IA Engineer

I

Input Technology Solutions

IA Engineer

Aberdeen Proving Ground, MD
Full Time
Paid
  • Responsibilities

    Job Title: IA Engineer

    Primary Location: USA – Aberdeen Proving Ground, MD

    Security Clearance: Top Secret

    Schedule: Full-time, onsite M-F

    Basic Qualifications:

    An individual must meet the following criteria to be considered:

    • U.S. Citizen
    • Pass a background investigation
    • Active TS security clearance
    • Current Army CAC holder
    • Education: B.A/B.S degree in a relevant field is required (Cybersecurity, Computer Science, or Information Technology, etc.); or an Associate's degree and 7 years of experience; or a total of 9 years of experience may be substituted for the BA/BS degree
    • Possess DoD 8570-compliant security certifications to meet IAT/IAM II or III requirements (Security+ CE, CASP, CISSP, CISA, CISM, etc.)

    Job Highlights:

    Join our client's Information System Security Engineering team to help architect and engineer systems that utilize existing and emerging technologies. In this role, you will perform the tasks in coordination with government personnel to provide the cybersecurity support services and solutions necessary to build, integrate, enhance, improve, modernize, implement, test, analyze, assess, sustain, and maintain the cybersecurity posture and capabilities.

    General Required Skills:

    • 3+ years of general information technology experience
    • 2+ years of directly applicable ACAS experience
    • Knowledge of cybersecurity policies and guidelines (NIST SP 800-53, DoD Instruction 8510.01), a strong understanding of security controls, vulnerability management, and risk assessment methodologies.
    • Hands-on experience utilizing DoD-approved scanning/testing tools (Nessus, STIG Checker, SCAP, etc.) and performing analysis of output.
    • Experience with DoD cybersecurity applications (ACAS, HBSS, SCC)
    • Experience with DoD cybersecurity requirements, NIST standards, vulnerability and compliance assessments, and the NIST RMF
    • Possess or the ability to obtain Linux+ certification
    • Familiarity with security control assessments, STIG Viewer and Secure Content Automation Protocol (SCAP) checklists or benchmarks desired

    Key Job Functions:

    • Administer and maintain Assured Compliance Assessment Solution (ACAS) scanning for the information assurance team in accordance with STIG/SRG guidance, applicable Taskords, and best security practices.
    • Evaluate information systems for compliance with Defense Information Security Agency (DISA) Security Technical Implementation Guidelines (STIGs) and the Common Vulnerabilities and Exposures (CVE) repository.
    • Navigate systems through the authorization process, prepare packages for government review, and maintain compliance through change management.
    • Translate security requirements into technical tasks and work with the engineering teams to verify the measures needed to bring systems and laboratories into compliance.
    • Ensure that all systems are patched and report any problems in achieving compliance to the Information System Security Officer (ISSO).
    • Documentation and compliance are vital, requiring the creation and maintenance of security documentation, including ATO packages and ensuring the integration of security solutions.
    • Create and update the Plan of Action and Milestones (POA&M) to document all known vulnerabilities. Work with the engineering team to determine remediation or mitigation actions and timelines.