A senior engineer must be well versed in, but not limited to, operating systems, data structures, design/analysis of algorithms, database systems, programming languages, computer systems architectures, and networking and will be responsible to work independently as well as lead teams and mentor junior engineers to conduct security compliance analysis or testing of operational, management, and technical controls for IT products, including COTS and GOTS, networks, and systems. This may include:  Develop test plans and procedures using applicable security control catalog, including DCID 6/3, DoD 8500, or NIST SP 800-53;  Perform security testing and vulnerability analysis of product or system designs against applicable security criteria using common tools such as Nessus, NMAP, and WireShark;  Perform other evaluation activities, including but not limited to documentation and source code analysis, where applicable;Develop security testing and other evaluation reports to detail the findings noted during testing and other evaluation activities;  Develop mitigation strategies to address vulnerabilities uncovered during security testing; facilitate and coordinate development of or updates to security documentation to meet certification and authorization requirements as required;Work effectively and efficiently either alone and with other team members to accomplish the tasks summarized above; and,Work with the organization managers to help identify and implement changes that could improve the overall effectiveness of the organization.