Information Assurance Engineer
About The Position
General Dynamics Mission Systems has an immediate opening for an Information Assurance Security Professional. This position provides an opportunity to further advance the cutting-edge technology that supports some of our nation's core defense/intelligence services and systems. General Dynamics Mission Systems employees work closely with esteemed customers to develop solutions that allow them to carry out high-stakes national security missions. The candidate will be designated as an Information System Security Officer (ISSO) supporting multiple Special Access Programs administering the Information Assurance (IA) Cyber duties for government customers. Components of the IA program include Assessment and Authorization (A&A) activities (i.e., documentation preparation, system configuration/validation, certification testing), security sustainment activities (i.e., hardware change management, software change management, account management, media protection, user interface, file transfers), conducting self-inspections, audit trail review, and delivering information systems security education and awareness. The candidate must be a self-starter capable of multitasking and efficiently managing their time in a dynamic environment while requiring minimal levels of supervision. Additionally, the candidate will possess effective written, speaking, analytical, organizational, and customer service skills that will assist them in identifying solutions to complex compliance and security problems. The ISSO will coordinate duties with the System Administrators and/or Information Technology (IT) staff to ensure all configuration requirements are implemented and functional. The ISSO will conduct technical and nontechnical reviews and audits as prescribed by the Information Systems Security Manager. As a member of the Information Assurance Security team the ISSO supports system security categorization efforts, security requirements selection/analysis, security control assessments and performs continuous monitoring.
Requirements
- Bachelor's degree in Engineering, or a related Science or Mathematics field, plus a minimum of 5 years of relevant experience; or Master's degree plus a minimum of 3 years of relevant experience.
- Department of Defense Top Secret security clearance is required at time of hire.
- Must be able to obtain SCI.
- Applicants selected will be subject to a U.S. Government security investigation and must meet eligibility requirements for access to classified information.
- Due to the nature of work performed within our facilities, U.S. citizenship is required
- Proficient understanding of cyber security specifications such as Risk Management Framework (RMF), JSIG (Joint SAP Implementation Guide), ICD-503, NIST SP 800-53
- Experience implementing government security requirements to include technical computer/network system auditing
- Trained and proficient in Assured File Transfer (AFT) processes and tools
- Experience with various security assessment/hardening tools - STIGs, SCAP, ACAS, Nessus, etc.
- Very strong writing, speaking, analytical, and customer service skills
- Ability to participate in or lead security work groups
- Must be a self-starter capable of multitasking and efficiently managing your time in a dynamic environment while requiring minimal levels of supervision.
- Maintains contact with external customer security professionals
Nice To Haves
- Systems administration experience is highly desirable
- Demonstrated comprehensive knowledge of the NISPOM, JSIG, ICD-503, NIST SP 800-53 and CNSSI 1253
- DoD 8570 IAM-I level professional certification (i.e. Security + CE, CAP, GSLC) or ability to obtain within six (6) months of hire
Responsibilities
- Executes or supports the execution of A&A activities, including development of required security documentation, including items such as System Security Plans, Security Assessment Reports, SCTM’s and POA&M’s in compliance with IA policy
- Perform weekly system audit reviews, media reviews, hardware/software configuration management
- Executes security testing and evaluation to ensure correct implementation of security controls
- Supports the assessment and mitigation of vulnerabilities throughout a systems life cycle
- Conduct IA security education training for all system users on appropriate risk mitigation strategies
- Perform incident response and cleanup actions when necessary per company or customer directions
- Ensure systems are operated, maintained, and disposed of in accordance with internal security policies and procedures outlined in the System Security Plan (SSP).
- Assume ISSM responsibilities as assigned by the Region Manager and/or in the absence of the ISSM
Benefits
- highly competitive benefits
- flexible work environment where contributions are recognized and rewarded
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
