Information Certification and Accreditation Engineer (Reston, VA)

MUST HAVE DCID EXPERIENCE

• BS degree plus (or equivalent) 4 years experience in computer science, software engineering, or technical discipline.
• Familiarity with IC information Systems architectures
• Facility, hardware, and information system engineering
• Computer and network hardware and cabling
• Cross-functional integration of Information Systems into the physical security environment
• System methodologies including Client/Server, Web Hosting, Web Content Servers, Directory Servers, Firewalls, Wide Area Networks (WAN), Metropolitan Area Networks (MAN), and Local Area Networks (LAN), Switches, and Routers
• Detecting and preventing computer system security compromises in a networked environment
• Configuration management; system maintenance, and integration testing
• Identification, prevention and negation of malicious code
• Understanding of COTS tools that can scan at the physical layer of all media types including but not limited to: CDs, Hard Drives, Floppies and Zip/Jaz
• Experience with utilization and interpretation of DITSCAP and DCID 6/3 in real-world environments
• Forensics and evidentiary preservation
• Troubleshoot technical configurations and make recommendations on the protection of classified and sensitive data.
• Apply a risk management philosophy when faced with security challenges and the ability to articulate the in a clear concise, comprehensive manner the options available to Customer certifying and accrediting officials
• Analytical abilities to decipher complex technical configuration management documents
• Database management skills
• Strong ability to elicit, articulate, and document information thoroughly
• Demonstrated ability to work independently in an organized manner, with minimal supervision
• Knowledge of all applicable policies, procedures and Operating Instructions

• Provide total Automated Information (AIS) security support addressing: hardware, software, administrative/procedural, physical, and communications
• Provide recommendations for formal accreditation of all Customer systems processing SCI and collateral information.
• Reviews and, when necessary, prepares the accreditation package supporting the accreditation process.
• Risk management conduct surveys and renders impact statements or recommendations when deviations to standards are appropriate and fully justified
• Investigate, prepare impact statements, and make recommendations on security violations.
• Assist in system/technology analysis and assessment, testing, and verification and validation
• Perform risk assessments and provide security oversight and technical direction on AIS systems, networks and media.
• Maintains security plans, as required
• Conducts audits
• Support and provide guidance regarding information systems security awareness programs
• Perform market surveys and provide recommendations on new cost effective hardware and software that incorporates new security technology concepts
• Research, evaluate and provide security guidance to Government and contractor personnel for the day-to-day computer security support functions
• Updates and maintains appropriate records of accreditations, Co-Utilization agreements, collateral areas, status remarks, expirations, inspections, etc.
• Conduct inspections and perform staff assistance visits
• Control and monitor project milestones
• Liaison with members of the DoD, IC and other officials as required to and insofar as protocol permits.
• Prepare and deliver briefings to internal and external customers.
• Prepare various forms of correspondence.
• Serve as the AIS security focal point for all AIS assets within the Security Office to include installation, implementation, and integration
• Oversee the AIS security position and provide direction, guidance and tasking to achieving the day-to-day AIS security duties
• Provide technical assistance and evaluations to program contractors, both on-site and off-site, with regards to systems definition, equipment selection, and equipment installation criteria; hardware, software and administrative/procedural, physical, communications, environmental, and safety
• Ensure systems under the Customer Security Office are compliant with DCID 6/3 or appropriate security guidance
• Develop AIS security protocols to conform to DCID 6/3, Defense Infrastructure Common Operating Environment or other standards as required by the project specifications
• Ensure Customer Security Offices are compliant with applicable Customer Directives for the handling, processing, storing and disposing of all types of magnetic media
• Perform research, development, test, evaluation, and validation of countermeasures developed through the integration of technical and non-technical security disciplines necessary to provide a secure environment for program activities
• Analyze the threats, environment, and security-related vulnerabilities to recommend security policies, plans, procedures, requirements, and countermeasures for appropriate risk management measures
• Provide evaluations of program and system vulnerabilities as they relate to security and develop programmatic or procedural countermeasures necessary to protect program operation
• Incorporating all security disciplines, recommend and develop requirements, specifications, designs, and procedures to satisfy program security policy and planning guidance
• Monitor the implementation of Government security requirements for Government and Industry facilities and systems
• Develop reports, information, and recommendations that support the implementation of Government security requirements and configuration management of Government and Industry facilities and systems
• Develop and review test plans, perform and/or monitor testing, review and analyze results, and develop and/or review test and certification documentation for Government and Industry facilities and systems. Prepare reports and recommendations that document test and evaluation results
• Develop security configuration baselines for facilities, systems, and processes, and ensure the continuing validity of those baselines
• Provide AIS communications systems security engineering and network architecture support of existing systems. Provide concept development and engineering and support for projected or new systems
• Coordinate and/or integrate program security and operational mission requirements with various Government and Industrial organizations involved in program activities
• Work in conjunction with SIS divisions to staff, develop, and implement AIS security controls, procedures, and requirements for secure operations of AIS assets processing classified and unclassified program data
• Conduct trade studies of systems, equipment, and associated software whose security features complement a programs operations or requirements
• Conduct vulnerability assessments, penetration assessments, and open source profile assessments from an adversarial approach to determine the strengths and weakness of the current methodologies and operating techniques for information assurance
• Maintain the database of all approved electronic devices that are in the Customer Security Office and provide training; guidance and oversight to ensure electronic devices are only used in the approved manner
• Provide guidance, training and support to the staff on the proper procedures for the handling of all software media
• Track all activities to enable the customer to redirect resources to satisfy changes in mission requirements

• Categories: Accounting & Finance, Construction, Skilled Labor & Trades, Aerospace & Aviation, Human Resources & Recruiting, Linguists, Translators & Interpreters, Administrative & Clerical, Counter Intelligence & /SIGINT/HUMINT/MASINT, GIS Imagery & IMINT, Computer Software, Computer Hardware, Legal, Manufacturing & Production, Transportation & Warehousing, Logistics & Supply Chain, Science, Engineering, Chemical & Biological, Customer Service & Help Desk, Education / Training / Instructor, Environment, Executive, Facilities, General, Government, Graphic Arts / Media / Advertising, Hospitality / Housekeeping, Journalism, Law Enforcement & Security, Medical & Biomedical, Nuclear, Professional, Research and Analyst, Sales, BD & Marketing, Telecommunications
• Security Clearances: Top Secret/SCI with Full-scope Polygraph, Top Secret/SCI with CI Polygraph, Top Secret/SCI
• Experience Required: 2 yrs
• Relocation Costs Paid: Negotiable
• Preferred Degree: Bachelors

URL: www.datashaping.com/jobs16943d.shtml
Please mention datashaping.com when applying. Thank you.