Information Systems Security Engineer, w/Poly - Military veterans preferred
2019-02-13 General Dynamics Information Technology (www.gdit.com)
Herndon Virginia United States
Job Description: Customer has an immediate need for an Information System Security Engineer (ISSE) to be part of the engineering division. This is a fairy small group that support about ten critical systems that contain very sensitive data. The successful candidate is expected to perform the following duties:
As the ISSE, the candidate shall:
Engineer, design, implement, and test network intrusion detection system (IDS), network intrusion protection system (IPS), host intrusion protection system (HIPS), web and application protection, enterprise anti-virus suite to protect the following IT components: network, storage, computing, databases, web services and application;
ISSE will work closely with the architects, engineers, and developers in the identification and implementation of appropriate information security functionality to ensure uniform application of security policy and enterprise solutions;
enforce the design and implementation of trusted relations among external systems and architectures
assess and mitigate system security threats/risks throughout the program life cycle
contribute to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations;
review certification and accreditation (C&A) documentation, provide feedback on completeness and compliance of its content;
apply system security engineering expertise in one or more of the following to: system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off-the-shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non repudiation, availability, and access control); and security testing;
Able to provide security requirements to architects, engineers and
Verify systems implementation and provide mitigation recommendations to facilitate secure systems for A&A and Continuous Monitoring
Serve as the security subject matter expert for the A&A and Continuous Monitoring
Provide guidance to the System Owners and Teams and recommending implementation
Demonstrated on-the--job knowledge and experience with Information Assurance/Cyber Engineering requirements, design and implementation to include systems engineering principles, requirements analysis, system development (software and hardware), network security architecture concepts (topology, protocols, components), and/or IT security principles and methods (firewalls, demilitarized zones, encryption).
Demonstrated on-the-job knowledge and experience with developing and reviewing security concept of operations, systems security plans, security control assessments, contingency plans, configuration management plans, incident response plans, plan of actions and milestones, risk management plans, vulnerability scanning, and/or vulnerability management
Demonstrated on-the-job knowledge and experience cloud security design, requirements analysis, control implementation, and
Demonstrated on-the-job knowledge and experience with ICD-503, FISMA and RMF/A&A processes, NIST SP (800-27, 30, 37, 53, 60, 137, 144, 145), FIPS (199, 200), and CNSSI 1253 technical controls and developing and maintaining associated certification and accreditation
Demonstrated on-the-job knowledge and experience in security systems engineering that involves various computer hardware and software operating system and application solutions in both stand-alone and LAN/WAN
Demonstrated on-the-job knowledge and experience with security features and/or vulnerability of various
operating systems (ie Window Server, Windows clients, Microsoft Exchange, Red Hat Enterprise Linux,CentOS) and CISCO systems.
Demonstrated on-the-job knowledge and experience with performing security system scans for network, platform, database, and web services using different security tools (e.g. Nessus, Weblnspect, AppDetective).
Demonstrated on-the-job knowledge and experience with performing security system scans for network,platform, database, and web services using different security with IA vulnerability testing and related network and system test tools; e.g., Retina, NMap, ACAS, EVSS, HBSS, Nessus, Security Content Automation Protocol (SCAP).
Demonstrated on-the-job knowledge and experience with cyber security toolset including anti-virus,Vulnerability Assessment, HIDS and NIDS.
Demonstrated on-the-job knowledge and experience with various technologies and vendors for network (e.g. Cisco, Juniper), platforms (e.g. Microsoft Windows, Linux Redhat/CentOS), database (e.g. Oracle, MySQ L, SQL server), and web services (e.g. ISS, Apache, Tomcat, Passenger).
Demonstrated outstanding interpersonal skills and team player
Demonstrated outstanding written and verbal communication skills; ability to present reports to management; motivated to thoroughly investigate, analyze, and document system issues and resolutions
Demonstrated outstanding ability to produce quality deliverables and to complete assigned projects on time, provide consistent status updates to ensure IT security projects stay
Demonstrated outstanding attention to detail - completes tasks per standard operating procedures; reports discovered anomalies and inconsistencies
Demonstrated outstanding persistent and creative problem solver - strong troubleshooting skills and determined to find solutions to technical problems; identifies root cause and presents possible solutions to management
Demonstrated outstanding work ethic and a proven professional - respectful, dependable, takes initiative and follows through, dedicated to excellence and getting the job done
Performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction
For more than 50 years, General Dynamics Information Technology has served as a trusted provider of information technology, systems engineering, training and professional services to customers across federal, state, and local governments, and in the commercial sector. Over 40,000 GDIT professionals deliver enterprise solutions, manage mission-critical IT programs and provide mission support services worldwide. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.