Sr. Specialist, Cyber Intelligence - ISSO

About The Position

Requirements

• Active DoD Secret clearance
• Bachelor’s Degree and minimum 6 years of prior relevant experience. Graduate Degree and a minimum of 4 years of prior related experience. In lieu of a degree, minimum of 10 years of prior related experience.
• Relevant experience with various operating systems (e.g. Windows, Linux, UNIX, Solaris, Cisco), Windows server systems, system virtualization, and other related peripherals.
• Experience using Microsoft Office products.
• Relevant experience with Vulnerability and compliance tools like Nessus, SCAP
• In-depth experience with Configuration Control Board processes and procedures
• Experience with Plan of Action and Milestone creation, tracking and completion
• Experience with Baseline configurations and evaluation of compliance levels
• IAM Level II Certification (Security +)
• Experience with RMF/Assessment and Authorization (A&A) safeguards to meet various regulatory requirements based upon government regulations and NIST 800 series (800-53, etc.)
• Experience in Special Access Program environments
• Excellent communication skills (written, verbal, & presentation)

Nice To Haves

• Experience with configuration/certification and auditing/analysis of Windows, Linux, UNIX systems to include stand-alone IS, peer-to-peer networks, LANs/WANs and interconnections.
• Experience with applying, searching, leveraging SCAP and STIGs
• Demonstrate excellent organizational, decision-making, and problem-solving skills.
• Experience with technical configuration standards relating to information system security.
• Well versed in risk management, mitigation, and customer service.

Responsibilities

• Vulnerability and change management compliance for a complex network with multiple locations and a diverse user set
• Assistance on IT and information system security compliance issues
• Assessment activities for verification of RMF/Assessment and Authorization (A&A) safeguards specifically within the NIST 800-53 CM and RA control family
• Analyzing and evaluating security controls for information systems with regards to configuration, change, and vulnerability management
• Monitor IA Program compliance through robust change control processes and tracking
• Review, approve, or seek authorization for network/configuration changes and exception to policy for vulnerabilities when necessary
• Participate in documenting and publishing security related workflows and procedures to mitigate vulnerabilities and recommend changes to system or system components
• Act as a member of a diverse security team and participate in Engineering and Configuration Review Boards and Working Groups to develop secure system solutions
• Provide input and support for RMF package artifacts to include the System Security Plan (SSP), Security Control Traceability Matrix (SCTM), Plan of Actions & Milestones (POA&M), Continuous Monitoring (ConMon) Plan, CONOPS, and other RMF BoE artifacts