Job DescriptionOur client in Washington, DC has a Full Time job opening for an Information Systems Security Engineer:Job Summary:This position is within the Infrastructure Operations Branch and shall focus on IOB compliance with the Administrative Office (AO) Information Technology Security Office (ITSO) security assessments, published systems security posture, and industry best practices in a perpetual mode. This position will work closely with the Infrastructure Management Office (IMO) Information Assurance (IA) team (ISSM, ISSO), branch system administrators, and program technical staff for ongoing and emerging programs requirements.

Job Responsibilities:

Advise and assist with the lifecycle Assessment and Authorization (A&A) process and developing and updating Systems Security Plans (SSP).Maintain A&A project documentation in the Cyber Security Assessment and Management (CSAM) tool and update the documents on an annual basis as part of the continuous monitoring of the Risk Management Framework (RMF) requirement.Perform independent compliance reviews, tracking, and continuous monitoring of RMF A&A packages.Prepare & oversee documentation for systems and network elements that need decommissioning, Authority to Operate (ATO) extensions, System migrations and Standalone accreditations.Collaborate with Information System Owners (ISO), A&A personnel to ensure all necessary Information Assurance (IA) documentation are provided for transition to production service.

Collaborate with Engineers to ensure mitigation of System findings, updating Plan of Action and Milestones (POAMs), and backing up system packages and network elements in event of outages.Review and maintain information assurance policies, procedures, and Certification & Accreditation (C&A) of systems.Assist System Administrators in security, analyses, and risk/vulnerability assessments.

Establish, monitor, and re-assess system POAMs to effectively address system weakness or vulnerabilities.

Work closely with System Owner (SO) and Technical POC for assigned systems to develop and/or maintain the following Security Assessment & Authorization (SA&A) Artifacts:
System Security Plan (SSP), Risk Assessment Report (RAR), Business Impact Analysis (BIA), Contingency Plan (CP), Contingency Plan Testing and Plan of Action & Milestones (POAMs).

Required Qualifications:
6+ years of progressive technical (hands-on) experience related to Information Assurance/Cyber Engineering requirements, determination, development, and implementation Experience implementing Risk Management Framework (RMF) Process and NIST 800-53 technical controls and developing and maintaining associated certification and accreditation documentation Experience in security systems engineering involving various computer hardware and software operating system and application solutions in both stand-alone and LAN/WAN configurations Experience with security features and/or vulnerability of various operating systems as defined by NIST, DISA (STIGs), and USCYBERCOM.

Experience with network and system security administration, including operating system security configuration and account management best practices for UNIX (HP-UX & Solaris), Window Server, Windows clients, Microsoft Exchange, Red Hat Enterprise Linux, CentOS, Ubuntu and CISCO systems Experience with performing patch updates and vulnerability remediation Experience with IA vulnerability testing and related network and system test tools:
Retina, NMap, ACAS, EVSS, HBSS, Nessus, Security Content Automation Protocol (SCAP) Experience with cyber security toolset including anti-virus, Vulnerability Assessment, HIDS and NIDS Hands on experience with configuring and maintaining networking devices (firewalls, switches, routers, Taclanes, NSA Type I encryption, etc.

)

Preferred Skills:
Security-related Network (Cisco) and Operating Systems (Redhat) certification or training Experience briefing senior U.S.

Government and company program leadership Self-starter requiring limited direction and supervision Ability to organize and prioritize numerous customer requests in a fast paced, deadline driven environment Bachelor's Degree in Computer Science, Information Technology, Engineering or related technical field (Master's Degree preferred) or equivalent experience The client has a benefits package including Health, Vision, Dental, 401K, Paid Vacation
Associated topics:
active ts sci, artillery, clearance, coast guard, confidential, fullscope polygraph, electronics surveillance, security clearance, top secret with sci, weapon

Read More

Copyright © 2017 Americanlisted.com, All Rights Reserved.
Designated trademarks and brands are the property of their respective owners.