Information Assurance Engineer

The Information Assurance Analyst will perform analysis and audits on conformance of Information Assurance/ Cybersecurity (IA/CS) program.

Education and Experience:

• (Preferred) Bachelor's Degree
• 5+ Years of experience
• Security+ CE (or appropriate DoDM 8570 Baseline Certification)
• IAT Level II certification is required before start
• Public Trust Clearance - Tier 3
• Prior relevant experience working with RMF, serving in an ISSO, ISSO support, SCA representative, or similar role.

Responsibilities:

• Ensure that all information systems meet or exceed compliance requirements.
• Establish and satisfy information assurance and security requirements based upon the analysis of user, policy, regulatory, and resource demands.
• Perform various types of vulnerability and assessment scans with multiple tools.
• Support completion of all requirements for Certification and Accreditation of the DoD/DoN information technology systems.
• Provide administrative and technical assistance to the ISSM in the completion of risk assessment surveys, identification and implementation of security controls and countermeasures and development of security plans, policies and procedures.

• Perform Vulnerability Management (computing environment & enclaves); scans and results analysis, using IA/CS network security applications which include, ACAS, and other requirements as developed and directed by DoD/DoN IAVM authorities.
• Perform Network Security Services; Technical/administrative security operations; complete risk assessments/surveys; identify/analyze deficiencies and non-compliance issues; identify/implement security controls & countermeasures; manage/operate network security applications/tools under IAVM authority; support data retention and recovery; audit & analyze security posture impact of new configurations or deployment.
• Perform IA Inspections; Active review/audit of security controls; End user and IA/CSWF training; manage security incidents and reporting, create POAMs; implement remediation and mitigation strategies.
• Support Certification and Accreditation; Compose/Update System Security, Configuration Management, IT Contingency, Incident/Disaster Reports and IA Vulnerability Management Plans; participate in scheduled conference calls with CA/ODAA; develop training and exercise curricula for ITCP; monitor IA controls for PORS/MHS Enclave; develop CSW; maintain hardware/software/license databases for accreditation.

Knowledge and Skills:

• Excellent verbal and written communication skills
• Ability to organize and facilitate planning and demonstrations
• Ability to track, manage, and ensure projects tasks are completed in a timely manner
• Ability to identify needed changes to processes and activities and help to implement continuous improvement solutions.
• Demonstrated analytical and problem-solving skills.
• Vulnerability assessments
• Assured Compliance Assessment Solution (ACAS)
• McAfee Enterprise Security Suite

Technical Knowledge

• Strong experience in Certification and Accreditation
• Strong experience with POAMs
• Strong experience with ServiceNOW Ticketing/Global Service Center
• Strong experience performing various types of vulnerability and assessment scans with multiple tools.

Clearance/Citizenship:

• Public Trust Tier-3
• Must be US Citizen

Location: Lovell Federal Health Care Center (FHCC), North Chicago, IL 60064