Information Assurance Engineer Intermediate
Description:
Highlights:
Our Team is very motivated for the success of the mission, also the contract is very flexible with hours.
This Team is separated in 9 different tasks; each task has its part in order to guarantee the success of the mission/warfighter.
This position is unique in that you’ll be reviewing the different technologies and understanding our environment and the impact across the globe.
Customer support is a huge factor for our Client and to understand requests from around the world.
You will become well-versed in ACAS, NIST security control assessment, compliance validation, vulnerability analysis, compliance reporting, ESS site administration, along with other technologies.
Typical Day:
Providing all aspects of validation of security controls, analysis reporting, intelligence report creation, DISA STIG validations, CTO tracking/notifications/reporting, P/CR validations, documentation review, eMASS management, and Tenable ACAS Security Center management. Working with the Team to determine best practices and how to implement the best practices.
Tasks:
Familiar with Cybersecurity-Related IA and IA-Related Policies and Issuances as developed by the DoD Deputy CIO for Cybersecurity.
Familiar with activities associated DoD Information Assurance Risk Management Framework (RMF), to include the NIST 800 SP series, 800-37 R1, Guide for Applying the Risk Management Framework to Federal Information Systems, FIPS 200, Minimum Security Requirements for Federal Information Systems, 800-53 R4, Security and Privacy Controls for Federal Information Systems, 800-53A R1, Guide for Assessing the Security Controls in Fed Information Systems, 800-18 R1, Guide for Developing Security Plans for Federal Information Systems, 800-30, Rev 1, Risk Management Guide for IT Systems, 800-137, Continuous Monitoring, 800-39, Managing Information Security Risk, and other related.
Familiar with requirements related to CJCSI 6510.01F, Information Assurance and Computer Network Defense.
Familiar with CJCSI 6211.02D, Defense Information System Network (DISN) Responsibilities.
Working knowledge of the NIPRNet Systems/Network Approval Process (SNAP) and SIPRNet GIG Interconnection Approval Process System (SGS) databases for requesting DISN - Authorities to Connect (ATCs).
Familiar with the DoD Information Assurance Vulnerability Management System.
Familiar with administration and management of the DoD Enterprise Mission Assurance Support Service (eMASS).
Knowledge in varied IT disciplines outlined in DISA Security Technical Implementation Guide and ability to validate compliant/non-compliant status for devices and services present.
Ability to communicate ongoing vulnerabilities or noncompliance with Plan of Action & Milestones (POA&M).
Familiar with the workflow processes for POA&M approval, Annual Security Review, Access and Authorize, and Extensions.
Working knowledge of US CYBERCOM responsibilities, orders, and directives in securing the DoDIN.
Familiar with the Army Registry for Network Layer 3 Devices (ARNLD) and the DoD NIPRNet DMZ Whitelist databases and effectively ensuring that required records are entered and kept updated on a recurring basis.
Familiar with activities related to DODI 8551.1 for Ports, Protocols, and Services Management (PPSM) and ensuring that networks information, in concert with DFSC IT, is correctly provided to respective networks databases.
Familiar with Continuous Monitoring requirements, tasks, and directives outlined in FISMA CCIS.
Familiar with DoD NIPR and SIPR Network Information Centers (NICs).
Familiar with Configuration Management documentation, processes, and validation of ongoing projects.
Able to provide direct support, knowledge, and artifacts to compliance visitation teams and DoD inspections for Cybersecurity compliance.
Ability to write IA policies and SOPs necessary to implement and maintain required operating Security Controls and necessary supporting artifacts for RMF validation and inspection.
Familiar with Continuous Monitoring Critical Security Controls monitoring and reporting SIEMs and sensors.
Familiar with ESS/Trellix.
Knowledge and/or familiarity with ongoing NETCOM projects, such as NETMAN, SYSMAN, ACAS, etc.
Capability to administer and manage Tenable Security Center as well as all associated modules.
Understanding of the role of the CND Service Providers for network protection services at Tier 2 for the NIPR and SIPR.
Required Qualifications:
Education: Bachelor’s Degree in computer science, information science, engineering, business, or related scientific or technical discipline or equivalent in accordance with Education/Experience.
Education Substitution: Four (4) years’ experience (in addition to minimum experience requirements) may be substituted for a Bachelor’s degree.
Experience: Three (3) Years.
Leads and/or executes engineering development process.
Leads or participates in eliciting and/or deriving requirements from stated objectives and requirements. Designs input, outputs and processes for system components or modules. Integrates the system or systems of systems into a whole. Documents a system or system of system designs.
Participates in all phases of development and engineering with emphasis on planning, analysis, development, integration, testing, documentation, and presentation of the engineering.
Certifications IAM-I certification requirements IAW DOD 8570.01-M – (Security+ CE or, GSLC, or CAP.
Security clearance /IT access requirement – Secret/IT Level II.
Investigation requirement – Tier 3 (T3) (equivalent or higher)
Physical Job Requirements:
Predominantly operates in an office environment. Some periods of time may be spent in computer room and communications equipment spaces for installation, testing, and troubleshooting. Some work (less than 5%) requires moving and lifting of heavy networking equipment.
Position Type Shift Information:
Day Shift
Contract has Flexibility to work either 8 hours for 5 days and/or 10 hours for 4 days: At the Project Manager's discretion.
Clearance: US Secret clearance required
US Citizenship: US citizenship required
Location: Clarksburg, WV
Ideal Innovations, Inc. is an Equal Opportunity Employer:
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, or veteran status.
Ideal Innovations, Inc. is a VEVRAA Federal Contractor.