Senior Security Test & Evaluation Analyst (Artificial Intelligence)
Job Locations
US-DC-Washington
| ID |
2026-4693
|
Category |
Information Technology
|
Type |
Full Time
|
Overview
We are seeking a Security Test and Evaluation Analyst with experience implementing artificial intelligence (AI) for static and dynamic security application testing, control assessments, and ethical hacking activities. The ideal candidate will have deep expertise with traditional security test and evaluation practices, activities, and technologies. The ideal candidate will also have experience working with a variety of AI technologies and models for security test and evaluation. This position will require the development and delivery of AI-enabled security test and evaluation processes, tools, and capabilities. US citizenship is required to obtain an employee badge, this is onsite in DC and we are only considering candidates that currently live within a 50 mile radious of DC.
Responsibilities
Implement comprehensive security tests that include all phases of the ethical hacking process (e.g., reconnaissance, footprinting, scanning, exploitation, and post-exploitation) and other security assessment activities (e.g., static or dynamic code review, system architecture diagram review, control evaluation) to demonstrate or emulate an adversary's ability to gain unauthorized access to sensitive data and systems that reside in either local (on-premises) or cloud computing solutions.
- Conduct security assessment activities and design approaches to augment with AI enhancements (e.g., static or dynamic code review, system architecture diagram review, control evaluation).
- Implement AI-enabled solutions for security test and evaluation and adapt existing processes to integrate emerging AI capabilities into standard operations.
- Provide key requirements, observations, design suggestions, and artifacts to inform the development of AI technologies that will support the adoption of AI technology to establish a security test and evaluation program for the Board.
- Conduct scenario-based and functional security testing during authenticated and unauthenticated testing and identify and deliver solutions that leverage AI for these capabilities.
- Analyze the output of AI models designed to identify and probe vulnerabilities in hardware, software and cloud-resident systems and suggest remediation strategies to reduce risk and close gaps.
- Abide by all governance and standards as defined by the Board or levied by external entities to remain compliant with all requirements when implementing AI solutions.
- Develop analytic products and reports that demonstrate the effectiveness of AI-enabled security test and evaluation practices to include metrics and technical reports.
Qualifications
- 5+ years of hands-on security test and evaluation experience that includes use of technologies such as Tenable Nessus, GitLab vulnerability scanning features, Fortify, Invicti, Mandiant MSV, Kali Linux, Wiz, etc.
- 3+ years of hands-on security test and evaluation experience that includes cloud resident technologies in Amazon Web Services, Microsoft Azure, Service Now, etc.
- Experience implementing comprehensive security tests to include all phases of the ethical hacking process (e.g., reconnaissance, footprinting, scanning, exploitation, and post-exploitation).
- Hands on experience implementing AI solutions for security test and evaluation.
- Experience analyzing data and software to identify and test security gaps and vulnerabilities for exploitability.
- Experience collaborating with key stakeholders to assess, prioritize, and develop actionable plans to address the discovered gaps.
- Preferred Qualifications
- Demonstrated experience leverage AI-enabled capabilities for security test and evaluation activities in a hybrid environment.
- Deep understanding of network protocols, configurations, security technologies, and security practices, including network security, operating system hardening, database security, and web application security for both local (on-premises) and cloud computing solutions.
- Deep understanding of common vulnerabilities and attack vectors, including experience identifying and exploiting vulnerabilities in operating systems (e.g., Windows, Linux, and macOS), network devices (e.g., firewalls, routers, and switches) and web applications and application program interfaces (e.g., SQL injection, cross-site scripting and cross-site request forgery).
- Experience operating in government environments that follow NIST, FISMA, FedRAMP, and OMB guidance.
- Strong problem-solving and analytical skills
- Excellent communication and documentation skills
Salary: $139,899 - 144,500 Additional benefits include:
- Paid Time Off & Holiday Pay
- Medical Insurance
- Dental Insurance
- Vision Insurance
- Disability, Life Insurance, and AD&D
- Flexible Spending Accounts
- Pre-Tax 401K and/or After-Tax Roth IRA (with employer matching contribution)
- Tuition and Technical Training Reimbursement
- Exercise Reimbursement
- Computer Reimbursement
- Employee Assistance Program
About Us: Edgewater Federal Solutions is a privately held government contracting firm located in Frederick, MD. The company was founded in 2002 with the vision of being highly recognized and admired for supporting customer missions through employee empowerment, exceptional services and timely delivery. Edgewater Federal Solutions is ISO 9001, 20000-1, 270001 certified, appraised at CMMI Level 3 Maturity for Development and Services, and has been named in the Top Workplaces in the Greater Washington Area Small Companies for 2018 through 2025. It has been and continues to be the policy of Edgewater Federal Solutions to provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, marital status, veteran status, and/or other statuses protected by applicable law.
|