Information Systems Security Engineer - Washington, United States - Probity

    Probity
    Probity Washington, United States

    3 weeks ago

    Default job background
    Description

    Position:
    Information Systems Security Engineer 05-SC1106-1


    PLEASE NOTE:
    This position requires an


    ACTIVE
    Top Secret/SCI Clearance with Polygraph. To be considered for this position, you


    MUST
    have an


    ACTIVE
    Clearance Level of

    Top Secret/SCI with Polygraph

    Responsibilities include:


    Seeking an Information Systems Security Engineer (ISSE) to join a team of ISSEs that provides security engineering support to multiple systems.

    Primary focus is to engineer, design, implement, and test network intrusion detection system (IDS), network intrusion protection system (IPS), host intrusion protection system (HIPS), web and application protection, enterprise anti-virus suite to protect the following IT components: network, storage, computing, databases, web services and application; apply system security engineering expertise in one or more of the following to: system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off-the-shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of lA (confidentiality, integrity, non¬ repudiation, availability, and access control); and security testing; serve as the security subject matter expert for the A&A and Continuous Monitoring processes.


    Required Skills:
    Developing, maintaining, and submitting Assessment & Authorization (A&A) packages

    in Xact

    a 360

    in accordance with the ICD 503 Rev. 4 policy and Risk Management Framework (RMF).
    Knowledge of and experience with gathering bodies of evidence (BOE) for security packages.
    Developing System Secur i ty Plans (SSP) in accordance with NIST processes or the Risk Management Framework (RMF).
    Performing system analysis, system audits, system monitoring, security control assessment/testing, risk management, incident response.
    Hands-on experience with a wide range of diverse technologies or disciplines, especially related to security (ex: UNIX/Linux, Windows, Storage, Virtualization, Splunk, etc.)
    Performing vulnerability assessments.

    Desired Skills:
    Agile knowledge and experience

    Required Education:
    Bachelor's Degree in Cyber Security, Systems Engineering, Software Engineering or similar

    #J-18808-Ljbffr