Information Assurance Automation Engineer
About The Position
The Information Assurance Automation Engineer is a key contributor to the Department of State’s cyber mission, focused on modernizing security assurance through automation, monitoring, and engineering-driven compliance. In a fast-paced environment, this role develops scripts to automate security analysis, identifies and implements alerts and controls, and builds dashboards that improve visibility and speed of response. This position also supports and leads RMF/ATO activities by authoring and maintaining required A&A artifacts and system security documentation (e.g., SSP, POA&M, SOPs) and partnering closely with ISSOs and technical teams to integrate security requirements into operational processes. The engineer applies federal standards and guidance (including NIST frameworks and related mandates) to help ensure systems meet Departmental procedures and remain accreditation-ready across cloud and on-premises systems.
Requirements
- Bachelor’s degree in Information Technology/Systems, or related field, OR equivalent number of years of experience
- Must be U.S. Citizen with an active Top Secret clearance (required)
- 7+ years’ Information Assurance experience
- CISSP technical certification required
- Measured Experience in both Linux and Windows-based environments
- Measured experience in both cloud-based and on-prem systems analysis
- Experience with Splunk technical add-on development, indexing, and query construction
- Experience writing PowerShell, Bash, and Ansible scripts
- Experience with security concepts (digital certificates, identity management, system auditing, etc.)
- Attention to detail and ability to work independently with broad guidance
- Works in a professional setting and interacts regularly with peers
Nice To Haves
- Experience with Xacta Continuum for RMF workflow, preferred
- Familiarity with the Federal Risk and Authorization Management Program (FedRAMP) as it applies to federal agency ATOs.
- Strong communication skills with the ability to communicate clearly and succinctly in written and oral presentations.
Responsibilities
- Develop scripts to automate security analysis of existing systems
- Identify alerts to implement various security controls
- Implement alerts using various technologies
- Develop dashboards utilizing Splunk
- Support ISSO and technical teams on documentation, status
- Integrate systems and applications to ensure prompt attention and efficient implementation of security-related requirements
- Lead customer IA, RMF, ATP/ATO processes
- Author/maintain RMF and IA Assessment and Authorization (A&A) artifacts
- Document a system from an IA perspective, including a System Security Plan (SSP), Plan of Action and Milestone (POA&M), and Standard Operating Procedures (SOP)
- Provide support applying and implementing various security laws, policies, and guidance within the Bureau, such as NIST 800-30, 800-37, 800-53/53-B, 800-171, FISMA, FICAM, and other NIST SPs as applicable
Benefits
- Comprehensive benefits program
- Flexible options that empower you to customize your selections to meet the unique needs of your family
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
