Full Time Employee Contractor
Information Assurance Specialist II (Top Secret)
The IA Specialist will serve in support of a DHA program by providing information system security expertise for security controls and associated security control implementations.
Design, develop, engineer, and implement security solutions to MLS requirements.
Participate in the configuration management process for security-relevant changes, collaborating with other cybersecurity specialists to address concerns, questions, and changes. Guide efforts to gather and organize technical information about an organization's mission goals and needs, existing security products, and ongoing programs in the MLS arena. Document and maintain the customer?s information system security documentation (System Security Plan [SSP], Plan of Action and Milestones [POA&M], using customer required tools and processes Risk Management Framework (RMF) including creating security plans, risk assessments, and security test and evaluations.
Perform risk analyses which also includes risk assessment.
Develops security standards.
Plans, implements, upgrades, or monitors security measures.
Prepares and conducts security and internal control reviews.
Able to detect any potential risks that are present, in order to minimize potential data breaches.
Prepares and review incident response plans and provide reports for recorded incidents within customer specified time constraints.
Review and assist in the development and maintenance of system security plans, contingency plans, COOP plans.
Provide support for annual security control reviews.
Review and edit security documents for consistency, accuracy and compliance with regulatory policies.
Prepare, review, and document standard operating procedures and protocols.
Assist in the DoD Information Assurance Certification and Accreditation (DIACAP) and mapping to Risk Management Framework (RMF).
Maintain general privacy principles for all Personally Identifiable Information (PII) and/or Health Insurance Portability and Accountability Act (HIPAA).
Provide Continuous monitoring of information systems for compliance with required security controls and policies, including self-testing and associated test documentation of the security controls.??
Bachelor?s Degree, experience may be substituted in lieu of education
Works well in a team environment and collaborate with others
Understands and has experience working with RMF
Have a working knowledge of encryption, DNS, threat modeling and other security-centric technologies
Security + Certified
Strong background with Incident Response
Experience with DIACAP and Risk Management Framework
Must have and maintain IA certification appropriate to position based on DOD8570.01M: IA Technical (IAT) and IA Management (IAM) level certification; Security + CE, CASP-CE, or CAP and a Computing Environment (CE) Certification for environment worked in i.e. Cisco Router, Oracle Database Certification, MS Windows
Current Top Secret security clearance based upon Single Scope Background Investigation
Experience working with IT in the Defense Health Agency environment
Network + CE, CCNA, CASP-CE, CISSP, DIACAP Certification & Accreditation (C&A)
POA&M and Vulnerability Assessment experience
Documentation Preparation Experience
Due to the nature of the government contract requirements and/or clearance requirements, US citizenship is required
This is a great opportunity to join a winning team. CGI offers a competitive compensation package with opportunities for growth and professional development. Benefits for full-time, permanent members start on the first day of employment and include a paid time-off program and profit participation and stock purchase plans.
We wish to thank all applicants for their interest and effort in applying for this position, however, only candidates selected for interviews will be contacted.
No unsolicited agency referrals please.
All CGI offers of employment in the U.S. are contingent upon the ability to successfully complete a background investigation. Background investigation components can vary depending upon specific assignment, or upon any US government security clearance if required. Qualified applicants will receive consideration for employment without regard to their race, color, religion, sex, gender Identity, sexual orientation, national origin, age, disability, veteran status, pregnancy, or other status protected by law. CGI will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with CGI?s legal duty to furnish information.