Information Assurance Engineer, III

About The Position

Requirements

• U.S. Citizen
• Pass a background investigation
• Active TS security clearance
• Education: B.A/B.S degree in a relevant field is required (Cybersecurity, Computer Science, or Information Technology, etc.); or an Associate's degree and 7 years of experience; or a total of 9 years of experience may be substituted for the BA/BS degree
• Possess DoD 8570-compliant security certifications to meet IAT/IAM II or III requirements (Security+ CE, CASP, CISSP, CISA, CISM, etc.)
• 3+ years of general information technology experience
• 2+ years of directly applicable ACAS experience
• Knowledge of cybersecurity policies and guidelines (NIST SP 800-53, DoD Instruction 8510.01), a strong understanding of security controls, vulnerability management, and risk assessment methodologies.
• Hands-on experience utilizing DoD-approved scanning/testing tools (Nessus, STIG Checker, SCAP, etc.) and performing analysis of output.
• Experience with DoD cybersecurity applications (ACAS, HBSS, SCC)
• Experience with DoD cybersecurity requirements, NIST standards, vulnerability and compliance assessments, and the NIST RMF
• Possess or the ability to obtain Linux+ certification

Nice To Haves

• Familiarity with security control assessments, STIG Viewer and Secure Content Automation Protocol (SCAP) checklists or benchmarks desired

Responsibilities

• Administer and maintain Assured Compliance Assessment Solution (ACAS) scanning for the information assurance team in accordance with STIG/SRG guidance, applicable Taskords, and best security practices.
• Evaluate information systems for compliance with Defense Information Security Agency (DISA) Security Technical Implementation Guidelines (STIGs) and the Common Vulnerabilities and Exposures (CVE) repository.
• Navigate systems through the authorization process, prepare packages for government review, and maintain compliance through change management.
• Translate security requirements into technical tasks and work with the engineering teams to verify the measures needed to bring systems and laboratories into compliance.
• Ensure that all systems are patched and report any problems in achieving compliance to the Information System Security Officer (ISSO).
• Documentation and compliance are vital, requiring the creation and maintenance of security documentation, including ATO packages and ensuring the integration of security solutions.
• Create and update the Plan of Action and Milestones (POA&M) to document all known vulnerabilities. Work with the engineering team to determine remediation or mitigation actions and timelines.

Benefits

• Competitive Salary
• Comprehensive medical coverage
• Dental, Vision, STD/LTD, and Life Insurance Coverage
• 401(k) Retirement Plan – 3% match and 50% match of 4% and 5% deferral, immediately vested
• Front-Loaded Paid Time Off (PTO)
• Holidays - All employees are given six (6) paid days off and five (5) floating holidays in observance of the U.S. federal holidays.
• Health Reimbursement Arrangement (HRA) - 100% funded by OMNI ($7,400 individual / $14,800 family)
• Employee Referral Program - Employee referral bonus is paid for eligible candidates after 90 days of employment.
• Education Assistance & Continuing Education Program - Employees can use up to $5,000 annually toward continuing education, certifications, training, and conference attendance.
• Community Outreach - Employees who volunteer 40 (or more) hours a year to community service or OMNI Community Outreach events receive a cash bonus.