Sr Information Assurance Security Engineer/Information System Security Engineer

Employer
Leidos
Location
Suitland, MD
Posted
Mar 20, 2017
Closes
Mar 24, 2017
Function
Engineer, IT, QA Engineer
Industry
Engineering, Security
Hours
Full Time
*Description:* Leidos has an immediate opportunity for a *Senior Information Assurance Security Engineer / Information System Security Engineer* in *Suitland, MD*. This position requires a candidate with an *active TS/SCI clearance*. JOB SUMMARY: This individual will support the Office of Naval Intelligence. The Senior IASE/ISSE will provide direct security engineering support to the customer's Information Assurance (IA) Certification and Accreditation (C&A)/Assessment and Authorization (A&A) mission. PRIMARY RESPONSIBILITIES: Design, develop, integrate, test, implement, deploy and perform operations & maintenance (O&M) of tools for the automation of security testing in support of C&A/A&A. Perform architectural design, integration, installation, configuration, testing, and administration of systems and capabilities to support the scanning, monitoring, and reporting of Information Assurance Vulnerability Alerts (IAVA)/Intelligence Community Vulnerability Alerts (ICVA) for the Naval Intelligence (NAVINTEL) Community. Integrate, install, configure, test, administer C&A Management tools and capabilities to implement C&A/A&A business processes, workflow, DCID 6/3, NIST 800-53 security controls mappings, and FISMA reporting. Integrate and test new features and functions within the A&A Management solution. This includes, but may not be limited to, DoD 8500.2, and NIST 800-53 Security Controls mappings; implementing updates business processes, workflow, and templates; and direct support to Fleet customers. System administration and O&M support for the A&A Management capability. Perform security assessments; design reviews; and provide guidance on new technologies for Fleet customers. New technologies may include, but are not limited to, Cloud technologies, Cross Domain Solutions, Hardware, Operating System, Web technologies; and Databases. Provide Security Engineering, on an as needed basis, to support to the Security Controls Assessors (SCAs) and Validators for A&A and C&A efforts, respectively. Design, develop, integrate, test, document, administer, perform O&M for systems that support hidden/malicious file content analysis and reporting; Reliable Human Review (RHR) workflow functionality, enforcement, and audit; and cross-domain transfers. Draw upon in depth understanding of hidden data threats associated with complex and proprietary file types such as MS Office Word, PowerPoint, and Excel; and Adobe Portable Document Format (PDF). TA_4 *Qualifications:* * Minimum Basic Qualifications:* BS in Computer Science or relevant technical field with 18+ years of related Information Assurance/Security Engineering experience with DIACAP, DCID 6/3, ICD-503, and/or RMF. Active CISSP certification Active TS/SCI clearance Experience in system/software design, development, integration, testing, system administration, and O&M. Experience implementing and executing software and security engineering practices in the System/Software Development Life Cycle (SDLC) Process. Experience with DoD DISA, Fleet Cyber Command, DoDIIS, and IC tools, systems, recording mechanisms, and requirements for C&A. Experience with information assurance, including accreditation security testing and evaluation. Expert technical knowledge of DoD, IC, and national level system security initiatives, and Security Information/LAN/WAN/Cloud technologies/Cross Domain Solutions. Experience in designing and developing host based and network based scanning tools. Extensive experience with the use of host based and network based scanning tools. Experience with Security Content Automated Protocol (SCAP) based tools and specifications. Extensive experience in OS hardening; securing systems/software IAW IC, DoD, and industry best practices; development of security controls, testing methodologies, and procedures for systems, cloud based architectures and CDSs. * Preferred Qualifications*: MS in a related field. Experience developing in an Oracle Solaris or Red Hat Enterprise Linux (RHEL) environment. Experience in OpenOffice or LibreOffice integration or development. Systems Security Engineering Professional (ISSEP) certification. Project management experience. *Leidos Overview:* Leidos is a global science and technology solutions leader working to solve the world's toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company's 33,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported pro forma annual revenues of approximately $10 billion for the fiscal year ended January 1, 2016 after giving effect to the recently completed combination of Leidos with Lockheed Martin's Information Systems & Global Solutions business (IS&GS). For more information, visit www.Leidos.com. The company's diverse employees support vital missions for government and commercial customers. Qualified women, minorities, individuals with disabilities and protected veterans are encouraged to apply. Leidos is an Equal Opportunity Employer.