Vacancy expired!
- Provide oversight for the Computer Network Defense-Service Provider (CNDSP)
- Work with system owners to close IAVMs/ICVMs and open Plan of Action and Milestones (POA&Ms) in a rapid fashion, in accordance with DoD instructions/directives. Review all POA&MS with the Program Manager on at least a quarterly basis and update the POA&Ms accordingly.
- Provide Defense in Depth principles and technology in security engineering designs and implementation.
- Analyze existing and future systems, reviewing security architectures, and developing engineering solutions that integrate information security requirements to proactively manage information protection.
- Apply security risk assessment methodology to system development, including assessing and auditing network penetration testing, antivirus deployment, risk analysis.
- Conduct Computer Incident Response Team (CIRT) activities, including forensic analysis.
- Engineer and deploy network defense countermeasures such as anti-virus, anti-spam, and intrusion detection and prevention system solutions.
- Analyze IA security events, including threat model development and resulting security risk analysis of systems.
- Review and assess information security events and logs via sophisticated security information/event manager.
- Plan, implement, and manage a Defense In Depth for the total network and/or enclaves within the network to include such items as: scanning, remediation, host and network intrusion detection/prevention, firewalls, proxy servers, web cache, virus programs, vulnerability scanning, content filtering, remote dial in protection, Host Based Security Services, Directory Services, and Certification and Accreditation, DoD Instruction 5200.40, accreditation guidance and advice IAW AR 25-2 and IA Best Business Practices (BBPs). Plan, respond, investigate, and report undisclosed classified incident remediation.
- Assess and mitigate system security threats/risks throughout the program life cycle.
- Validate system security requirements definition and analysis and review/approve System Security Plans for enterprise-wide architectures.
- Maintain Agency public key infrastructure system Implement security designs in hardware, software, data, and procedures.
- Provide support for the Department of Defense (DoD) Public Key Infrastructure (PKI) service.
- Responsible for requesting, receiving, installation, and accountability of system (server) PKI certificates and providing technical support for PKI.
- Provide Certification and Accreditation, as well as provide Automated Information System Accreditation support
- Provide Security Risk Assessment. Perform risk analysis of resources, controls, vulnerabilities, impact of losing systems' capabilities and threats to the mission objective; provide analysis to facilitate decisions to implement security countermeasures or mitigate risk; implement countermeasures; periodically review program. Recognize possible threats and review evaluations for compliance and non-compliance.
- Bachelor's Degree in Computer Science, Cybersecurity, Computer Engineering, or related discipline
- 3+ years of experience performing Information Assurance functions and using RMF IT security controls and policies.
- Must possess and maintain an IT-I level certification IAW AR 25-2 and IAT-II certifications IAW DoD 8570.01-M
- A track record of progressively responsible information assurance experience in one or more of the following information security areas: ICD 503 (DCID 6/3) certification and accreditation, IA system evaluations, system security penetration testing, and IA security operations/network monitoring, Intrusion Detection Systems, Intrusion Prevention Systems, Security Information Management/Security Event Management, network mapping, vulnerability scanners, firewalls, routers, and other security tools
- Working knowledge of public key infrastructure and encryption systems
- Experience working on an information security incident response team.
- Certified Information Systems Security Professional (CISSP)
- Familiarity with Security Technical Implementation Guides (STIG) and system security processes
- Understanding of the DoD Information Assurance Certification and Accreditation Process (DIACAP) a plus
- Experience working in CMMI Level 3 (or higher) environments is a plus.
- Ability to organize, prioritize and meet deadlines.
- Capable of conveying complex information in a simplistic manner.
- Strong critical thinking and problem-solving skills
- Strong self-starter requiring minimal supervision.
- Able to take proactive measures to prevent problems rather than reactive by nature.
- Strong verbal and written communication to effectively express concepts, plans, and proposals
Vacancy expired!