IA Security Engineer - TS/SCI with CI Poly - Security Clearance Required

ISSE - Information Assurance

Location : Aurora, CO at Buckley SFB

Clearance Required : Active Top Secret SCI with a CI Polygraph

Rate : $72 to 90 an hour depending on benefit selection

High Priority - 24 X 7 operational system - This role requires the ability to occasionally provide After Hours support.

GeoLogics is seeking a IA Security Engineer that will perform, or review, technical security assessments of computing environments to identify points of vulnerability and non-compliance with established Information Assurance (IA) standards, regulations and recommend mitigation strategies.

Impact of position :

Implement Information Assurance (IA) processes, provide guidance, and develop documentation throughout the system development life-cycle via the RMF tool in ServiceNOW.

• Develop, implement, and document formal security policies and System Security Plans (SSP) throughout the program and monitor compliance to these policies during all phases of the Risk Management Framework (RMF) process.
• Utilize Enterprise Security Services to provide analysis of vulnerabilities and compliance risks in ACAS, Enterprise IT audit logs in ArcSight and Splunk, McAfee Host-Based Security Services (HBSS), User Activity Monitoring (UAM), and Cyber Terrain Mapping (CTM) on 100+ nodes.
• Monitor Heat Map Score matrix and evaluate cyber risk data, keeping the score at acceptable risk levels for the security categorization of the asset(s) and their Risk Evaluation Lanes (REL).
• Manage and deliver system authorization and accreditation packages, for 4 assets that span 3 different classification levels.
• Review and make recommendations on program-level documentation
• Assess / calculate risk based on threats, vulnerabilities, and shortfalls uncovered in routine analyzation of Continuous Monitoring (ConMon) controls and provide those results as Body of Evidence (BoE) to be evaluated in 7, 30, 90 and 365 day increments as the control metrics require.
• Direct activities required to remediate system-level information security weaknesses tracked via the FISMA (POA&M) process.

Document the elements of the plans, milestones for correcting the weaknesses, and scheduled completion dates for the milestones, periodically reporting remediation progress as necessary.

• Brief leadership, as needed, on the status of action items and / or results of activities affecting the security posture of the program.
• Able to collaborate and communicate effectively with other system engineers, system administrators, software developers, and information assurance professionals.

Qualifications and Skills :

• Over 5 years' experience, within the Intelligence Community (IC) as a Government Contractor and over an additional 5 years working as a Contractor or within the Government.
• DoD 8570.01 IAT level 2 or greater cybersecurity certification per DoD 8570.01 (Security+ preferred)
• Security Systems Engineering involving Linux and CENTOS operation systems in both stand-alone and LAN / WAN configurations.
• Experience developing Security Authorization Requirements, performing vulnerability assessments, and implementing threat mitigation updates on embedded systems and products including :
• Configuring and Hardening COTS components with STIGs.
• Continuous Monitoring and Network monitoring experience.
• Product development including architecture, requirements, design, integration and testing.
• Compliance implementation (i.e. Risk Management Framework / A&A).
• Technical reviews with both external and internal customers.
• Updating POA&M and reflect open vulnerabilities associated with servers and workstations, develop remediation plans to include milestone completion dates and status updates, and include mitigation process for closed vulnerabilities.
• Configuration Control Board (CCB).

Desired Skills and Experience :

• DISA Security Technical Implementation Guides (STIGs).
• Onboarding assets to centrally managed Enterprise solutions.
• Risk analysis on products and system components through review of CVEs, plugins, IAVAs.
• COTS / GOTS and proprietary solutions implementations
• Systems Engineering on complex embedded systems.
• CISSP (ISC)²

Required Education :

Bachelor's Degree in Engineering, or related Science, Technology, Engineering, Mathematics (STEM) degree program. (10 years' experience in lieu of formal degree may be considered)

Mary Maves

Intel & Space Sr Recruiter

703) 891-6131

[email protected]

Rates listed are not a guarantee of salary / rate. Rate offered at time of hire will depend on many factors including education, experience, interview results and skill level

GeoLogics is an Equal Opportunity / Affirmative Action Employer that is committed to hiring a diverse and talented workforce.

EOE / Disability / Veteran

CJ #Clearedjobs #CISSP #Embedded #Server #HPC