Works with System and Network Administrators to monitor the security posture of all networked systems and applications and take appropriate steps to quickly deal with any issues.
Provides system, network, security engineering expertise and guidance for all aspects of information assurance, including those systems required to meet DoD regulations.
Supports the year-round work of maintaining security posture to meet DoD RMF.
Ensures technical system documentation required for A&A packages are complete and clearly supports validation and ATO in accordance with system security.
Works with IA artifacts and tooling to including vulnerability testing and related network/system test tools, g. Retina, Nessus, STIG compliance checker, ACAS, Security Content Automation Protocol (SCAP), and more.
Performs self-assessment and hardening of system servers, applying STIGs, SCAP and ACAS scans, and other Generate a Plan of Action and Milestones (POA&M) report and remediate findings.
Conducts security control assessments on network infrastructure and systems in support of RMF.
Ensures users have requisite security authorizations and are systems and prepare security assessment
Comprehensive understanding of DoD MHS services and programs, and other usability standards, as well as user interface design.
Comprehensive understanding of DoD/DHA IT Security and IA policies, directives, and publications; and shall maintain awareness of relevant cyber-related policy.
Comprehensive understanding of federal security regulatory requirements and security frameworks, including RMF, NIST SP 800-series, FISMA, FIPS, FedRAMP.
Demonstrated experience using IA artifacts and tooling to including vulnerability testing and related network/system test tools, g. Retina, Nessus, STIG compliance checker, ACAS, Security Content Automation Protocol (SCAP), and more.
Required Skills
REQUIREMENTS:
3+ years of relevant experience supporting system security authorization processes under RMF and previous regulations
Hands-on experience with IA artifacts and security penetration tools
IAT Level II certifications/ accreditation required
Four-year college degree
Secret clearance required
Must meet DoD 8570 requirements
Reviews regulatory security policies, as well as best practices, and develop the technical solution required in order to implement those requirements on servers, routers, firewalls and other LAN/WAN
Required Experience
Qualifications
REQUIREMENTS:
3+ years of relevant experience supporting system security authorization processes under RMF and previous regulations
Hands-on experience with IA artifacts and security penetration tools
IAT Level II certifications/ accreditation required
Four-year college degree
Secret clearance required
Must meet DoD 8570 requirements
Reviews regulatory security policies, as well as best practices, and develop the technical solution required in order to implement those requirements on servers, routers, firewalls and other LAN/WAN