Computer Security Specialist A&A/RMF - Secret clearance

Company: General Dynamics
Location: Arlington
Posted on: January 13, 2022

Job Description:

Type of Requisition:RegularClearance Level Must Currently Possess:SecretClearance Level Must Be Able to Obtain:SecretSuitability:No Suitability RequiredPublic Trust/Other Required:Job Family:Information SecurityJob Description:GDIT is seeking a Security Computer Specialist: A&A/RMF to provide services to the JSP Enterprise Transport Management (ETM) contract at the Pentagon, Arlington VA. Due to the nature of work this role entails, telecommuting is not allowed and will require the employee to report full-time onsite.In this role, you will apply your understanding of computer security, military system specifications, and Department of Defense Information Assurance (DoD) (IA) policies, in the execution of all aspects of the systems and their Cybersecurity posture. This position is responsible for execution of the DoD Information Assurance Risk Management Framework (DIARMF), and the implementation of Cyber Security and IA boundary defense techniques, various IA-enabled network technologies and appliances to facilitate certification and security engineering tasks in support of the customer.You will partner with IT Security Analysts and Enterprise Architects to establish, understand, and adhere to technical and IT security standards. Involved in all aspects of the technology life-cycle to ensure that non-functional and functional requirements are adhered to in design and build so solutions are stable, secure, resilient, and perform well. This position will work under general supervision to provide Cybersecurity engineering documentation services to build secure technical documentation for applications, systems, architectures, and infrastructure that are operationally viable and efficient.Providing mid-level Assessment and Authorization support, you will lead the manual and application-based STIG evaluations for the network enterprise. This position will be responsible to plan, develop, and execute automated and manual tests to validate security posture/controls in accordance with DOD 8500.2/8510.01. This position will work directly with teams that support DoD Information Assurance Certification and Accreditation (DIACAP) and Risk Management Framework (RMF). You may also be tasked to engage the JSP CA Liaisons, SCA Reviewers, and ISSMs to discuss and obtain mitigation guidance. A typical day in this position will include:Author DoD IA Assessment and Authorization (A&A) artifacts.Document a system from an IA perspectiveDerive, document and/or identify system CONOPS for Mission Assurance Categorization per DoDI 8500.2Lead the research, recommend and document logical and physical solutions that prevent, detect, and correct the system to be certified and accreditedResearch and apply DISA Security Technical Implementation Guides (STIGs) and NSA recommendationsLead the identification of disagreements between as built specifications, security requirements and DoD security policies and design implementations to bring the system into compliance.Plan, develop, execute, and document results of security test proceduresLead the preparation and execution an Information Assurance Vulnerability Management (IAVM) PlanLead the preparation and production of a System Security Plan (SSP) and Plan Of Action and Milestones (POA&M)Lead the technical support effort in identifying and specifying requirements and performing risk assessmentsLead or Develop Standard Operating Procedures (SOP)Ensure IT solutions meet requirements for security, availability, capacity, resiliency, and performance in a way that is efficient and supportable, reducing overall support costsUnderstand industry leading solutions and trends for assigned technologies and applying those as appropriateUnderstand business needs and partnering with appropriate IT counterparts to recommend technology solutionsEstablish and maintain an IT multi-year strategy with a focus on continuous improvement. Create and maintain solutions architecture artifacts and other strategy and system documentationUse tools such as Host Based Security System (HBSS), Assured Compliance Assessment Solution (ACAS), Junos Space, Cisco Prime and Cisco Adaptive Security ApplianceAssist the government with input, instructions, and guidance as needed for the creation of adequate package documentation and artifacts.Develop and present briefings to technical and senior management audiences and communicate assessment results, risk analyses, mitigation strategies, and forward plansRequired Skills:Active Secret Security clearanceComputing environment certification - Examples include Linux+, RHCSA, RHCE, RHCSS (Other Examples - MCSE Server 2012, MCSA Server 2012, MCSE Productivity, Linux+, RHCSA, RHCE, RHCSS, LPIC-1, LPIC-2, Novell Certified Linux Engineer, Oracle Solaris System Administrator (OCA, OCP or OCF), GCUX, BSDA, CSE - Specialty in Networking and Security - HP-UX, etc.)DoD 8570 IAT/IAM Level II or Level III Certification (Examples - Security+ CE, SSCP, GSEC, CISSP, CISA, CASP, CISM, GSLC, CAP, CASP, CISM)Degree in a Computer Science, Engineering or Information Technology related field is desired but not required. Bachelor's degree in Information Technology/Systems or experience. Master's degree preferred5 years of experience in information technologyExperience with performing both manual AND tool performed STIGsExperience with computer networking and telecommunication architecture, the OSI model, and communications protocolsExperience in collaborating with multiple technical teams to drive solutions that requirement driven including technical subject matter experts, including hardware and software designers, operations personnel, and test engineers and communicate potential security risks and mitigationsExperience in organizing and coordinating deployments of complex systemsExperience with OS Tier 2 Support in heterogeneous operating system environments (Linux, Windows)A working knowledge of deployment methodologies and toolingExperience using Microsoft Office including MS Visio, MS Word, MS Excel and other appropriate tools.Experience with DoD Certification and Accreditation (C&A) process, DoD Authorization & Accreditation including familiarity with Risk Management Framework (RMF) and the process to obtain an Authority to Operate (ATO)Strong English communication skills with ability to communicate clearly and succinctly in written and oral presentationsAble to report onsite as indicated aboveDesired Skills:Department of Defense Security Clearance of TS/SCI.Knowledge of multiple database architectures: Cisco, Oracle, Linux, Windows, and VMWare1-year lead experience in information technology, preferredExperience in coordination of;Management NetworksOut Of Band ManagementJoint Regional Security Stack (JRSS) implementationProduction Monitoring EnvironmentsExperience in ITIL frameworkConducting internal security reviews/audits of responsible government systems#ETMcareerScheduled Weekly Hours:40Travel Required:Less than 10%Telecommuting Options:Telecommuting Not AllowedWork Location:USA VA ArlingtonAdditional Work Locations:COVID-19 Vaccination Requirement: To protect the health and safety of its employees and to comply with customer requirements, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.SummaryLocation: USA VA ArlingtonType: Full time

Keywords: General Dynamics, Arlington , Computer Security Specialist A&A/RMF - Secret clearance, IT / Software / Systems , Arlington, Virginia