- Defines information security requirements and their integration into information systems and its technology component through purposeful security design.
- Develops and implements security designs ensure that the hardware, operating systems and software applications adequately address cyber security requirements and Security Controls Traceability Matrix (SCTM).
- Identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations and recommend mitigation strategies.
- Develop, customize, and configure Splunk applications and dashboards.
- Develop Security Test Procedure (STP), conducts self-assessments to verify compliance with required configuration guidance and support A&A testing and validation of security designs.
- Conducting risk analysis reviewing ACAS, CVEs, plugins, CWEs, research, collaborate with System Administrators to mitigate identified vulnerabilities and/or author Plans of Actions and Milestones (PO&AM) as needed.
- Execution of continuous monitoring efforts responds to data calls, scan requests, and various weekly and monthly security metrics reporting requirements.
- Validate control implementations provide enforcement of the require data access and network flow restrictions align with the continuous monitoring strategy.
- Participates in Agile Planning Events to provide technical input.
- Support government activities and reporting to appropriate IC and DoD authorities (i.e., USCYBERCOM, IC-SCC)
- Support security authorization activities in compliance with the customer Information System Certification and Accreditation Process following the NIST Risk Management Framework (RMF), CNSSI No 1243 and other prescribed business processes for security engineering.
- Assist architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and enterprise solutions.
- Apply system security engineering expertise in one or more of the following to: system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off-the-shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non-repudiation, availability, and access control); and security testing.
- Must be a US Citizen
- 8 years of relevant experience and a Bachelor's degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university is required. A Master's degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline may be substituted for two (2) years of additional experience. Four (4) years of additional ISSE experience may be substituted for a bachelor's degree.
- DoD 8570 compliance with IASAE Level 3 is required
- Three (3) years of experience in scripting languages, Linux/RedHat, and/or Networking Appliances
- Active TS/SCI security clearance with the ability to obtain polygraph is required
- Skilled in implementing mitigation strategies and how to resolve problems, and to re-test/ re-evaluate systems
- Demonstrated experience with DISA Security Technical Implementation Guide (STIG) implementation and Security Content Automation Protocol (SCAP) tool usage
- Possess a working knowledge of administrating servers, system and application security threats and vulnerabilities
- Experience extending existing applications in areas such as security, monitoring, task automation, continuous integration, deployment, and performance optimization
- Demonstrate writing of your own project in scripting/programming (use of Shell scripting, Python, JavaScript, PowerShell) in a Linux or Windows environment to support the various Cyber Security tools and applications required
- Provide guidance on vulnerability and malware remediation.
- Experience analyzing vulnerabilities, establishing cause and impact, and identifying the corrective action needed to eliminate and prevent the event from happening in the future.
-
Information Assurance Security Engineer
3 days ago
Leidos Herndon, United StatesDescription · Leidos has an opportunity for an Information Assurance/Security Engineer) to support the EAMS Program. The ideal candidate will be joining a small team and will share the knowledge, workload and the future for a mission critical application. · Must be able to work ...
-
Information Assurance Security Engineer
2 weeks ago
Leidos Herndon, VA, United StatesLeidos has an opportunity for an Information Assurance/Security Engineer) to support the EAMS Program. The ideal candidate will be joining a small team and will share the knowledge, workload and the future for a mission critical application.Must be able to work on-site in Herndon ...
-
Information Assurance Security Engineer
3 weeks ago
Leidos Herndon, United StatesLeidos has an opportunity for an Information Assurance/Security Engineer) to support the EAMS Program. The ideal candidate will be joining a small team and will share the knowledge, workload and the future for a mission critical application.Must be able to work on-site in Herndon ...
-
Leidos Herndon, United StatesR Description Leidos has an opportunity for an Information Assurance/Security Engineer) to support the EAMS Program. The ideal candidate will be joining a small team and will share the knowledge, workload and the future for a mission critical application. Must be able to work on- ...
-
Telos Corporation Herndon, VA, United StatesThe most security-conscious organizations trust Telos Corporation to protect their vital IT assets · The reputation of our company rests on the quality of our solutions and the integrity of our people · Explore what you can bring to our solutions in the areas of cyber, cloud and ...
