Information Systems Security Engineer/Senior Systems Engineer - TS/SCI w/Poly

Information Systems Security Engineer/Senior Systems Engineer - TS/SCI w/Poly

• Manage documentation of systems and/or all networks.
• Assist with the development and maintenance of all necessary C&A documents
• Provide coordination, tracking, and management through all aspects of the initial and recurring C&A processes.
• Conduct independent assessments of all required security controls including interviews, examinations, and testing and prepare the assessment findings report.
• Work with system owners to resolve findings and answer questions.
• Perform cybersecurity review and validation services for cybersecurity authorization deliverables and record results.
• Support the Risk Management Framework (RMF) process using applicable tools.
• Attend and participate in required meetings or teleconferences.
• Continuous monitoring and plans of action and milestones (POA&M) management.
• Assessing systems deployed in Test Infrastructures
• Work in a multi-task in a dynamic, fast-paced environment.
• Provide analytical, communication and troubleshooting skills that enable proactive and effective collaboration, including the ability to clearly articulate status and present to both customers and program leadership.
• Supporting planning and testing for Certification and Accreditation processes and (Secure the Enterprise/Secure the Network (STE/STN), High Value Assset (HVA) requirements for all System security plans
• Contributing to systems engineering documentation such as System Security Engineering Plans, Initial Capabilities• SharePoint Manager maintaining Documents, Requirements Specifications, Interface Control Documents, Development System documents.
• Ensuring the technical integrity of the system baseline over time, continually updating it as various changes are imposed on the system during the lifecycle.
• Conduct System security audits in accordance to NSA/CSS policies or requirements.

• Active Top Secret security clearance with SCI and polygraph.
• Bachelor's degree in engineering, computer science or related technical discipline
• 5+ years of experience specializing in Information Security
• 7+ years of Information Technology experience
• Experience as an ISSO implementing NIST 800-171 controls.
• Have CISSP certification or equivalent per DoD Directive 8570.1.
• Demonstrated knowledge as an Information Assurance (IA) Specialist concerning C&A/A&A activities and all associated IA policies and procedures on DoD systems.
• Experience with A&A on hardware and software operating in geographically dispersed locations.
• Hands-on experience with a variety of cybersecurity tools and network scanning.
• Hands-on experience in working with DoD networks.
• Experience in FISMA and other information assurance assurance-related compliance reporting.
• Experience in developing external customer relationships and communications (e.g., DSS, DIA, NGIC, NRO, DARPA, IARPA, AF, Navy)
• Experience in COMSEC and/or program security roles
• Currently hold either of the minimum Information Assurance Manager (IAM) Level II credentials: Certified Authentication Professional (CAP) or CompTIA Advanced Security Practitioner (CASP+CE)
• 2-5 years of directly related Information Assurance (IA) or cybersecurity experience working with DoD systems.
• Working knowledge of these references: CNSSI No. 1253 "Committee on National Security Systems, Security Categorization and Control Selection for National Security Systems," DoDI 8500.01 "Cybersecurity," DoDI 8510.01 "Risk Management Framework for DoD IT," FIPS-199 Pub "Standards for Security Categorization of Federal Information and Information Systems," NIST SP 800-53 Rev 4 "Security and Privacy Controls for Federal Information Systems and Organizations."
• DoDD 8140.01 / 8570.01-M IAT Level II Certification

• 5 or more years of experience with certification and accreditation (C&A) or A&A
• Motivated self-starter with ability to work in a matrix organization and communicate effectively across all levels of the organization.
• Experience using the Risk Management Framework (RMF) support the A&A process, including analyzing the development of supporting policies, procedures, and plans, designing, and implementing security controls, testing and validating security controls, and analyzing and tracking corrective action plans.

• Hold a current Information Assurance Manager (IAM) Level III credential
• Certified Information Security Manager (CISM)
• Certified Information Systems Security Professional (CISSP, or Associate)
• GIAC Security Leadership (GSLC), or Certified Chief Information Security Officer (CCISO)