Jobless Developer
AnaVation logo

Posted 1 month ago

Open

Information Assurance Specialist

Bethesda, MDOn-siteFull-time

AI Summary

Information Assurance/Security Engineer responsible for security engineering and A&A support to maintain ATO/ATC for mission systems; designs security controls, tests, POA&Ms, and supports vulnerability management and governance.

About this role

Be Challenged and Make a Difference
In a world of technology, people make the difference. We believe if we invest in great people, then great things will happen. At AnaVation, we provide unmatched value to our customers and employees through innovative solutions and an engaging culture.

Description of Task to be Performed:
  • The Information Assurance/Security Engineer will provide security engineering and information assurance support to the Government’s Assessment and Authorization (A&A) process to maintain Authority to Operate (ATO) and Authority to Connect (ATC) for mission applications and services. Designs, develops, monitors and documents security controls, security testing, security reporting, and plan of actions and milestones (POA&Ms) throughout systems and application lifecycles in support of mission systems.
  • Provides security engineering design inputs, security design reviews, and security best practices as part of technical and
  • change requests.
  • Configures and validates secure systems, physical controls, and tests security products and systems to detect security
  • weaknesses.
  • Maintains XACTA security records for supported systems.

Required Qualifications:

  • Clearance: Active TS/SCI Clearance with CI Polygraph
  • Education & Years of Experience: Bachelor’s degree in Network Engineering, Computer Science or related
  • technical field plus 5-7 years of Cyber Security/Operations support
  • Certifications: DoD 8140 IAT Level II Certification (CCNA-Security, CySA+, CND, Security+).
  • Demonstrated Experience and Expertise:
  • Documenting network schemas and cyber operation tool solutions.
  • Knowledgeable regarding compliance with: ICD 503, FISMA, OMB, NIST, and DoD (8150.01 March 12, 2014) [Risk Management Framework and Cyber Network Defense…], and other mandated security regulations and standards.
  • Knowledge and experience with managing and monitoring compliance with Privileged User Access (PUA), Data Transfer Access (DTA), and Removable Media Custodian (RMC) privileges, forms, and signatures.
  • Support to vulnerability management, patching, information assurance and/or ATO process for Classified DoD or IC environments.
  • Demonstrated documentation writing for security plans, tests, and reports.
  • Must demonstrate strong teamwork, communication (both verbal and written), and presentation skills.
  • Must demonstrate strong initiative to accept new technical challenges in complex security engineering assignments
  • Required Qualifications:

  • Master’s degree in Network Engineering, Computer Science or related technical field plus 3+ years of Cyber Security/Operations support
  • Certifications: CySA+
  • Experience supporting full lifecycle A&A process for classified DoD or IC infrastructure and application service delivery.
  • Experience leading an ATO process through XACTA tool.
  • Extensive hands-on experience with Agile software development
  • Experience working with cross domain solutions
  • Proven experience providing mechanisms to improve governance and support of IA functions for the customer enterprise.
  • Skills

    A&A LifecycleADO/ATC ProcessesAgile Software DevelopmentCCNA-SecurityClassified DoD/IC EnvironmentsCNDCross-domain SolutionsCySA+Data Transfer Access (DTA)Documentation WritingDoD 8140 IAT Level IIFISMAICD 503NISTPatchingPlan Of Actions And Milestones (POA&Ms)Privileged User Access (PUA)Removable Media Custodian (RMC)RMFSecuritySecurity ReportingSecurity TestingVulnerability ManagementXACTA

    Explore related jobs

    Browse these categories