Sevatec Inc.

Information Systems Security Officer

US-VA-Arlington
2 weeks ago
Job ID
2017-1245
# of Openings
1
Category
Information Technology

Overview

Sevatec is seeking to hire a Network Security Engineer/Information Systems Security Officer (ISSO). The selected candidate must have experience evaluating the security of IT software applications and systems in accordance with federal IT policies and guidelines such as FISMA and NIST.

Responsibilities

  • Develop and maintain System Security Plans (SSP); ensure systems are operated, maintained, and disposed of in accordance with SSPs; ensure configuration management is maintained and documented.
  • Manage access to the systems and ensure users are aware of their security responsibilities; conduct periodic reviews to ensure compliance with the SSPs.
  • Develop procedures and templates associated with the Security Assessment and Authorization (SA&A) process and activities to ensure compliance with federal guidelines, and policies.
  • Plan, coordinate, and execute SA&A’s and annual security assessment activities, including scheduling, tracking, and updating the activities in Microsoft (MS) Project, and providing project status updates to management.
  • Develop security test plans and conduct security testing in accordance with NIST SP 800-53, Revision 4; NIST SP 800-53A, Revision 1; and departmental policies and requirements.
  • Develop Plan of Action and Milestones (POA&Ms) for identified vulnerabilities.
  • Participate in FISMA Audits.
  • Strong understanding of networking technologies (Layer 2 and Layer 3 technologies)
  • Configure, maintain and monitor Juniper VPN firewall and SIEM appliances, as well as IDS\IPS tools
  • Manage and maintain Fireye and Tripwire environments
  • Manage and track POA&Ms and their remediation using the FISMA reporting tool, Cyber Security Assessment and Management (CSAM), and provide federal management with weekly status. Will assist in compliance inspections and reviews and conduct audits as required. Training/briefing experience is desired.
  • Must be able to respond to off-hour emergencies as needed. Must have demonstrated ability to follow-up and solve problems.
  • Plan, implement, and manage multi-factor authentication utilizing RSA

 

Qualifications

  • BS degree in Computer Science, Information Technology, Computer Information Systems, or related field.
  • At least five (5) years of IT experience with three (3) years concentrated in IT Security
  • Thorough knowledge of NIST 800-53 security controls and required documentation.
  • Experience preparing System Security Plans, Risk Assessment.
  • Excellent technical communication skills with a strong desire to achieve customer satisfaction
  • Experience mitigating security risks and documenting plans of action and milestones (POAMs). Demonstrated capabilities in presenting ideas written and orally within a cross-functional environment required.
  • Prior experience in working in a collaborative team environment required.
  • CCNA or other networking certification required

 

Security Clearance required: Must be a US Citizen and have or able to obtain a Government Agency clearance.

 

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed