Vacancy caducado!
Senior Cybersecurity Engineer Adelphi, MDSUMMARY:Founded in 2001, Indigo IT is an award winning information technology consulting and services company. We are a trusted services provider to government agencies seeking innovative Cloud, Cybersecurity, Knowledge Management, and Enterprise solutions. We know our defense, federal, and civilian customers have critical IT infrastructures that must remain reliable, available, and maximized. Indigo IT is mission focused and committed to maintaining a sense of urgency in anticipating and supporting our customers’ technology goals and objectives. Our unique ability to think beyond today allows our clients to stay ahead of their IT challenges. As a Veteran-Friendly employer, we are proudly partnered with the Virginia Values Veterans (V3) Program, and a recipient of the HIRE Vets Gold Medallion Award, which recognizes our commitment to recruiting our nation’s Veterans. Recognized on the Inc. 5000 list of America’s fastest growing companies in 2020 & 2021 and named as one of the 2022 Best Places to Work in Virginia, we are always looking to hire top talent in the field - come join us today!Indigo IT is a process-driven and results-oriented Women-Owned Small Disadvantaged Business, headquartered in Reston, VA. INDIGO IT, LLC’s award-winning expertise encompasses areas critical to its customers’ mission objectives, including network engineering; information assurance; enterprise systems management; systems engineering and integration; program management, acquisition, and lifecycle support; engineering and logistics; medical transformation/health IT; and distance learning and training solutions.SKILLS & ABILITIES:
Experience in tracking and obtaining Service Level Agrements (SLAs)
Extensive A&A lifecycle experience.
Preferred experience with tools such as eMASS, ACAS, and HBSS.
Able to review and comprehend DoD and Army policy requirements.
Demonstrated history of developing A&A plans for current and upcoming authorization and Authority to Operate (ATO) efforts.
Ability to develop Cybersecurity policy documentation and artifacts such as: syetem Security Plan, Security Policy, IT Contingency Plan, and any other A&A required artifacts.
Experience in performing risk analysis.
Understanding of network protocols, firewalls, VPNs, IDS/IPS systems, and other network security measures.
Understanding of security measures and challenges in cloud computing environments such as AWS, Azure, or Google Cloud.
Ability to identify potential security risks and vulnerabilities in systems and networks.
ESSENTIAL FUNCTIONS/RESPONSIBILITIES:
Validate that required Host Based Security System (HBSS) components are installed on ARL systems.
Develop, monitor, and fine tune policies and rule sets for HBSS components to meet and maintain DoD and Army security requirements.
Respond to malware, intrusion detection and other notifications generated by HBSS.
Identify, track, tag, and move machines in the ePO console for compliance and status tracking.
Troubleshoot any HBSS related reported issues based on self-discovered problems, ticket requests, emails, and enterprise messenger app notifications.
Perform the day to day activities of the A&A lifecycle for all ARL enterprise systems.
Review DoD and Army policy requirements for A&A applicability
Coordinate and strategize A&A plans for current and upcoming authorization and Authority to Operate (ATO) efforts.
Answer A&A/Control related requests and questions from ARL leadership and IT staff.
Coordinate the collection of and request necessary A&A documentation from respective Government IT teams and System Administrators, which includes the creation of clear and published guidance for government review and approval for where and how the artifacts will be distributed.
Review artifact submissions and provide timely, valuable, and actionable feedback citing specific deficiencies and clear deadlines if the documentation does not meet Cybersecurity requirements.
Implement higher command A&A guidance as directed by the ISSM.
Manage the Plan of Action and Milestones (POA&M) process, which includes providing guidance for creation and submission; maintenance and oversight; improvements to the POA&M process; providing exports of the POA&M in Enterprise Mission Assurance Support Service (eMASS) as needed by the IT staff.
Maintain required A&A documentation in eMASS for all ARL systems and ensure that the documentation is kept up-to-date and that all A&A requirements have been met and Cybersecurity guidance from higher command is followed.
Prepare for and lead the Annual Information System Contingency Planning (ISCP) Training/Exercise with relevant and applicable scenarios, document the discussion, and provide written recommendations for improvement within 30 days following exercise with a goal of the least disruption to IT infrastructure during an applicable event.
Perform any of the above A&A tasks for R&D (non-enterprise) ATOs that fall under the ABS requirements.
Prepare for and coordinate any Cybersecurity inspections for the organization such as: Security Control Assessor Validator (SCA-V), Command Cyber Readiness Inspection (CCRI), Department of the Army Inspector General (DAIG), Cyber Protection Brigade (CPT), and others as required.
Complete risk assessments for submitted Configuration Control Board (CCB) items and interact with the ARL CCB to ensure Cybersecurity policies and best practices are implemented within ARL environments prior to any enterprise changes.
EDUCATION & CERTIFICATIONS:
Bachelor’s degree in Information Systems, Computer Science, Engineering, Business Administration, or related field
CISSP
CISM (preferred)
EXPERIENCE:
10 -years of Cybersecurity experience.
Proven experience in incident response.
Proficiency in vulnerability assessment and penetration testing.
WORK ENVIRONMENT:
Work is generally performed in an office setting, with potential travel.
At Indigo IT, we offer an expansive benefits package for our employees, which includes: Medical, Dental, and Vision coverage options. In addition, we offer 401(k) with company match, Group life and disability, Flex Spending Accounts (FSA), Paid Time Off (PTO), Paid holidays, and Education assistance. We also have in house training programs for employees, we reward thought leadership with bonuses and recognition for publishing, speaking, and innovative thought leadership in our industry.
Indigo IT is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. This employer uses E-Verify.
Vacancy caducado!