ISSM ENGINEERING INFO ASSURANCE 3

Designs and implements information assurance and security engineering systems with requirements of business continuity, operations security, cryptography, forensics, regulatory compliance, internal counter-espionage (insider threat detection and mitigation), physical security analysis (including facilities analysis, and security management). Assesses and mitigates system security threats and risks throughout the program life cycle. Validates system security requirements definition and analysis. Establishes system security designs. Implements security designs in hardware, software, data, and procedures. Verifies security requirements; performs system certification and accreditation planning and testing and liaison activities. Supports secure systems operations and maintenance.

•Work closely with various Government Agencies and Offices to generate and maintain security documentation to include System Security Plans, Risk Assessment Reports, Privileged/General User Guides, and Plan of Action and Milestones (POA&M) for classified Information Systems
• Accept responsibility for the certification and accreditation of classified Information System networks and ensures auditing requirements are completed following appropriate guidelines & requirements
• Manage changes to the systems and assesses the security impact of those changes
•Ensure all system security procedures are being followed include maintaining and reviewing software security patching and audit files per various customer requirements
•Maintain responsibility for Information System media control, anti-virus definition updates, hardware and software control for secure operating environments, Information Security briefings, education, and training
• Perform periodic self-inspections of the overall Information System program and ensuring compliance with various Government regulations
•Conduct and coordinate investigations into security violations related to the Information System program; ensures corrective actions are appropriately implemented
•Backup and assist other members of the Security Staff as required 
 

5 years relevant experience with Bachelors in related field; 3 years relevant experience with Masters in related field; 0 years’ experience with PhD or Juris Doctorate in related field; or High School Diploma or equivalent and 9 years relevant experience
• Operating knowledge of Windows/Linux operating systems 
• Experience with RMF, NIST 800-53, CNSSI 1253, and NISPOM is required 
•Security Clearance: Active Secret with ability to obtain Top Secret

• Must have a minimum of Security+ certification with a preference of CISSP 


• Bachelor of Science Degree and 10+ years’ experience administering security responsibilities


• SIPRNet knowledge and experience is a plus


• Knowledge across all aspects of Security 


• Strong communication and problem-solving skills


• Knowledge of Access Commander or SIMS is a plus


• Experience with STIGS, SCAP, SCC, vulnerability scanning, and logging tools is a plus


• Ability to work in both a team environment as well as independently