Cyber/Info Security Engineer

Description

• Monitor and implement information assurance/security standards and procedures.
• Review and coordinate guidelines and policies surrounding risk and security.
• Document best practices for security and information assurance based on business and user requirements.
• Recommend information assurance/security solutions to support customer requirements.
• Ensure servers comply with DoD Information Assurance requirements and update servers that are not in compliance.
• Monitor hardware and software for any suspicious changes, behavior or traffic, provide reports when/as directed.
• Perform vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle.
• Perform Assured Compliance Assessment Solutions (ACAS) vulnerability scanning, configuration assessment, and network discovery.
• Evaluate IAVA Reports, ACAS/SCAP scans, and STIGViewer reports to identify patches to be implemented to resolve vulnerabilities.
• Ability to download, apply, and test applicable IAVA/STIG security patches against operational software to ensure the system still functions as intended.
• Develop POAMs to address residual vulnerabilities.
• Determine implementation strategies for information assurance and security requirements based on the analysis of user, policy, regulatory, and resource demands.
• Define backup strategies, adhere to backup policies, and monitor backups for completion and viability.

• Bachelor's Degree in Engineering, Computer Science or a related technical field and a minimum of 4 years' relevant experience in Information Security or Cyber Security.
• DoD Secret Clearance required on day one.
• DoD 8570.01 IAT Level II - Preferably Security +.
• DISA ACAS and eMASS training/experience.
• Must have knowledge and experience with implementing DoD & IA requirements and certification process (RMF).

• DISA ACAS and eMASS training/experience.
• Evaluate IAVA Reports, ACAS/SCAP scans, and STIGViewer reports to identify patches to be implemented to resolve vulnerabilities.
• Ability to work independently within a schedule and with little direction.
• Capacity to identify, download, apply, and test applicable IAVA/STIG security patches against operational software to ensure the system still functions as intended.
• Industry certifications such as Microsoft, Cisco, NetApp, and VMware.
• Experience with US Army Biometrics Automated Toolset (BAT-A).
• Experience with PowerPoint, Excel, Active Directory, SharePoint and Visio.
• Certifications such as CCNA, CCNA Security, CCNP, CCNP Collaboration or BCNE.