Vacancy expired!
- Provide oversight for the Computer Network Defense-Service Provider (CNDSP)
- Work with system owners to close IAVMs/ICVMs and open Plan of Action and Milestones (POA&Ms) in a rapid fashion, in accordance with DoD instructions/directives. Review all POA&MS with the Program Manager on at least a quarterly basis and update the POA&Ms accordingly.
- Provide Defense in Depth principles and technology in security engineering designs and implementation
- Analyze existing and future systems, reviewing security architectures, and developing engineering solutions that integrate information security requirements to proactively manage information protection
- Apply security risk assessment methodology to system development, including assessing and auditing network penetration testing, antivirus deployment, risk analysis
- Conduct Computer Incident Response Team (CIRT) activities, including forensic analysis
- Engineer and deploy network defense countermeasures such as anti-virus, anti-spam, and intrusion detection and prevention system solutions
- Analyze IA security events, including threat model development and resulting security risk analysis of systems
- Review and assess information security events and logs via sophisticated security information/event manager
- Maintain Agency public key infrastructure system Implement security designs in hardware, software, data and procedures
- Provide support for the Department of Defense (DoD) Public Key Infrastructure (PKI) service.
- Responsible for requesting, receiving, installation, and accountability of system (server) PKI certificates and providing technical support for PKI.
- Provide Certification and Accreditation, as well as provide Automated Information System Accreditation support
- Provide Security Risk Assessment. Perform risk analysis of resources, controls, vulnerabilities, impact of losing systems' capabilities and threats to the mission objective; provide analysis to facilitate decisions to implement security countermeasures or mitigate risk; implement countermeasures; periodically review program. Recognize possible threats and review evaluations for compliance and non-compliance.
- Other duties as required
- Bachelor's Degree in Computer Science, Cybersecurity, Computer Engineering, or related discipline
- 2-3 years of experience performing Information Assurance functions and using RMF IT security controls and policies
- Must possess and maintain an IT-I level certification IAW AR 25-2 and IAT-II certification IAW DoD 8570.01-M
- Must be a U.S. citizen
- Must have valid driver's license
- Clean driving record
- Occasional use of company vehicle while on work site
Vacancy expired!