Cybersecurity System Assessment Engineer with Security Clearance - Alexandria, VA, United States - Business Integra

Description

RESPONSIBILITIES:
Responsible for leading the Risk Management Engineering (RME) team in planning and preparation for security assessment and authorization (A&A) as part of the Departments Information Assurance policy and FISMA implementation efforts
Ensures the branch follows the process for Notifications of Change, security audits and compliance, IT Review Board change requests and other required DOS IT system documentation
Ensures compliance with DOS Standards and procedures – including all FAM's and FAH's on automated information systems requirements
Provides extremely high-level subject matter proficiency for work described in the task
Provides advanced technical knowledge and analysis of highly specialized applications and operational environment, high-level functional systems analysis, design, integration, documentation, training, and implementation advice on complex problems that require doctorate level knowledge of the subject matter for effective implementation
Establish and satisfy information assurance and security requirements based upon the analysis of user, policy, regulatory, and resource demands
Determine enterprise information assurance and security standards
Develop and implement information assurance/security standards and procedures
Support customers at the highest levels in the development and implementation of doctrine and policies
Recommend information assurance/security solutions to support customers' requirements
Analyze and define security requirements for computer systems, which may include mainframes, workstations, and personal computers
Direct the actions of RME personnel to coordinate, develop, and evaluate security programs for the organization

Develops and conducts tests of systems to evaluate compliance with specifications and requirements by applying cybersecurity principles and methods for evaluating, verifying, and validating of technical, functional, and performance security characteristics (including interoperability) of systems or elements of systems incorporating information technology (IT) and operational technology (OT).

Studies the organization's current physical security and computer systems and procedures and recommends information systems solutions to help the organization operate more securely, efficiently, and effectively
Brings business, IT, and OT together by understanding the needs and limitations of all.

Plans, prepares, and executes cybersecurity test of IT and OT systems to evaluate results against specifications and requirements as well as analyze test results and providing reports.

Responsible for the analysis, consultation, and reporting of the cybersecurity integration, testing, operations, and maintenance of IT and OT systems security.

QUALIFICATIONS A degree in the field of computer science or a related discipline is preferred
Minimum 3 years of experience in related field is preferred.

Relevant experience in information assurance and security standards Shall have a minimum of 5 years' experience using Tenable Nessus, Wireshark, and Splunk.

Shall have a minimum of 7 years performing system engineering.

Shall have a Master's degree in computer science or equivalent experience (>10 year technical cyber security assessments or penetration testing).