Information Systems Security Engineer – TS/SCI required

About The Position

Requirements

• Cybersecurity
• Information System Security
• RMF
• System Implementations
• System Security
• 10 + years of related experience
• US Citizenship Required
• Bachelor of Science Degree, or a related technical discipline, or the equivalent combination of education, technical certifications or training, or work experience.
• Minimum 10 years of cyber/information assurance experience.
• TS/SCI Required
• Candidate must meet DoD 8570 for ISSE Role: CISM, CISSO, FITSP-M, GCIA, GCSA, GCIH, GSLC, GICSP, CISSP-ISSMP or CISSP.
• Candidates must be willing and able to attain a CI Polygraph.

Nice To Haves

• Progressively responsible information assurance experience in ICD 503 certification and accreditation.
• Experience with NIST Special Publication 800-37 Revision 1, Guide for Applying the Risk Management Framework to Federal Information Systems‟, Committee on National Security Systems Instructions (CNSSI) 1253, and NIST SP 800- 53 Revisions 3 and 4, SP800-39, SP 800-30.
• Demonstrated experience in transitioning applications to IC Information Technology Environment (ITE) and in-depth knowledge of IC ITE services.
• Experience with the Xacta application.
• Strong written and oral communication skills.
• Ability to multi-task and shift with changing priorities and projects.

Responsibilities

• Responsible for supporting Engineering and Operations network solutions and strategic adherence to all aspects of the Information Assurance (IA) program as stipulated by various U.S. Government requirements including (but not limited to): Director of Central Intelligence Directives (DCID), IC Directive (ICD) 503 and associated NIST publications.
• Preparation of Assessment and Authorization (A&A) documents and procedures.
• Interface with other IA team members, other security disciplines (industrial security, physical security, special programs security, etc.), program personnel, and Government security representatives.
• Assists ISSO guiding the SDP program thru RMF process expediting control implementation/policy creation to achieve/maintain 3-year ATO
• Maintains system eMASS records, uploads artifacts, updates security controls, and initiates workflow for steps in RMF process.
• Validate weekly patching complete and scans results reviewed.
• Ensure STIG Compliance SOP is sustained on testing guidance for SDP teams
• Reviews and analyze system implementation plans.
• Identified corrective actions/mitigation strategies to achieve/sustain RMF compliance.
• Validates STIG development/implementation.
• Ensure all STIGS/scans sustained IAW SOP. Includes validation and IssueTrak monitoring
• Develop/maintain Plans of Action & Milestones (POA&M) which account for confidentiality, integrity, and availability. experience with the Xacta application.
• alidate all Assessment Procedures (i.e. security controls) test results reported with proper justification.
• Validate Reported False Positives.
• If ACAS findings, create ticket, notify ACAS team, and coordinate to submit ticket.

Benefits

• Full-flex work week to own your priorities at work and at home
• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career
• Professional growth opportunities including paid education and certifications
• Cutting-edge technology you can learn from
• Rest and recharge with paid vacation and holidays
• Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match.
• To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave.
• To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available.