Information Systems Security Engineer 2
Description:
We are seeking an ISSO to support the DCS TTO.
The responsibilities will include maintaining 2+ SSPs, coordinating patching processes, reviewing audit logs, troubleshooting issues, and reviewing and updating security controls.
Must be familiar with the customers security workflow process.
The Information Systems Security Officer (ISSO) shall provide support for a program, organization, system, or enclave’s information assurance program.
The ISSO provides support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies.
Maintains operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed.
Assists with the management of security aspects of the information system and performs day-to-day security operations of the system.
Evaluate security solutions to ensure the y meet security requirements for processing classified information.
Performs vulnerability/risk assessment analysis to support certification and accreditation.
Provides confirmation management (CM) for information system security software, hardware, and firmware.
Manages changes to system and assesses the security impact of those changes.
Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs). Supports security authorization activities in compliance with National Institute of Standards and Technology Risk Management Framework (NIST RMF).
Capabilities
Participate as a security engineering representative on engineering teams for the design, development, implementation and/or integration of secure networking, computing, and enclave environments
Participate as a security engineering representative on engineering teams for the design, development, implementation and/or integration of IA architectures, systems, or system components
Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of secure networking, computing, and enclave environments
Apply knowledge of IA policy, procedures, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments
Interact with the customer and other project team members
Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of IA architectures, systems, or system components
Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures
Support security planning, assessment, risk analysis, and risk management
Identify overall security requirements for the proper handling of Government data
Provide security planning, assessment, risk analysis, and risk management
Perform system or network designs that encompass multiple enclaves, to include those with differing data protection/classification requirements
Recommend system-level solutions to resolve security requirements
Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures
Required Qualifications
TS/SCI with Agency Appropriate Polygraph
Ten (10) years’ experience as an ISSO on programs and contracts of similar scope, type, and complexity is required.
Experience is to include at least two (2) of the following areas: knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools.
Bachelor’s degree in Computer Science or related discipline from an accredited college or university is required.
DoD 8570 compliance with Information Assurance Management (IAM) Level 1 or higher is required.
Four (4) years of additional ISSO experience may be substituted for a bachelor’s degree.
Required Technical Skills
Linux system administration experience (file system manipulation, monitoring and logging, troubleshooting; experience with command line tools: ps, netstat, top, SSH, grep)
Experience with scripting tools (bash, python, JavaScript, etc.)
Experience with automation and monitoring tools
Experience with visualization/reporting tools (Grafana, Kibana, etc.)
Desired Technical Skills
Cloud computing skills (AWS)
Experience with Apache NiFi
Security Engineer / Security Officer (Full-Time)
Wyetech, LLC is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.