Information Systems Security Manager - DHS EOD Required
Type of Requisition: Regular Clearance Level Must Currently Possess: None Clearance Level Must Be Able to Obtain: None Suitability: DHS EOD Public Trust/Other Required: BI Full 6C (T4) Job Family: Information Security Job Description: GDIT, a Federal marketplace leader in next-generation IT solutions and services, is seeking highly qualified and motivated IT professionals like you who are eager to contribute to our critical Homeland Security missions. For the Department of Homeland Security (DHS), GDIT provides enterprise IT services for DHS's biometric identity management system (IDENT) and the Office of Biometric Identity Management (OBIM) to store, match, share, and analyze biometric and biographic data in support of DHS's strategic mission. GDIT's O&M services support break-fix of current OBIM functional capabilities, as well as security remediation activities and developmental engineering (such as prototyping new code or configurations of OBIM functionality). At the most critical moments of change, we're there - bringing the resources, solutions, and expertise to help our clients take on some of the world's biggest challenges - and GDIT is excited to offer you a unique opportunity to join a best performing O&M team supporting one our nation's most critical national security, law enforcement, immigration and border management, and intelligence missions. GDIT is looking for an Information Systems Security Manager to serve under the guidance of the program's Senior/Lead Security manager on this large, complex task order. The successful candidate will manage the execution of systems security activities for mission-critical and business systems; manage IT security systems and applications, incident response, and digital forensics; and lead a small team of security analysts engaged in scanning, monitoring, tuning, remediation, testing, and implementation of secure operating systems and networks to ensure compliance with Federal regulations and DHS policy over a wide range of security issues including architectures, firewalls, electronic data traffic, and network access. Specific responsibilities may include: Researches, evaluates, and recommends new security tools, techniques, and technologies and introduces them to the enterprise in alignment with IT security strategy Prepares security reports to the client Conducts risk and vulnerability assessments at the network, system, and application level Develops and implements security controls, formulates operational risk mitigation, and assists the security awareness programs Supports system certification and accreditation planning, testing, and liaison activities Supports secure systems operations and maintenance (O&M) best practices Required Skills / Qualification: US citizenship DHS HQ EOD required to start; must be able to obtain DHS HQ Final Suitability Bachelors degree in a relevant field and 5+ years of relevant experience Desired Skills / Qualifications: Degree in computer engineering, computer science, information systems, or related field of study 10+ yrs of relevant professional experience Experience leading IA Engineering or Information Systems Security teams In-depth knowledge/expertise with Federal and DHS security requirements or equivalent processes for vulnerability scanning and remediation, contingency planning, and interface connection documentation Experience in security hardening and STIGs for virtualization HW Experience securing virtual and cloud environments Experience supporting large-scale, enterprise IT O&M technologies and/or programs Experience with multi-tiered architectures comprised of complex COTS products and custom code (C++, JAVA, PL/SQL) Experience with enterprise-scale solutions leveraging AWS Services, eg, EC2, S3, CloudFormation, RDS, CloudFront, VPC, Route53, IAM, CloudWatch, Beanstalk, Lambda Experience securing infrastructure solutions and applications deployed in AWS GovCloud Currency in CI/CD/CA concepts and technologies Experience implementing secure DevOps methodologies Experience integrating AWS with DevSecOps teams In-depth knowledge/expertise with one or more of the following tools: ArcSight, Continuum, Fortify, Tenable Security Center, Nessus; other Security Information and Event Management (SIEM) tools; antivirus such as Sophos and MacAfee Advanced Security Certifications, eg, CISM, CISSP, C|CISO, CND, CSA, GCED, GCCC, GDSA, etc. #gditpriority Scheduled Weekly Hours: 40 Travel Required: None Telecommuting Options: Some Telecommuting Allowed Work Location: USA VA Arlington Additional Work Locations: We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.