4066 Information Assurance Security Engineer

OVERVIEW :

We have an exciting and challenging opportunity for a Information Assurance Security Engineer on a 10 year contract providing User Facing and Data Center Services supporting an Intelligence Community customer. All the personnel on the team will work together to support innovative design, engineering, procurement, implementation, operations, sustainment and disposal of user facing and data center information technology (IT) services on multiple networks and security domains, at multiple locations worldwide, to support the IC mission.

GENERAL DUTIES:

• Acts as the representative of the Information System Security Manager ensuring compliance with IS security procedures.
• Supports efforts to operate, maintain, and dispose of information system materials in accordance with security directives, policies and practices and as annotated in Systems Security Plans.
• Generates and implements requisite security training to ensure user security awareness of responsibilities prior to system access.
• Initiates protective and corrective measures when incident or vulnerabilities are discovered.
• Ensures IA hardware and software complies with security configuration guides.
• Implements and enforces IA policies and procedures as defined by A&A documentation.
• Ensures users are aware of their IA responsibilities.
• Ability to work on multiple projects/tasks at once and operate in a dynamic, fast-paced, team-oriented environment.
• Performs Operations & Sustainment (O&S) functions for the NCE network security infrastructure (firewalls, web gateways, mail gateways, ids, load balancers, performance monitoring tools, mgt systems, etc).
• Performs maintenance and/or advanced configuration of equipment in order to protect the network from emerging cyber threats.
• Conducts forensic traffic/log analysis to isolate issues or responds to analyst alerts.
• Responds to escalated troubleshooting requests.
• Maintains and administers network infrastructure standards, documentation and fault tolerance.
• Presents Monitoring/Test Results and Reports as required.
• Performs/supports integration testing as required.
• Participates in special projects as required.
• Reviews Plan of Action and Milestones (POA&Ms) and conducts a technical decomposition categorization, remediation, and lien resolution.
• Executes remediation process to implement technical solutions to address vulnerability findings via ACAS security scan.

REQUIRED QUALIFICATIONS

• Bachelors Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience.
• 6 years of related experience in data security administration.
• IAM II certification to start in accordance with DOD 8570.1M.
• Experience with Cloud Infrastructure/AWS-based technology.
• Experience using security tools such as ACAS, HBSS, Carbon Black, Tanium, RedSeal, and EMET.
• Experience installing, hardening, deploying, documenting, and troubleshooting network perimeter security technologies.
• Experience and scripting ability on Unix and/or RHEL OS.
• Experienced with complex Microsoft macros, and PowerShell scripts.
• Basic understanding of Windows Enterprise AD architecture and VMWare Virtualization.
• Must be proficient in network routing/vlan technology.
• Must have knowledge of and experience with ICD 503 and be familiar with Cloud Infrastructure/AWS-based solutions.

DESIRED QUALIFICATIONS:

• System administration experience.
• CISSP certification or equivalent (CAP, GSLC, CISM).
• Network engineering experience.
• System design and development experience.
• Defines, plans, designs, and evaluates information security systems.
• Assess architecture and current hardware limitations, defines and designs system specifications, input/output processes and working parameters for hardware/software compatibility.
• Performs a variety of complex tasks associated with information security ranging from the design of security components to complex architectures.
• Supervises the work of other engineers performing a variety of information security tasks.

CLEARANCE :

• TS/SCI with ability to obtain CI poly.