Today
Top Secret/SCI
Unspecified
Full Scope Polygraph
IT - Security
Annapolis Junction, MD (On-Site/Office)
Job Description:
Qualifications:
Clearance
TS/SCI with FS Polygraph
- The Information Systems Security Engineer (ISSE) shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies.
- Validates and verifies system security requirements definitions and analysis and establishes system security designs.
- Designs, develops, implements and/or integrates IA and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements.
- Builds IA into systems deployed to operational environments.
- Assists architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and enterprise solutions.
- Supports the building of security architectures.
- Enforce the design and implementation of trusted relations among external systems and architectures.
- Assesses and mitigates system security threats/risks throughout the program life cycle.
- Contributes to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations.
- Reviews certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its content.
- Applies system security engineering expertise in one or more of the following to: system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off-the-shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non-repudiation, availability, and access control); and security testing.
- Support security authorization activities in compliance with NSA/CSS Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF), the NIST Risk Management Framework (RMF) process, and prescribed NSA/CSS business processes for security engineering.
- Experience to manually review network diagrams, network device configurations, termination points for VPNs and working knowledge of software TLS security.
- Maintain flexible and non-traditional Risk Management Framework (RMF) review of unclassified/classified networks to assess and prescribe countermeasures for secure communications.
- Familiar with applying different security standards and frameworks.
- Ability to create security assessment reports, adhoc technical/administrative tasks, keen writing skills and leadership qualities.
- Strong crypto, network and cloud computing background.
Qualifications:
- Twenty (20) years experience as an ISSE on programs and contracts of similar scope, type, and complexity is required .
- Bachelor's degree in Computer Science , Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university is required .
- A Master's degree in Computer Science , Information Assurance, Information Security System Engineering, or related discipline may be substituted for two (2) years of experience, reducing the requirement to eighteen (18) years of experience.
- Four (4) years of additional ISSE experience may be substituted for a bachelor's degree.
- DoD 8570 compliance with IASAE Level 3 is required Both Information Systems Security Engineering Professional (ISSEP) and CISSP Certifications are required .
Clearance
- Active TS/SCI Full Scope Clearance required .
TS/SCI with FS Polygraph
group id: 91091699
