Location: Fort Meade, MD
US Citizenship Required for this Position: Yes
Relocation Assistance: No relocation assistance available
Clearance Type: Top Secret
GENERAL
Information Assurance/Cybersecurity SME is strategically focused with experience in IP (routers, switches, firewalls) architecture, telecommunications, network security implementation, developing and developing RMF packages for networking solutions.
TASK DESCRIPTION
- Research, capture, and process security, technical, and policy information to develop RMF packages for networking solutions
- Implementing and testing applicable IA controls, conducting testing activities, recording compliance status, maintaining IT security POA&Ms, and performing scheduled reviews
- Ability to run audit scans and provide analysis of results. Ability to communicate scan results with System Administrators, as well as provide direction as needed to facilitate remediation
- Develop and manage Plan of Action and Milestones (POA&Ms) for the system
- Demonstrate current broad-based understanding of system architecture, computer technology, design, standards, and products based on both solid formal training and experience
- Conduct network security reviews that include validation of current network security policy, requirements, design, comparative analysis, and assessment of the information assurance architecture
- Develop operational capabilities on guiding security focused capability, processes, and situational awareness
- Write Implementation Plans, Installation Guides and Acceptance Test Plans for project deployment
- Conduct Security Test and Evaluation (ST&E) reviews including system security reviews (SRR) to ensure that systems conform to all applicable Security Technical Implementation Guides (STIGS) and write System Security Authorization Agreements (SSAA)
QUALIFICATIONS
- Bachelor’s degree in Computer Engineering or related field preferred and 5 years of hands on experience
- Security + or CISSP Certification required
- Knowledge of Federal Government’s Risk Management Framework (RMF) and writing to controls within
- Proficiency in developing, executing and monitoring Plan of Action and Milestones (POA&Ms) for the system
- Experience with ensuring corrective modifications are made to all findings of system vulnerabilities
- Experience with Intrusion Protection Systems (IPS), Intrusion Detection Systems (IDS), Firewalls, Data Loss Prevention, and Certification and Accreditation (C&A)
- Active Top Secret required
DESIRED QUALIFICATIONS
- Current CISSP or SEC+ required
- CCNA, CCIE, or JNCIS credential(s) desired