Information Assurance (IA) System Security Engineer III

Description

• Integrate/Develop new techniques to improve Confidentiality, Integrity, and Availability for networks/systems operating at various classification levels.
• Review ISSE related designs and provides security compliance recommendations.
• Integrate ancillary monitoring tools/capabilities with the enterprise security information and event management (SIEM) and create/tailor complex event alarms/rules and summary reports.
• Analyze technical risk of emerging cybersecurity tools and processes.
• Recommends cybersecurity software tools and assists in the development of software tool requirements and selection criteria to include the development of product specific STIGs from applicable DISA SRGs.
• Assist team to design, integrate, and implement JSIG/RMF Continuous Monitoring tools and processes.
• Perform analysis of network security, based upon the Risk Management Framework (RMF) with emphasize on Joint Special Access Program Implementation Guide (JSIG) authorization process.
• Enforce the design and implementation of trusted relations among external systems and architectures.
• Represent the customer in various SSE related working groups, advisory groups, and advisory council meetings.
• Leads technical teams in implementation of predetermined long-range goals and objectives.
• Develop improvements to security assessments with regard to accuracy and efficiency.
• Write and execute cybersecurity test procedures for validation of control compliance.
• Contributes to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations.
• Assists architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of DoD and other agencies security policy and enterprise solutions.
• Provides expert level consultation and technical services on all aspects of Information Security.
• Supports customer and SAP community IA working groups, participate in SSE IPT reviews.
• Integrate COTS & GOTS products to collect, display and remediate a variety of automated system security and system operations/performance functions and metrics.
• Represent the customer in various ISSE related working groups, advisory groups, and advisory council meetings.
• Assist with site activation activities and design reviews.
• Work as part of a security incident response team as needed.
• Perform security assessments of servers/network devices/security appliances.
• Build operational Operations and Maintenance (O&M) checklists to maintain the service (daily, weekly, monthly, yearly O&M checklists); build Tactics, Techniques and Processes (TTPs) and Standard Operating Processes (SOPs) associated with service checklists.
• Contributes to the development of new principles, concepts, and methodologies.
• Assist with development and maintenance of the Program Protection Plan.
• Assesses and mitigates system security threats/risks throughout the program life cycle.
• Chair and or Co-Chair customer and SAP community IA working groups, participate in ISSE IPT reviews.
• Serves as technical expert to the Cybersecurity Assessment Program providing technical direction, interpretation and alternatives to complex problems.
• Monitor/analyze output of cybersecurity related tools for reportable security incidents and residual risk.
• Provide ISSE support for Mission and Training systems design and development.
• Builds IA into systems deployed to operational environments.
• Lead a team of System Security Engineers and Certification and Accreditation Analysts responsible for ensuring the customers national and international security interests are protected as support equipment are designed and tested.
• Develop and provide IA risk management recommendations to the customer
• Provides expert support, research and analysis of exceptionally complex problems, and processes relating to them.
• Perform oversight of the development, implementation and evaluation of information system security program policy; special emphasis placed upon integration of existing SAP network infrastructures.

Requirements

• Toolkits, SEIMs, Logrhythm, ACAS/Nessus/SCAP, mandatory/role-based access control concepts (e.g. SE Linux extensions to RHEL, PitBull, AppArmor, and Sentris) , video teleconferencing/VOIP, Oracle/MS SQL database security, and Apache/IIS Web server security.
• Strong background in Patch/Configuration management, DevOps, and tier 3 support.
• Works on unusually complex technical problems and provides highly innovative and ingenious solutions.
• Advanced technical competency in one or more of the following supported platforms: Microsoft Windows Server, Active Directory, Red Hat Enterprise Linux servers, MS Hyper- V/VMWare/ESx/Xen Hypervisors, Enterprise networking/firewalls/intrusion detection/prevention systems, forensic analysis/vulnerability assessment, Group Policy management and configuration, Scripting, BMC Footprints, WSUS, Lumension, Bitlocker, SQL Server 2012, TomCat, IIS, Windows Server 2012r2/2016, Win 10, Red Hat 6.5, Microsoft Office.
• Must have expert knowledge of DoD, National and applicable service and agency security policy, manuals and standards.
• Prior performance in roles such as ISSO, ISSM, SCA or SAP IT Technical Director.
• Masters Degree in a related discipline and 15 years of related experience or 21 years of related experience without a degree.
• Minimum of 2 years of SAP experience required.
• Thinks independently and demonstrates exceptional written and oral communications skills. Applies advanced technical principles, theories, and concepts.
• Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Architect and Engineer Level II or Information Assurance Architect and Engineer Level III within 6 months of the date of hire.

Benefits

• National Security Programs

Training + Development

Interview process

Visa Sponsorship

Security clearance