Share this Job

Assessor Engineer

Apply now »

Date: Jun 4, 2022

Location: Langley-Eustis, VA, US

Company: NTT DATA Services

Req ID: 178261 

NTT DATA Services strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a Assessor Engineer to join our team in Langley-Eustis, Virginia (US-VA), United States (US).

NTT DATA is looking for an Assessor Engineer to support a critical Department of Defense program located at Joint Base Langley-Eustis to support the client’s Cloud Migration and Data Center Consolidation Efforts under the Federal Cloud Strategy and the Federal Data Center Consolidation Initiative respectively. As part of this program, the client requires that a thorough inventory and assessment is conducted of each of the applications to determine the proper modernization and migration methods needed to host the application in the commercial cloud. Once the assessment is completed, applications will be modernized as required and deployed to the appropriate impact level (IL, 2, 3, 4 or 6) cloud environment.


Position's General Duties and Tasks:

In the role of Assessor Engineer, you will use industry best practices to develop specifications and methods to monitor and measure risk, compliance, and assurance efforts for the client to ensure applications that are migrating to the cloud conform with security, resilience, and dependability requirements. You will assess the effectiveness of security controls; perform security reviews that identify gaps in security architecture; develop a security risk management plan; and perform risk analysis for migrating application. You will plan and conduct security authorization reviews and assurance case development for initial installation of the applications in a cloud environment and will verify that the application’s security postures are implemented as stated. You will document deviations and recommend required actions to correct those deviations.


Candidates for this position will be required to adhere to NTT DATA’s and its clients’ COVID-19 health and safety protocols. NTT DATA is committed to complying with the Safer Federal Workforce Task Force COVID-19 Workplace Safety Guidance for Federal Contractors and Subcontractors to the extent it is enforced by the federal government or any of its clients. If this position becomes subject to a COVID-19 vaccination mandate based on applicable law or client requirement, candidates will be required to become fully vaccinated as defined by NTT DATA or be approved for an exemption in accordance with applicable law.


Basic Qualifications:

  • Possess a current Secret clearance
  • Twelve (12) experience conducting cloud readiness assessments of applications
  • 8570 compliant for IAT III (One of: CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, or GCIH)
  • ITIL High Velocity IT certification


Preferred Qualifications:

  • 5+ years of experience in the use of vulnerability assessment tools
  • 3+ years of experience in penetration testing
  • 3+ years of experience in cyber security assessment and authorization
  • Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities
  • Knowledge of cybersecurity principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
  • Knowledge of cybersecurity principles used to manage risks related to the use, processing, storage, and transmission of information or data
  • Knowledge of the Security Assessment and Authorization process
  • Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption)
  • Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth)
  • Skill in discerning the protection needs (i.e., security controls) of information systems and networks
  • Skill in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes
  • Knowledge of relevant laws, policies, procedures, or governance related to critical infrastructure.
  • Knowledge of Risk Management Framework (RMF) requirements
  • Knowledge of organization's evaluation and validation requirements
  • Knowledge of cyber defense and vulnerability assessment tools, including open source tools, and their capabilities
  • Knowledge of known vulnerabilities from alerts, advisories, errata, and bulletins
  • Knowledge of penetration testing principles, tools, and techniques
  • Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code)
  • Experience with Azure and Data Center security solutions
  • Master’s degree preferred


About NTT DATA Services

NTT DATA Services is a global business and IT services provider specializing in digital, cloud and automation across a comprehensive portfolio of consulting, applications, infrastructure and business process services. We are part of the NTT family of companies, a partner to 85 % of the Fortune 100.

NTT DATA Services is an equal opportunity employer and considers all applicants without regarding to race, color, religion, citizenship, national origin, ancestry, age, sex, sexual orientation, gender identity, genetic information, physical or mental disability, veteran or marital status, or any other characteristic protected by law. We are committed to creating a diverse and inclusive environment for all employees. If you need assistance or an accommodation due to a disability, please inform your recruiter so that we may connect you with the appropriate team.

Job Segment: Open Source, Data Center, Information Systems, Information Security, Database, Technology