medals. The USM Sales and Marketing Division is responsible for the end to end product lifecycle of manufactured products. The Sales and Marketing mission requires the implementation and testing of a SaaS solution to support its eCommerce goals. The importance of comprehensive testing program and its impact on the US Mint (USM) Sales and Marketing mission and SaaS solution cannot be overestimated. It is critical that the Sales and Marketing business processes remain functional, reliable, and available to support USMs mission and Sales and Marketing objectives. The Sales and Marketing require full life cycle testing support to validate and verify all requirements are met, testing cycles are scheduled and coordinated, testing results tracked and reported, and all testing exit criteria are satisfied. Given the customer facing requirement of the SaaS solution, its critical that system performance constraints do not adversely impact the user experience. As a result, identifying USMs peak day performance volume requirements and validating that the requirements are met will be key to the go live approval for the overall SaaS solution. To this end, ECS will support USM by validating performance criteria are included in the test cases and observed during this test phase, and issues are logged and addressed prior to release into production. ECS will assist USM with the planning and coordination of the performance and stress testing phase. The Security and Compliance Testing Engineer is responsible for: Working in conjunction with the Mint customer to review and monitor the progress of the SaaS development and implementation. Reviewing procedures to ensure: 1. SaaS vendor has identified the appropriate assets to scan 2. SaaS vendor has scanned the assets 3. Ensure the SaaS vendors assessment report contains vulnerabilities and their severity (e.g. Critical, High, Medium, Low) 4. Ensure the SaaS vendor remediates vulnerabilities identified by the Government as required prior to go-live. 5. Ensure the SaaS vendor performs penetration tests and results are reviewed Test facilitation support includes: 1. Coordinating and facilitating Test Readiness review prior to SVT 2. Developing SVT readiness checklist that includes all criteria for successful SVT execution and documents USM expectations 3. Communicating readiness criteria with third party partners and other testing participants 4. Reviewing the SVT assessment report to ensure test findings are documented 5. Review security assessment report and ensure all vulnerabilities observed are logged, categorized and reported Coordinating and facilitating a test exit review with the Mint PMO, SaaS and any stakeholder and executives, where all deliverables (SVT documentation). Required Skills: 10 - 15 years experience (must have at least one certification or equivalent from the following list and maintain throughout the task order: GCIH, GCIA, and CSIH). Experience with designing, testing and implementing state-of-the-art secure operating systems, networks, and database products. Conducting risk assessment and providing recommendations for application design. Experience with using encryption technology, penetration and vulnerability analysis of various security technologies, and information technology security research. Excellent analytical and problem-solving skills. Organized, detail-oriented, able to work independently. Excellent communication skills, with both technical and non-technical personnel at all levels of management. Able to obtain a Public Trust clearance. Desired Skills: Experience with the ALM and Octane tools. Keywords: information technology golang |
| [email protected] View all |
| Thu Jan 04 00:54:00 UTC 2024 |