Information Assurance Systems Architecture Eng.

Job Description
We are seeking an Information Assurance Systems Architecture Engineer to join our team in Warrenton, VA.

Responsibilities include, but are not limited:

• Primarily responsible for maintaining the test and operational environments to include all cybersecurity tool sets and collaborating with systems and network engineers.
• Creates and implements methods and procedures for inspecting, testing, and evaluating the security and effectiveness of products and production equipment.
• Effectively choose the appropriate standards, processes, procedures, and tools throughout the system development life cycle to support the generation of the security engineering products.
• Design technical, operational, and organizational controls to maintain acceptable security posture for the organization.
• Assist with the design, deployment, and administration of a multi-site, distributed Splunk environment. Including Multi-site Clustering, Search Head Clustering, Universal Forwarders, Deployer, and Deployment Server.
• Administration and operation of information security compliance tools and platforms with a special concentration in managing the Assured Compliance Assessment Solution (ACAS) and ePolicy Orchestrator (EPO) suite.
• Installation, monitoring, testing, troubleshooting, and administration of the ACAS/Nessus Vulnerability Scanner applications.
• Ensure scheduled scans are covering 100% of intended assets and are being run successfully.
• Ensure SC is being updated regularly; address unsuccessful updates of the SC and identify the root cause of the unsuccessful update.
• Configure, optimize, and test vulnerability scans against new and existing Operating Systems and platforms.
• Configure, operate, and maintain HBSS and its components (ePolicy Orchestrator, McAfee Agent, Data Loss Prevention, Host Intrusion Prevention System, Policy Auditor, Asset Baseline Monitor, and Virus Scan Enterprise) on Windows and Linux creating exceptions to allow essential processes to continue uninterrupted.
• Provide guidance on vulnerability and malware remediation.
• Configure, operate, and maintain ForeScout, Trip Wire and Lumension tool suites.
• Identify potential conflicts with implementation of any cyber security tools within the enterprise and develop recommendations to remediate these conflicts.
• Provide Tier 3 maintenance support for deployed cyber security technologies.
• Assist with periodic and regular security assessments.
• Assist with the development and maintenance of information security policies, standards, and control procedures to enable compliance with RMF.
• Assist with POA&M management, mitigation statement formulation, interfacing with system administrators to resolve open findings of high and at-risk systems.

Qualifications:

• 7-9 years of directly related experience.
• Bachelor's degree in a related field or 4 additional years of experience required.
• Practical experience in infrastructure administration (Linux, networking, Windows, firewalls).
• Must meet DoD 8570.01-M IAM-II or IASAE-I baseline certification requirements such as CASP CE or equivalent.
• 2+ years of Splunk experience in designing, implementing, and maintaining a fully operating Splunk solution.
• 2+ years of knowledge and experience with ACAS and HBSS administration.
• Experience with developing and presenting vulnerability information for technical and non-technical audiences.
• Well-developed verbal and written communication skills
• Must be an experienced individual managing Splunk, ACAS, and HBSS and will be responsible for the day-to-day maintenance and operations of these tool sets.

Preferred Qualifications:

• Possess understanding and experience with common cybersecurity toolsets and processes to include STIGS, IAVA Management and Implementation, and OPORD/FRAGO support.
• Demonstrated experience in analysis simulation environment, configuring/troubleshooting software/hardware enhancements, application deployments, and infrastructure upgrades in a dynamic information system hosting environment.

Security Clearance Requirements:

• Must have an active TS/SCI clearance

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans