Information Systems Security Engineer

Company: NDTI
Location: Inyokern
Posted on: October 8, 2021

Job Description:

New Directions Technologies, Inc. (NDTI), was founded and incorporated in the State of Delaware in 1994 by Cedric Knight, our CEO and a 20-year Navy Veteran. In 2011, our participation in the Veterans Administration’s Veteran-Owned, Small Business (VOSB) Verification Program, allowed NDTI to become one of the first Information Technology (IT) Small Businesses to be officially verified by the Center of Veterans Enterprise (CVE) as a Service Disabled Veteran Owned Small Business (SDVOSB): www.ndti.net

Hire Velocity: Recruiting Partner of (NDTI): www.hirevelocity.com

THIS IS A FUNDED, OFFICE-BASED POSITION BASED IN CHINA LAKE, CA (Ridgecrest Area)

Information Systems Security Engineer - Senior

Location: China Lake, CA

Status: Full Time Duties and Responsibilities:

THIS POSITION IS AT CHINA LAKE IN CALIFORNIA

REQUIRES A SECRET OR TS CLEARANCE

==============================================

1.Understand system architecture to maintain a posture complaint with DoD’sRMF A&A process

2.Interpret and implement DoD IT security policies and compliance measures

3.Identify appropriate RMF controls for various types of systems to include classified and unclassified systems

4.Interface with other IA support staff to coordinate RMF A&A activities

5.Monitor computer usage and audit logs to ensure compliance with IA controls and reporting

6.Ensure continuous understanding of operation status and vulnerabilities

7.Prepare, review and process accreditation packages in accordance with established security plan

8. Initiate requests for temporary and permanent exception, deviations, or waivers to IA requirements

9.Assure successful implementation and functionality of security requirements and appropriate IT policies and procedures that are consistent with the organizations mission and goals

10. Define and/or implement policies and procedures to ensure protection of critical infrastructure (as appropriate)

11. Ensure plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc

12. Ensure that IA inspections, tests, and reviews are coordinated for the network environment

13. Ensure that IA requirements are integrated into the continuity planning for that system and/or organization(s)

14. Ensure that protection and detection capabilities are acquired or developed using the IS security engineering approach and are consistent with organization-level IA architecture

15. Evaluate and approve development efforts to ensure that baseline security safeguards are appropriately installed

16. Evaluate cost benefit, economic, and risk analysis in decision making process

17. Identify security requirements specific to an IT system in all phases of the System Life Cycle

18. Participate in an information security risk assessment during the Security Assessment and Authorization process

19. Participate in the acquisition process as necessary, following appropriate supply chain risk management practices

20. Participate in the development or modification of the computer environment IA security program plans and requirements

21. Prepare, distribute, and maintain plans, instructions, guidance, and standard operating procedures concerning the security of network system(s) operations

22. Provide system related input on IA security requirements to be included in statements of work and other appropriate procurement documents

23. Recognize a possible security violation and take appropriate action to report the incident, as required

24. Recommend resource allocations required to securely operate and maintain an organization

25. Supervise or manage protective or corrective measures when an IA incident or vulnerability is discovered

Education and Work Experience Requirements:

Minimum Qualifications

• B.S. in Information systems or equivalent with a minimum of 8 years experience with RMF IA process/tasks OR A.S with a minimum of 10 years experience to RMF IA process/tasks OR High School with a minimum of 16 years experience with RMF IA process/tasks.

• Working knowledge of NIST 800-53 controls, overlays and inheritance

• Working knowledge of eMASS

• Excellent communication skills to defend and discuss accreditation packages with approving officials

• Must have sec+ certification.

• Must have or be able to acquire and maintain a security clearance at the secret or TS level.

• Knowledge of PC operating systems and servers.

• Knowledge or experience with cyber security tools (Splunk, HBSS, ACAS, Nessus etc.)

• MUST HAVE a secret clearance or TS (preferred)

Desired Qualifications

• CISSP Security

Clearance: Secret

Keywords: NDTI, Lancaster , Information Systems Security Engineer, Other , Inyokern, California