Principal Information Security Analyst

Location
USA, Florida, Tyndall AFB
Posted
Sep 26, 2017
Closes
Oct 31, 2017
Ref
2017-29261
Contact
General Dynamics
Function
Engineer
Hours
Full Time

Performs all procedures necessary to ensure the security of information systems assets and to protect systems from intentional or inadvertent access or destruction.






1. Performs Cybersecurity activities (formally known as IA - Information Assurance) for a large Program; coordinates with government Program staff, USAF, and other government agencies to assist in the creation, dissemination, direction, and auditing of program policy, standards, and operating procedures.
2. Directs and manages team resources to conduct Cybersecurity activities, and reports to senior GDIT and government personnel on overall program security posture.
3. Audits networks and systems for vulnerabilities using Security Technical Implementation Guides (STIGs), ACAS vulnerability scanner, and DISA SCAP to mitigate those findings for Solaris, Linux, Windows, and associated network operating systems.
4. Creates, tracks and reviews Plan of Action and Milestones (POA&Ms) and Risk Acceptances, and conducts a technical decomposition categorization; remediation; and lien resolution.
5. Communicates tactical and strategic threat information to Government leaders, Cybersecurity-Ops and C&A Staff to assist them in making cyber risk decisions and to mitigate threats.
6. Carries out DOD Risk Management Framework in accordance with DODi 8510 to ascertain information systems' security posture by utilizing security control validation activities and coordinating security testing.
7. Maintains the Security Accreditation status of US government/DoD Networks and its interconnected systems; Maintains security accreditation documentation;
8. Coordinates with USAF, DISA, and other organizations in support of audits and inspections and provides any required documentation in support of such audits/inspections such as but not limited to SAVs, ST&Es, and CCRI.
9. Manages the security of information systems assets and the protection of systems from intentional or inadvertent access or destruction.
10. Develops policies to recognize potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information.
11. Works closely with the Information Systems Security Engineer on developing policies on preliminary forensic evaluations of internal systems.
12. Interfaces with client to understand their security needs and oversees the development and implementation of procedures to accommodate them.
13. Ensures that the user community understands and adheres to necessary procedures to maintain security.
14. Weighs business needs against security concerns and articulates issues to management and/or customers.
15. Maintains current knowledge of relevant technology as assigned.
16. Provides guidance in the creation and maintenance of Standard Operating Procedures and other similar documentation
17. Participates in special projects as required.


Bachelors Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience.












8-10 years of related experience in data security administration




1. Required to possess and maintain a Secret Security Clearance.



2. Required to possess a DOD 8570 Certification Level IAT 3 or IAM level 2.



3. Desired supervisory skills.



4. Preferred experience in Air Defense Remote/Radar Remote Site Communications Systems



5. Requires advanced knowledge of data security administration principles, methods, and techniques.



6. Requires familiarity with domain structures, user authentication, and digital signatures.



7. Requires knowledge in the use of a variety of Security Event generating sources (e.g. Firewalls, IDS, Routers, Security Appliances, HBSS, ACAS)



8. Host Base Security System (HBSS) Certificate/ACAS completion certificate preferred



As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors.With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services.GDIT is an Equal Opportunity/Affirmative Action Employer - Minorities/Females/Protected Veterans/Individuals with Disabilities.