KEYW Corporation

Information Security Engineer - Senior/Lead

2 weeks ago
ID
2017-17211
# of Openings
1
Posted Date
Information Assurance
US-AZ-Sierra Vista

Responsibilities

Join our certification and accreditation engineering team.  We are responsible for the implementation of the DoD RMF (Risk Management Framework) that supports development, integration, test, and cyber security of the DCGS-A family of systems and products. The certification and accreditation engineering team identifies, researches, and implements a full documented RMF approach and performs ACAS security scanning within an environment both for physical and virtual infrastructure.  Our goal is to enhance the building, infrastructure, and system security while not impeding performance of the services that support our organization.  

 

Responsibilities 

 

As a certification and accreditation engineer, you will be part of a team that provides RMF support to the Software Engineering Center (SEC) Intelligence Support Division (ISD). To include evaluating system security requirements to ensure all infrastructure and development systems can be accredited for processing at appropriate classification levels in compliance with applicable policies, regulations, and guidelines.  Specifically, you will: 

Plan for accreditation

  • Create, track, develop, plan, write and edit complex operational, instructional, maintenance or manuals for various DCGS-A systems in order to: meet program requirements for technical documentation and style and Cyber Security requirements
  • Gather text and materials (such as engineering models, drawings, schematics, spreadsheets, etc.) by researching products and data, conducting in depth interviews with various users, technical staff and subject matter experts in order to analyze, interpret and convert the information into end-user military standard (MIL STD) documentation and reference materials
  • Provide recommendations and ideas to the Cyber Security team, project leads, management and the customer on best work practices, workflow, presentation, structure and organization of materials by developing new work processes and methods using existing authoring tools, new authoring tools and third party plug-ins in order to improve work process efficiency and overall quality of customer deliverables
  • Proactively inform management team and project leads to report project status, issues or concerns, including issues of scope, and scheduling
  • Support and advise on Information Assurance issues/concerns
  • Identify security risk analysis, mitigation, evaluation, and reporting in support of IA C&A processes

Report

 

  • Develop and prepare technical reports and related documentation for Certification and Accreditation (C&A)packages
  • Provides detailed system test and scan reports as well as the Plan of Action and Methods (POA&M) document for all tested systems/networks
  • Build custom report templates specific to audience with degree of granularity specific to audience (Technical/Managerial)
  • Create remediation report specific to audience with degree of granularity specific to audience (Technical/Managerial)

Remediate

 

  • Research and analyze DoD and Department of the Army (DA) policies to mitigate implementation problems that may impact the ACAS implementation
  • Coordinate with the IT Infrastructure to implement Security Technical Implementation Guide (STIG) changes that apply to the infrastructure baselines

Qualifications

Minimum Qualifications 

 

  • A bachelor's degree in Computer Science or other Engineering or Technical Discipline and ten (10) years of professional work experience (or twelve (12) years’ of professional experience, appropriate computing environment certification, and IA Workforce System Architecture and Engineer (IASAE) Specialty qualified experience in place of a degree) is required.
  • Must be knowledgeable with the Security Technical Implementation Guides (STIGs),  and all assessment and authorization policies and directives (i.e., DoDI 8510.01) for RMF
  • Demonstrated experience with Body of Evidence (BOE) packages for systems undergoing either type or location accreditation.
  • At least 2 years’ experience with Microsoft Office at the power user level or above
  • Excellent working knowledge of DoD MIL Standards and style guides and the ability to adhere to and implement such standards to technical documentation
  • Familiarity with the DIACAP program
  • Ability to work independently and in a mentorship position
  • Current DoD 8570 IAT level II certification requirements (e.g Security+ce)
  • Active TS-SCI Clearance 

 Preferred Qualifications 

 

  • Direct experience with a DCGS-A FOS Accreditation Body of Evidence (BOE) package.
  • IAT-III with CISA, GCIH, GCED, CASP or CISSP
  • Formal EMASS training
  • FedVTE ACAS certified
  • Firsthand experience with a successful RMF program

 

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share to your network!

Need help finding the right job?

We can recommend jobs specifically for you! Click here to get started.