Information Systems Security Engineer - Military veterans preferred

2021-07-15
ManTech (www.mantech.com)
Other

/yr

  full-time   employee


Virginia Beach
Virginia
23461
United States

Secure our Nation, Ignite your Future

ManTech is seeking an Information Systems Security Engineer to support our operations in Virginia Beach.
Job Function:

  • Define, plan, design, and evaluate information security systems with the following:
  • Provide solutions for and implement Risk Management Framework (RMF) security controls
  • Perform requirements analysis, design, and integration for complex software applications and collaboration infrastructures
  • Conduct assessment testing and reporting in accordance with the RMF and NIST 800-53; identifies deficiencies (POA&M) and provides recommendations for solutions
  • Participate in the change management process, and assess security impact of proposed changes
  • Write implementation and design documents describing how security features are implemented
  • Experience with assessment testing, RMF, information assurance tools, DoD STIG, and vulnerability assessment
  • Implement System Security Requirements by developing the system security context, Security Concept of Operations {CONOPs), and Security Requirements Baselines from the gathered Customer and Stakeholder requirements.
  • Implement System Security Architecture by working with System Administrators in areas of functional analysis and allocation by analyzing architectures, allocating security services, and selecting security mechanisms. The ISSE identifies components or elements, allocates security functions to those elements, and describes the relationships between the elements.
  • Install System Security from the hands-on approach to participation in a multidisciplinary examination of all systems issues that provides input to the Assessment and Authorization (A&A) process activities.
  • Assess Information Protection Effectiveness by focusing on the effectiveness of the information protection whether the system can provide confidentiality, integrity, availability, authentication, and nonrepudiation for the information it is processing that is required for mission success.
  • Evaluate Commercial off the Shelf (COTS} and Government off the Shelf (GOTS} technologies - systems, applications, and services -against the Activity's INFOSEC and Cybersecurity requirements and needs.
  • Conduct INFOSEC and Cybersecurity assessment testing and reporting in accordance with the RMF and NIST 800 53; identifies deficiencies and documents them as Plans of Actions and
  • Milestones (POA&Ms) and provides recommendations for solutions in line with best practices and security industry standards.

Required Skills:

  • Experience with DoD RMF or Federal Certification and Accreditation Processes for IT systems.
  • Have experience with DoD or Federal compliance testing methodologies securing and administering Windows operating systems
  • Have testing experience with Assured Compliance Assessment Solutions (ACAS) Vulnerability Scanner and Security Content Automation Protocol (SCAP)
  • Experience with applying and verifying implementation of Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs)
  • Proficient with Microsoft Word, Excel, and PowerPoint office products
  • Security+ certified
  • Active DoD SECRET security clearance

Desired Skills:

  • Needs to be a team player and communicate well
  • Ideally, to fit within our dynamic team, is someone who is not one-dimensional and open to being multi-faceted
  • Prepare DoD Risk Management Framework (RMF) accreditation packages IAW CNSSI 1253 and NIST SP 800-53

For all positions requiring access to technology/software source code that is subject to export control laws, employment with the company is contingent on either verifying U.S.-person status or obtaining any necessary license. The applicant will be required to answer certain questions for export control purposes, and that information will be reviewed by compliance personnel to ensure compliance with federal law. ManTech may choose not to apply for a license for such individuals whose access to export-controlled technology or software source code may require authorization and may decline to proceed with an applicant on that basis alone.

ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law.

If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accommodation please click careers@mantech.com and provide your name and contact information.