Vacancy caducado!
Information Systems Security Engineer/Senior Systems Engineer - TS/SCI w/Poly
Job Category: EngineeringTime Type: Full timeMinimum Clearance Required to Start: TS/SCI with PolygraphEmployee Type: RegularPercentage of Travel Required: Up to 10%Type of Travel: Continental USCACI has an exciting opportunity for the right person to join our team as a Information Systems Security Engineer in the Fort Meade, MD area. You will use your fourteen 14' experience to support the customer:Role:- Manage documentation of systems and/or all networks.
- Assist with the development and maintenance of all necessary C&A documents
- Provide coordination, tracking, and management through all aspects of the initial and recurring C&A processes.
- Conduct independent assessments of all required security controls including interviews, examinations, and testing and prepare the assessment findings report.
- Work with system owners to resolve findings and answer questions.
- Perform cybersecurity review and validation services for cybersecurity authorization deliverables and record results.
- Support the Risk Management Framework (RMF) process using applicable tools.
- Attend and participate in required meetings or teleconferences.
- Continuous monitoring and plans of action and milestones (POA&M) management.
- Assessing systems deployed in Test Infrastructures
- Work in a multi-task in a dynamic, fast-paced environment.
- Provide analytical, communication and troubleshooting skills that enable proactive and effective collaboration, including the ability to clearly articulate status and present to both customers and program leadership.
- Supporting planning and testing for Certification and Accreditation processes and (Secure the Enterprise/Secure the Network (STE/STN), High Value Assset (HVA) requirements for all System security plans
- Contributing to systems engineering documentation such as System Security Engineering Plans, Initial Capabilities• SharePoint Manager maintaining Documents, Requirements Specifications, Interface Control Documents, Development System documents.
- Ensuring the technical integrity of the system baseline over time, continually updating it as various changes are imposed on the system during the lifecycle.
- Conduct System security audits in accordance to NSA/CSS policies or requirements.
- Active Top Secret security clearance with SCI and polygraph.
- Bachelor's degree in engineering, computer science or related technical discipline
- 5+ years of experience specializing in Information Security
- 7+ years of Information Technology experience
- Experience as an ISSO implementing NIST 800-171 controls.
- Have CISSP certification or equivalent per DoD Directive 8570.1.
- Demonstrated knowledge as an Information Assurance (IA) Specialist concerning C&A/A&A activities and all associated IA policies and procedures on DoD systems.
- Experience with A&A on hardware and software operating in geographically dispersed locations.
- Hands-on experience with a variety of cybersecurity tools and network scanning.
- Hands-on experience in working with DoD networks.
- Experience in FISMA and other information assurance assurance-related compliance reporting.
- Experience in developing external customer relationships and communications (e.g., DSS, DIA, NGIC, NRO, DARPA, IARPA, AF, Navy)
- Experience in COMSEC and/or program security roles
- Currently hold either of the minimum Information Assurance Manager (IAM) Level II credentials: Certified Authentication Professional (CAP) or CompTIA Advanced Security Practitioner (CASP+CE)
- 2-5 years of directly related Information Assurance (IA) or cybersecurity experience working with DoD systems.
- Working knowledge of these references: CNSSI No. 1253 "Committee on National Security Systems, Security Categorization and Control Selection for National Security Systems," DoDI 8500.01 "Cybersecurity," DoDI 8510.01 "Risk Management Framework for DoD IT," FIPS-199 Pub "Standards for Security Categorization of Federal Information and Information Systems," NIST SP 800-53 Rev 4 "Security and Privacy Controls for Federal Information Systems and Organizations."
- DoDD 8140.01 / 8570.01-M IAT Level II Certification
- 5 or more years of experience with certification and accreditation (C&A) or A&A
- Motivated self-starter with ability to work in a matrix organization and communicate effectively across all levels of the organization.
- Experience using the Risk Management Framework (RMF) support the A&A process, including analyzing the development of supporting policies, procedures, and plans, designing, and implementing security controls, testing and validating security controls, and analyzing and tracking corrective action plans.
- Hold a current Information Assurance Manager (IAM) Level III credential
- Certified Information Security Manager (CISM)
- Certified Information Systems Security Professional (CISSP, or Associate)
- GIAC Security Leadership (GSLC), or Certified Chief Information Security Officer (CCISO)
Vacancy caducado!