Senior Security Engineer

Readiness Delivered. Kratos is a leader in assured aerospace communication solutions and services. We are cutting-edge innovators and creative problem solvers working collaboratively to solve our customers toughest challenges. Our culture is fast-paced and innovative. We are a trusted partneridriven by doing the right thing and achieving maximum success for our customers, our partners and ourselves. Come join a dynamic and engaging work environment as a Senior Security Consultant supporting our Continuous Monitoring capabilities and team within the Kratos DevSecOps organization. Collaborate with engineering and high-profile customers to provide vulnerability scan analysis & validation, Plan of Actions & Milestones (POA&M) review, Risk Exposure Table (RET) analysis, and support in creation / validation of vulnerability deviation requests.

In this role, you will be conducting detailed analysis on operating system, web application, database, virtualization, container, virtual-storage, and driver vulnerability scans. Analysis will be based on validating accuracy of scanning scope based on documented inventories, scan authentication, and determination of the latest vulnerability tool signatures. Reporting will capture gaps in the analysis, and fully compiled vulnerabilities to present the customers complete risk posture.i

The ideal candidate is highly organized, detail oriented, and able to trouble shoot data anomalies. Success in this growth position will allow for opportunities to assist in furthering the services and capabilities of the Kratos DevSecOps Team including automation creation and support for a variety of vulnerability scanners, security tools, and administrative tasks.

Expert knowledge MS Excel

Experience with PowerShell, GO, and/or Python

Experience with various vulnerability scanners and SBOM Generation tools such as SonarQube, Syft, Grype, NPM Audit, Artifactory xRay, Tenable, Qualys, Burp Suite, etc.

• Validate Vulnerability Scan Quality (Authentication, Signature Updates, Configuration, etc.)
• Ability to validate scans against an inventory & ensure all hosts within a boundary are scanned. (Host Inventory Management)
• Familiarity and ability to differentiate different asset types such as containers, operating systems, databases, web scans, etc.
• Familiarity and ability to differentiate different types of audit checks such as CIS Benchmark / SITG checks and vulnerability checks.

Review & Verify Data Structures / Report Outputs from Vulnerability Scanners

• Ability to understand and verify data structures such as XML, JSON, YAML, etc.
• Ability to identify required data fields for reports and utilize them accordingly
• Ability to correlate potentially complex data structures and consolidate the data into a single format for analysis

Experience with configuration / compliance checks such as CIS Benchmarks and STIGs

• Ability to identify & verify authenticated & non-authenticated scans and agent-based scans.
• Ability to validate that vulnerability tool signatures are updated to the latest version and maintain a consistent update schedule.
• Ability to validate the scope of the audit checks enabled by the scanner are properly executing on the applicable assets

Strong Communication with the customer & fellow team members.

• Actively communicate issues or concerns to the customer & team
• Actively listens and participates in meetings

Strong Writing & Editing skills to assist in writing, developing, and editing ConMon processes & documentation.

• Ability to write, edit, review, and assemble documents utilizing Microsoft Office & Markdown formatting syntax
• Ability to effectively write and clearly convey information
• Familiarity with code layout and able to extract comments to document functionality
• Familiarity with documentation styles that identify tasks that need to be accomplished & their required resources. Examples include:
  
  
  
  • Plan of Action and Milestones (POA&M)
  • Deviation Requests
  • Project Plans
  • Communication Plans
  
  
  
  

Ability to effectively accomplish complex tasks with minor guidance from team leadership.

• Ability to sequence and execute work efficiently with set timelines.
• Seek understanding and clarification of objectives within set tasks
• Ability to demonstrate flexibility and resilience in response to changing or ambiguous work situations while maintaining a positive attitude and making them learning opportunities.
• Enthusiasm for conducting research on a variety of technical & non-technical topics.

Research may be for personal improvement or to assist team members in dissecting problems.

Preferred Skills/Experience

• Experience with using git collaboratively for configuration, file, and document version control.
• Basic Experience operating in virtualized environments (e.g., KVM, VMware, OpenStack).
• Basic Experience operating in containerized environments (e.g., Docker, Kubernetes, OpenShift)
• General Linux systems administration and SQL experience.
• FedRAMP experience
• Cyber Security certifications (e.g.,Sec+, CISSP, etc.)
• Individuals currently working in or interested in Cyber Security, Vulnerability Data Management & Analytics, or long time experience in the tech field.
• Good interpersonal skills to interact with management, team members, and customers.
• Familiarity with coding languages such as PowerShell, Python and GO.
• Experience in use of, creation, and or maintenance of automation, scripts, code bases, etc.
• Familiarity with vulnerability scanners such as Nessus, Qualys, Burp Suite, AWS Inspector, etc.

#LI-Remote

Competitive salary based on experience and education

Kratos is valued for our ability to design and deliver leading edge, resilient solutions for aerospace communication, control, awareness and mission success across a continuum of offeringsifrom commercial to tailored custom solutions and integrated programs. Customers trust us to stay relevant and know we are in it for the long-haul. We bring both the capability and confidence that our customers value and depend on. And we always deliver.

This posting will close within 90 days from the Posting Date. i