Support all phases of security engineering and Certification & Accreditation. Analyze complex information assurance requirements, design, architect, document, test, configure and implement deployable solutions. Assist with implement government solutions through product selection and integration of firewall management and correlation tools. Develop and adhere to project schedule and/or perform key architecture and C&A activities including, but not limited to:
Provide vulnerability assessments by analysis and through the use of penetration testing techniques. Designs test scenarios, exercises and simulations and supports testing and comparisons of new and enhanced software products.
Provides work direction and guidance to other personnel, operates under deadlines, able to work on multiple tasks.
Provide architectural and technical guidance for software, systems and network security.
Develop next generation design to ensure a secure networking environment Analysis and assessment of security vulnerabilities and incidents.
As needed, provide program management, control, and reporting functions necessary to manage and direct the accomplishment of the efforts required for certification and accreditation management, document inventory, and external information security reporting. Provide additional recommendations on processes, procedures, and tools that can be implemented to enhance the compliance with independent review objectives established for the systems.
Expert knowledge of the following:
National Institute of Standards and Technology (NIST) Special Publications (SP) 800-18, 800-30, 800-34, 800-37, 800-53, 800-60,
Federal Information Processing Standards (FIPS) 199, 200
Federal Information Security Management Act (FISMA)
OMB Circular A-130, Appendix III
Current commercial security products (firewalls, VPNs, SSL appliances, SSH, NIDS/HIDS, SIM) available;
Hardware/software security implementation;
In depth knowledge of TCP/IP and other communication protocols;
Encryption techniques/tools
· Required Industry Experience:
10+ years of experience with system, network and infrastructure security design and integration including system hardening, information assurance and network device or application configuration
5+ years of experience with system, network, and infrastructure security integration management
Experience with a variety of network topologies, including wired and wireless
Experience with operations management of system, network, or infrastructure components and security controls
Experience with validating system, network, or infrastructure components to ensure that the appropriate security profiles and policies are maintained
Experience with determining system, network, or infrastructure security requirements and controls against various industry guidance and best practices, including FIPS, NIST, IEC/ISO, and IEEE
Experience with defining and enforcing information security policy
Experience with supporting government certification and accreditation activities such as C&A
Experience with data center hosting environments and managed service providers
Education
Masters of Science (M.S.) degree in an IT-related field is preferred but not required.
Security Certification
CISSP certification preferred.
CAP required.
Other relevant Security Certifications.
GIAC Security Essentials Certification (GSEC)
Security+
Certified Information Systems Auditor (CISA)
Certified Information Security Manager (CISM)
Required Skills
Strong networking, network security and routing skills
Strong Ddos mitigation knowledge
Juniper and Cisco experience a must
Ability to successfully interact with individuals at all levels of the business
Very strong knowledge of current internet security practices
Very strong knowledge of auditing and regulatory requirements for PCI, SOX, etc.
Very strong knowledge of all IP-based protocols
Strong written/verbal skills. This should include experience in designing, documenting and writing deliverable plans for enterprise implementations. Visio diagramming & network documentation knowledge required.
Scripting skills desirable
Knowledge of facility management considerations, including power, PDS, HVAC, and fire suppression
Knowledge of COOP, disaster recovery, and mission assurance practices and principles
Knowledge of system engineering processes
Knowledge of key OMB policies and NIST guidance on PKI, CAC authentication, intrusion detection and prevention, authentication mechanisms, and network security techniques
Knowledge of defense-in-depth and other information security and assurance principles and associated supporting technologies
Strong analytical and problem solving skills for resolving security issues
Good organization skills to balance work and lead projects
Basic leadership skills to effectively mentor and lead junior level personnel
Good interpersonal skills to interact with customers and team members
Strong communication skills to interact with team members and support personnel
Strong skills implementing and configuring networks and network components
Ability to work with relational databases
Ability to work in a team environment
Ability to develop a work break down structure (WBS) and estimate level of effort (LOE)
Ability to conduct system, network, or infrastructure evaluations to determine alignment with functional and security requirements
Proven experience supporting technical proposal efforts.
Background Investigation
Must successfully obtain authorization to work on Government systems through Entry on Duty Investigation
To apply, please submit resume to Jobs@jdbiggs.com