Information Assurance Engineer

ECS is seeking an

• Provide guidance on the implementation of system specific features and security controls to ensure effective compliance with federal requirements. Recommend solutions that follow policies and guidelines as outlined within NIST SP 800-53, DHS 4300A, DHS 4300B Sensitive Systems Policy
• Test systems against NIST 800-53 controls, DISA STIGS, CIS Benchmarks, and vendor best practices.
• Facilitate the Accreditation and Authorization (A&A) process (formerly C&A) to include package preparation for the Authorizing Official (AO) for Authority to Operate (ATO) consideration.
• Write, manage, and oversee the closing of POA&M items.
• Develop and maintain Authorization to Operate (ATO) documentation, to include but not limited to Plan of Action and Milestones (POA&M) spreadsheets, FISMA-mandated documents, such as system Incident Response Plans, Contingency Plans, and System Security Plans (SSPs), as well as all system-related documentation such as Account Management policies, hardware/software lists, network diagrams, etc.
• This is a "hands-on" position that requires someone who is capable of multi-tasking. It requires an individual with a service-oriented mentality that can focus and take ownership of assignments/issues and manage/resolve those issues.
• Work well in a team-oriented environment and be able to self-manage their tasks to ensure success.
• Communicate up and down within the organization; prepare detailed descriptions of issues, status updates, recommendations, and reports. Applicants must be organized with an eye for detail.

• Must be US Citizen

• BA/BS degree in Computer Science/Engineering or a related Information Technology field or 6 years of equivalent experience

• Minimum Top-Secret clearance is required with SCI eligibility and IAT Level II certification prior to start date.
• 8570 IAT Level II Certification
• Must meet requirements of DoD Directives 8570.01M
• Experience using/managing an ACAS infrastructure
• 6+ years' experience working in a DOD environment (Contractor/Civilian/Military), preferably Army.
• 1+ years' experience in security test & evaluation under RMF (DODI 8510.01, March 2014) in operational IP based network environments.
• Extensive Experience with KASM management, GITLAB management and vulnerability scanning tools (ie: Fortify, twistlock, etc)
• Experience developing Cyber or Physical Security CONOPS.
• Demonstrated experience with McAfee HBSS (ePO, HIPS, Anti-Virus, etc).
• Thorough understanding of DoD Information Technology best practices
• Thorough understanding of DoD Cybersecurity best practices
• Thorough knowledge of DODD 8500.1, DODI 8500.2, and other IA guidance.
• Demonstrated experience with security / validation testing tools to include vulnerability scanners (Retina, Nessus), DISA STIGs, SRR, and DISA checklists.
• Must be proficient with desktop programs such as Adobe Acrobat, MS Excel, MS Word, MS Visio
• Must possess a high attention to detail
• Strong oral and written communication skills
• Strong interpersonal communication skills

• Bachelor's Degree in a computer science related field
• Vendor Certification with one or more of the following: VMWare, MS Windows, and Red Hat Linux.
• Vendor Certification with one or more of the following: Brocade, Cisco.
• ITIL Foundation Certification.
• Experience with all of the following VMWare, Windows, and Red Hat Linux.
• Knowledge of Federal Government Authorization processes (NIST 800-53, DHS 4300A / DHS 4300 B, DIACAP, ICD's)
• Experience creating, maintaining, and reviewing security compliance documentation (Systems Security Plan, Contingency Plan, Risk Assessment, POAMs)