Information assurance engineer / cybersecurity specialist - united states, baltimore

location(s): nationwide

hiring terms: direct-hire, full time employee, fully funded position (not considering c2c or consultants)

please note:

*us citizenship is required due to federal clearance requirement

*active dod secret clearance is preferred; ability to attain is a requirement

*valid comptia security+ certification eventually required for information security compliance (iatii)

responsibilities

within cloud environments, support the development and documentation of risk assessment results and recommendations using identified threats, applicable vulnerabilities, and likelihood of occurrence within context of risk tolerances; providing recommendations for corrective actions and mitigation strategies.provide automated and manual validations of information assurance controls (iacs) and validation procedures (vps) in accordance with the dod guidelines, cnssi 1253 and/or nist 800 publications.produce documentation about inherited ia controls for application development, team support, and guidance on ia control mitigation.perform checks of systems and applications for ia vulnerabilities using approved automated ia tools (nessus acas, scap, disa stig viewer,vulnerator, hbss, etc.), custom scripts and manually (security technical implementation guides [stigs]).document raw findings in a quick look report, for customer notification. create and maintain system plan of action and milestones (poa&m).perform self-assessments, audits, and independent verification & validation (iv&v) for dod and other federal agencies.develop security requirements traceability matrix (strm), aligning security requirements with the individual components of a system.produce security risk assessment briefs and reports for delivery to stakeholders and senior management.consult on current and upcoming projects covering all levels of it/cyber security.

qualifications

education: bachelor's degree in computer science, engineering, information systems, information technology, business, physical science, or other technology-related discipline.experience: six (6) or more years of professional experience in dod c5isr systems, or information technologies to include: applicable security discipline principles and practices, technology analysis and assessment, design definition, development of systems specification, systems analysis, systems architecture, systems validation, data center engineering, network engineering, systems/equipment integration, and/or test & evaluation.must possess experience leading multiple risk management framework (rmf) to authority to operate (ato) processes on both ia systems in development and production.must have experience with department of defense (dod) specific information assurance protocols, policies, & procedures.experience with the a&a process and with diacap/rmf package documentation.preferred experience evaluating/assessing systems in government cloud environments usingdevsecopsprincipals with continuous security.preferred experience administering or configuring window severs/ vmware exsi/ database (sql, oracle)/web (iis, apache)/ sharepoint/ linux/unix/solaris/ cisco network gear (switches, routers, asa, etc.) f5/palo alto/ brocade devices /sans-nas.preferred experience with the marine corps assessment and authorization process (mcaap).us citizenship requiredactive dod secret clearance preferred; ability to attain active dod secret clearance is requiredvalid security+, cissp, or equivalent certification is preferred; ability to attain certification(s) within 1 month from start date is required (minimum: dod 8570.1-m iat level ii)

physical requirements

work may involve sitting or standing for extended periods of time. position may require typing and reading from a computer screen. must have sufficient mobility, including but not limited to bending, reaching, and kneeling to complete daily duties in a timely and efficient manner. there is a possibility that due to parking availability and location of work, walking moderate to long distance may be required. possible lifting up to 50lbs.

please note: 4s-silversword software and services llc reserves the right to change or modify job duties and assignments at any time. the above job description is not all encompassing. positions functions and qualifications may vary depending on business needs.4s-silversword software and services llc is an equal opportunity employer and does not discriminate against applicants based on race, color, creed, religion, medical condition, legally protected genetic information, national origin, sex (including pregnancy, childbirth or related medical condition), sexual orientation, gender identity and expression, age, disability, or vietnam era, or other eligible veteran status or legally protected characteristics.

Apply to this job now Report abuse

More jobs