|Date Posted||September 20, 2018|
Job Number: R0032622
Information Systems Security Engineer, Senior
Update and maintain the client's Information Assurance (IA) directives, policies, and standards consistent with those of the intelligence community, DoD, Department of the Navy, and National Institutes of Standards and Technology (NIST). Develop security documentation that is compliant with Intelligence Community Directive (ICD) 503, 500-series Intelligence Community Standards (ICSs), and related NIST 800-series Special Publications (SPs). Support transformational migration from legacy on-premises IT to a Cloud-based enterprise. Support coordination, planning, sustainment, and implementation activities for Navy intelligence community Cyber programs. Create and maintain end-user documentation and training materials. Provide process improvement and documentation supporting technical and functional activities. Shepherd documentation through analysis or planning, drafting or revising, leadership review, and signature or promulgation phases.
-Experience with DoD Information Assurance (IA) Certification and Accreditation Process (DIACAP), DoD Risk Management Framework (RMF), ICD 503, and NIST RMF
-Experience with the intelligence community (IC), DoD, Navy Intelligence (NAVINTEL) IA, Fleet Cyber Command, and DoD Intelligence Information System (DoDIIS) tools, systems, reporting mechanisms, and requirements for Assessment and Authorization (A&A)
-Experience with implementing and executing security engineering practices in the system or software development life cycle (SDLC) process and designing, developing, and using host-based and network-based scanning tools
-Experience with the installation, configuration, testing, deployment, and O&M of enterprise-wide network-based scanning tools, including Retina and ACAS in support of compliance testing and continuous monitoring
-Knowledge of the DoD, IC, and national-level system security initiatives and secure information, Local Area Network/Wide Area Network, Cloud technologies, cross-domain solutions, and technologies
-BA or BS degree in CS, EE, IT, or Information Assurance
-Security+ CE Certification
-Certified Information System Security Professional (CISSP) Certification or ability to obtain within 6 months of hire
-2 years of experience with project management preferred
-Experience with Security Content Automation Protocol (SCAP)-based tools and specifications
-Experience with system or software design, development, integration, testing, system administration, and O&M
-Experience with Java, C, or C++ software development
-Ability to display proactive, results-oriented, interpersonal, and customer relations and team-building expertise
-Possession of excellent oral and written communication skills
-MS degree in CS, EE, IT, Information Assurance, or related field
-CISSP-Information System Security Engineering Professional (CISSP-ISSEP) Certification
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.
We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.