IA Professional

SLAIT Consulting
Sterling, VA
Mar 20, 2017
Mar 21, 2017
Accountant, IT
Full Time
The Information Assurance (IA) Professional is responsible for assisting with system configuration and remediation, executing IA process frameworks for assessment and authorization, and developing technical IA strategies for projects.RESPONSIBILITIES:Developing, maintaining, and improving the IA security posture and documentation and associated Federal Information Security Management Act (FISMA) process for Federal and DoD clients.Review policies, guidelines, and directives identified by senior team member in support of development of Assessment and Authorization (A&A) plans for Federal and DoD systems.Support Configuration Management (CM) roles and responsibilities, including testing of patches and updates prior to implementation, establishing checklists and testing procedures, developing test criteria, etc.Apply system Operating System patches, Service Packs, Hotfixes, and software/ firmware updatesEstablish and support automated system software update methodologies and technologiesApply DISA Security Technical Implementation Guide (STIG) settingsPerform system vulnerability scans including Nessus / ACAS, and SCAP Compliance Checker (SCC)Complete device configuration of Windows Operating Systems, Applications, and Cisco IOS devices to comply with DISA STIG (and other) guidanceComplete STIG checklistsIdentify industry accepted technical security standards and the policies that drive compliance requirementsReview and analyze existing systems, identify and understand technical requirements as part of strategic development, implementation, and support for IA practices.Contribute to research and analysis and translate security policy and requirements to define best methods and practices.Provide technical guidance on implementation of security mechanisms and controls.Participate in development and review of System Security Documentation, including System Security Plans (SSP), IA policies, Personnel Security, Disaster Recovery, Incident Responses, Authentication Management plan.Participate in systems analysis, systems development, and information technology program management.Contribute to research and analysis and assist in translating security policy requirements to define best compliance methods and practices.Participate in the development of electronic commerce systems or electronic government projects, including development of agency policies and procedures.Participate in the preparation of project briefings and reports.Help create Information Assurance documentation for the lifecycle of Information Systems includingHelp create Process and procedures to implementing security hardening guidance. TOOLS:Microsoft Windows (all versions)MS Office Suite (Word, Excel, Outlook, PowerPoint)eEye RetinaGold DiskNESSUSMS VisioAdobe Acrobat Standard KNOWLEDGE / EXPERIENCE:3-5 years of Information Assurance experience preferably focusing on IT security and Information Assurance for federal government or DoD systems.Knowledge of Federal information security requirements, standards, guidelines, Directives, and Instructions.Knowledge of DoD information security requirementsHands on experience configuring Windows client (7, 8, and 10) and server (2008R2 and 2012R2) operating systems; Microsoft SQL Server; and Cisco IOS devicesProfessional etiquette and ability to interact with technicians and IT professionals in both industry and government.Excellent Written, Presentation, and Oral communication skills.Organizational and Prioritization skills focusing on a detailed approach to developing IA documentation to reflect both the required security controls and the network configurations implementedPunctuality, consistency, and ability to meet deliverable deadlines.Ability to work in a fast-paced environment while maintaining attention to detail, quality, and professionalism.Self-starter and problem solver with strong ability to work independently in areas of core competence with minimal guidance.Ability to work well in team environments of varying composition, personalities, roles, and responsibilities.Proficiency in MS Office Suite and ability to master similar productivity toolsWillingness to share information, train and be trained, mentor and be mentored with executives, peers, and subordinates. EDUCATION:Bachelor's degree in IT, CS, Engineering, Information Security, or related fieldActive Top Secret minimum, current active TS/SCI strongly preferred.CERTIFICATIONSDoDI 8570.01-m IAM Level II or higher baseline certification such as Certified Information Systems Security Professionals (CISSP).CompTIA Security+ Basic Level Vendor Specific certification as needed (MCP, CCNA, VCA, etc.)

Similar jobs