Jacobs
Location
Annapolis Junction, MD | United States
Job description
Your Impact:
This opening is for a recently awarded program that delivers a wide set of capabilities across the enterprise to include data management, data delivery, high ingest rate cloud architectures, and analytic platforms.
Responsibilities:
· Perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies.
· Validate and verify system security requirements definitions and analysis and establishes system security designs.
· Design, develop, implement and/or integrate IA and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements.
· Build IA into systems deployed to operational environments.
· Assist architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and enterprise solutions.
· Support the building of security architectures.
· Enforce the design and implementation of trusted relations among external systems and architectures.
· Assess and mitigate system security threats/risks throughout the program life cycle.
· Contribute to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations.
· Review certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its content.
· Apply system security engineering expertise in one or more of the following to: system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the- shelf and government off-the-shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non-repudiation, availability, and access control); and security testing.
· Support security authorization activities in compliance with NSA/CSS Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF), the NIST Risk Management Framework (RMF) process, and prescribed NSA/CSS business processes for security engineering.
Here’s What You’ll Need:
· Bachelor’s degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university is required.
· DoD 8570.01-M compliance with IASAE Level 2 is required.
· CISSP Certification is required.
· Four (4) years of additional ISSE experience may be substituted for a bachelor’s degree.Minimum Years of Experience:
· Fourteen (14) years experience as an ISSE in programs and contracts of similar scope, type and complexity is required.
· Perform or review technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies.
· Provide security planning, assessment, risk analysis, and risk management.
· Perform system or network designs that encompass multiple enclaves, to include those with differing data protection/classification requirements.
· Recommend system-level solutions to resolve security requirements.
· Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures.
Job tags
Salary