Sr. System Security Engineer

Job Locations US-AL-Huntsville
ID
2020-2152
Business Unit
CSE
Type
Full-Time
Clearance
Secret Clearance Preferred
Location : Location
US-AL-Huntsville

Overview

i3 is seeking a Sr. System Security Engineer to join our team! 

Responsibilities

  • Responsible for the management and implementation of all Information Assurance Programs to include SCAP, STIG, ACAS, HBSS and Continuous Monitoring activities.
  • Applying security control guidance as defined in DISA’s Security Technical implementation Guides (STIGs).
  • Validating compliance against technical security control baseline and defining a repeatable process.
  • Monitor, track and address Information Assurance Vulnerability Alerts (IAVAs).
  • Monitor, and track all patches perform by the SA team on a monthly basis.
  • Conduct ACAS Scans on multiple server stacks weekly within the development environment and analyze ACAS reports; coordinate mitigations to stay in compliance with the applicable STIGs and Continuous Monitoring Management Plan.
  • Ensures compliance with security principles and methods as defined by the RMF, AR 25-2, NIST SP800-53, and other Army Regulations.
  • Responsible for the tracking and management of all Cyber-related training requirements via ATCTS for all personnel.
  • Assist with mitigations and implement Risk Management Framework (RMF) Continuous monitoring tools and processes.
  • Integrate COTS products to collect, display and remediate a variety of automated system security and system operations. 
  • Create and brief cybersecurity reports for senior program leadership.
  • Review all Vulnerability Scans and Audit log on a quarterly basis and log result.
  • Maintain eMASS RMF package for both production and development environments; Maintain 2 Army ATO’s.
  • Update antivirus definitions files within the HBSS suite; complete the DISA HBSS training.
  • Participate in all Technical Review Boards, Engineering Review Boards, and Configuration Change Boards.
  • Analyze all Security Impacts for all change request; route to program ISSM for approval.
  • Document all vulnerabilities or non-compliant findings within the Plans of Actions and Milestones (POA&M) template
  • Work with DISA for identifying and document all POA&M’s related to new implementations within the Production Environment.
  • Complete yearly FISMA and Self-Assessment requirements.

Qualifications

  • Minimum of 15 years of IT related experience.
  • Secret Clearance or the ability to obtain a Secret Clearance.
  • DoD 8570.01-M certified
  • Current IAT II minimum Certification

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.