Senior Systems Engineer/Architect

Technical and Project Engineering
Arlington, VA
Nov 29, 2022
Dec 05, 2022
Full Time
JOB SUMMARYThe Senior Systems Engineer/Architect will act as part of a technical team providing cyber security oversight support for the TSA. This position supports the Transportation Security Administration (TSA) Information Technology Information Assurance Division (IAD) requirements for staff assistance for Information Security Program Management and conducts Risk and Vulnerability Assessments (RVAs) of TSA FISMA information systems.ESSENTIAL FUNCTIONSPlans Design and develop solutions to complex applications problems, system administration issues, or network concerns.Perform systems management and integration functions.Manages and conduct periodic assessments of threats and vulnerabilities (in accordance with DHS Policy and NIST recommendations)Determines deviations from acceptable configurations, enterprise or local policy; assess the level of riskDevelops and/or recommends appropriate mitigation countermeasures in operational and non-operational situations.Supports ISSO s through FISMA compliance and cyber security technical support, analysis and documentationTASKS AND AREAS OF EXPERIENCE INCLUDE BUT ARE NOT LIMITED TO:Network Mapping - consists of identifying assets on an agreed upon IP address space or network range(s).Vulnerability Scanning - comprehensively identifies IT vulnerabilities associated with agency systems that are potentially exploitable by attackers.Conduct FISMA/ new system scans, document the results, assess and analyze the resultsWeb Application Assessment - includes scanning, testing or both of outward facing web applications for defects in web service implementation may lead to exploitable vulnerabilities.Provide report on how to implement Web services securely and that traditional network security tools and techniques are used to limit access to the Web Service to only those networks and systems that should have legitimate access.Operating System Security Assessment (OSSA) - assesses the configuration of select host operating systems (OS) against standardized configuration baselines.Database Assessment - assesses the configuration of selected databases against configuration baselines in order to identify potential misconfigurations and/or database vulnerabilities.Phishing Assessment - includes activities to evaluate the level of awareness of the agency workforce with regard to digital form of social engineering that uses authentic looking, but bogus, emails request information from users or direct them to a fake Website that requests information. Phishing assessments can include scanning, testing, or both and can be conducted as a one- time event or as part of a larger campaign to be conducted over several months.Penetration Testing- conducting and/or supporting authorized Penetration Testing on enterprise network assets.Wireless Assessment - includes wireless access point (WAP) detection, penetration testing or both and is performed while onsite at a customer's facility.EDUCATION AND EXPERIENCECyber Security experience requiredDHS experience preferredMinimum IAT level I certification, preferred Level II or IIIActive Secret Clearance requiredKNOWLEDGE/SKILLS/ABILITIESPossesses and applies a comprehensive knowledge across key tasks and high impact assignments.Plans and leads major technology assignments.Evaluates performance results and recommends major changes affecting short-term project growth and success.Functions as a technical expert across multiple project assignments.Excellent oral, written and interpersonal communications skills are required.PHYSICAL DEMANDSThe physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.While performing the duties of this Job, the employee is regularly required to sit and talk or hear. The employee is frequently required to use hands to finger, handle, or feel. The employee is occasionally required to stand; walk and reach with hands and arms. The employee must occasionally lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision, depth perception and ability to adjust focus.WORK ENVIRONMENTAll employees are responsible for their own safety, as well as that of others in the workplace. To help us maintain a safe workplace, everyone must be safety-conscious at all times. This position is performed in a typical office environment. The noise level in the work environment is usually quiet to moderate. The safe use of TAPE equipment, as well as safe practices while on TAPE property is essential.DISABILITY SPECIFICATIONSTAPE will make reasonable accommodations in compliance with the Americans with Disabilities Act of 1990.EOE, Including Disability/Vets