-
Information Assurance/Security Engineer IV
4 weeks ago
Creative Solutions Services, LLC Herndon, United StatesCandidate MUST possess a TS/SCI clearance with Intel Polygraph · Senior Principal Information Assurance/Security Engineer · {will accept higher or lower levels if candidate qualifies} · As a Computer Systems Security Analyst on the TALOS program, you will be expected to: · • ...
-
Byte Systems, LLC Herndon, United StatesCandidate MUST possess a TS/SCI clearance with Intel Polygraph Senior Principal Information Assurance/Security Engineer {will accept higher or lower levels if candidate qualifies} As a Computer Systems Security Analyst on the TALOS program, you will be expected to: · • Design and ...
-
Senior Information Assurance/Security Engineer
2 weeks ago
Peraton Herndon, United States Full timeResponsibilities · Peraton's National Programs Business Intelligence Systems & Applications Operating Unit has a need for an experienced ISSE to support its SITE III JIOC contract charged with the orchestration, sustainment, and evolution of a portfolio of applications that focus ...
-
Principal/Cyber Systems Security Engineer
6 hours ago
Northrop Grumman Dulles, United States Full timeRequisition ID: R · Category: Information Technology · Location: Dulles, Virginia, United States of America · Clearance Type: SCI · Telecommute: No- Teleworking not available for this position · Shift: Days (United States of America) · Travel Required: Yes, 10% of the Time · Pos ...
-
Crypto/Cyber Systems Security Engineer
6 hours ago
Northrop Grumman Dulles, United States Full timeRequisition ID: R · Category: Information Technology · Location: Dulles, Virginia, United States of America · Clearance Type: SCI · Telecommute: No- Teleworking not available for this position · Shift: Days (United States of America) · Travel Required: Yes, 10% of the Time · Pos ...
-
Aspire Technologies Washington, United StatesWe are looking for **A214: IA&SS Journeyman (Information Assurance and Security Specialist Master) (Webcam interviews)** · **DIRECT CLIENT Position** · **Length: 9-21 Months + **(annual extensions) · **Location: 1101 4th St. SW, 6th Floor, Washington DC 20024** · **Immediate inte ...
-
Peraton Herndon, United StatesResponsibilities · Join Peraton as an Information System Security Engineer (ISSE) on our SITE III JIOC Contract · Role Overview: · As a key member of our SITE III JIOC team, you will be instrumental in enhancing the security posture of a diverse suite of applications supporting ...
-
Peraton Herndon, United StatesAbout Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deli ...
-
Peraton Reston, United States Full timeResponsibilities · Provides technical and programmatic Information Assurance Services to internal and external customers in support of network and information security systems. Designs, develops and implements security requirements within an organization's business processes. Pre ...
-
Peraton Reston, United StatesAbout Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deli ...
-
Sentar Arlington, United StatesSentar is dedicated to developing the critical talent that the connected world demands to create solutions to address the convergence of cybersecurity, intelligence, analytics, and systems engineering. We invite you to join the small business team where you can build, innovate, a ...
-
Security Assurance Senior Analyst
1 week ago
Qualtrics Reston, United StatesQualtrics · Know what your customers and employees need, when they need it, and deliver it every time with powerful, AI driven Experience Management (XM) software. · View company page · At Qualtrics, we create software the world's best brands use to deliver exceptional frontli ...
-
Security Assurance Senior Analyst
1 week ago
Qualtrics Reston, United StatesAt Qualtrics, we create software the world's best brands use to deliver exceptional frontline experiences, build high-performing teams, and design products people love. But we are more than a platform-we are the creators and stewards of the Experience Management category serving ...
-
Arcfield Herndon, United StatesOverview · Arcfield is a leading provider of full lifecycle, mission-focused systems engineering and integration capabilities to the U.S. government and its allies. The company has more than 60 years of proven experience providing advanced engineering and analysis, IT and C5ISR ...
-
Security Engineer
2 weeks ago
Marathon TS Herndon, United StatesPosition Overview: · Marathon TS is seeking a Security Engineer to support one of our federal clients in Herndon, VA with a focus on Experience in Cloud, DevSecOps, Container Security, IAM patterns, WAF/CDN/DDoS services, security, and governance tools.This role would require a ...
Information Assurance/Security Engineer IV - Herndon, United States - DAn Solutions Inc
Description
REQUIRES AN ACTIVE/EXISTING TS/SCI WITH CI POLYGRAPH - NO REMOTE WORK, MUST WORK ONSITE
Required Qualifications:
Desire Qualifications: