Information System Security Officer - TS/SCI w/Poly

About The Position

Requirements

• 8 + years of related experience
• US Citizenship Required
• Bachelors (Computer engineering, Computer Science, Electrical Engineering, Information systems, Information Technology, Cybersecurity, or a closely related discipline)
• TS/SCI with active polygraph

Nice To Haves

• Demonstrated strong technical skills and analytic abilities, as well as experience performing system security analysis and risk management.
• Demonstrated experience with security in the Amazon Web Services environment.
• Demonstrated experience performing complex technical tasks in pursuit of overall goals with minimal direction.
• Demonstrated experience in translating an understanding of systems and applications into security test plans and perform hands on security testing.
• Demonstrated knowledge of risk management methodologies.
• Demonstrated experience to analyze test results and suggest mitigations for security problems.
• Demonstrated technical experiences with system configuration, development, and design specifically around enterprise systems and hypervisors.
• Demonstrated experience with Linux and virtual platforms.
• Documented working experience with public and private information security groups and organizations.
• Possesses experience with communicating vulnerability results and risk posture to senior executives.
• Possess a broad knowledge of Information Security policies and guidance, as well as the ability to assist in researching, evaluating, and developing relevant security policies and guidance
• Demonstrated experience with coordinating and implementing cyber security policies, standards and processes
• Strong knowledge of AWS infrastructure, Commercial cloud and cloud security
• Understanding of NIST 800-53, NIST 800-37, RMF, ICD 503, CNSSI 1253
• Strong written and oral communication skills to write technical analysis reports and security plans
• CompTIA Security+
• Certified Information System Security Processional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Ethical Hacker (CEH)
• AWS Certified Cloud Practitioner (CCP)
• Microsoft Azure
• Google Cloud Platform (GCP)

Responsibilities

• Provide expert-level knowledge, both in context and execution with the Risk Management Framework to support a NIST SP 800-53 HHM systems through the A&A process.
• Construct thorough and complete security documentation to include, but not limited to, System Security Plans (SSPs), Plan of Actions and Milestones (POA&Ms), and any other artifacts to support the Body of Evidence (BOE), for sponsor's approval.
• Identify security controls and work with engineering, development and testing staff to construct proper test plans and procedures.
• Implement security audit reviews verifying that the audit records are collected and reviewed.
• Coordinate all security testing exercises, working with external assessment teams and technical staff.
• Configure and support various AWS services to protect the security posture of the system

Benefits

• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career
• Professional growth opportunities including paid education and certifications
• Cutting-edge technology you can learn from
• Rest and recharge with paid vacation and holidays
• Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.