Information Assurance Security Specialist Journeyman

General Dynamics Information Technology Patuxent River , MD 20670

Posted 11 months ago

Job Description:

GDIT is seeking a Information Assurance Security Specialist to support our Joint Strike Fighter (JSF) F-35 IT program support contract. You would provide knowledge-based, information assurance and cybersecurity IT services to the F-35 JSF Virtual Enterprise (JVE) network in support of the F-35 Lightning II Joint Program Office (JPO).

The F-35 Lightning II Program is the Department of Defense's focal point for defining affordable next generation strike aircraft weapon systems for the Navy, Air Force, Marines, and our allies. The F-35 will bring cutting-edge technologies to the battlespace of the future. The JSFs advanced airframe, autonomic logistics, avionics, propulsion systems, stealth, and firepower will ensure that the F-35 is the most affordable, lethal, supportable and survivable aircraft ever to be used by so many warfighters across the globe.

Duties include but are not limited to:

  • Determine enterprise information assurance and security standards.

  • Develop and implement information assurance/security standards and procedures.

  • Coordinate, develop, and evaluate security programs for an organization.

  • Recommend information assurance/security solutions to support customers' requirements.

  • Identify, report, and resolve security violations.

  • Establish and satisfy information assurance and security requirements based upon the analysis of user, policy, regulatory, and resource demands.

  • Support customers at the highest levels in the development and implementation of doctrine and policies.

  • Apply know-how to government and commercial common user systems, as well as to dedicated special purpose systems requiring specialized security features and procedures.

  • Perform analysis, design, and development of security features for system architectures.

  • Analyze and define security requirements for computer systems which may include mainframes, workstations, and personal computers.

  • Design, develop, engineer, and implement solutions that meet security requirements.

  • Provide integration and implementation of the computer system security solution.

  • Analyze general information assurance-related technical problems and provides basic engineering and technical support in solving these problems.

  • Understand the OSI model and TCP/IP networking, and basic knowledge of network and host exploitation techniques.

  • Understand systems configuration and management of firewalls, IDS, servers, and work stations.

  • Collect data and reports results.

  • Handle and escalate security issues or emergency situations appropriately.

  • Provide incident response capabilities to isolate and mitigate threats to maintain confidentiality, integrity, and availability for protected data.

  • Support external investigations.

  • Implement and use Cisco Intrusion Prevention System.

  • Perform vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle.

  • Ensure that all information systems are functional and secure.

#F35ProgramLandingPage

Education

  • BS or BA degree in Computer Science, Information Systems or a related technical discipline.

  • An AS or AA degree and an additional three (3) years of experience can be substituted for a BS or BS degree.

Qualifications

  • Active Secret clearance based upon a SSBI or SSBI-PR completed within the past five years.

  • 4+ years of experience with Windows OS platforms.

  • 2+ years of experience in a business or technical discipline.

  • IAT Level III baseline certification in accordance with DoD 8570.01-M, Information Assurance Workforce Improvement Program, (or achieve within six months of TOA or hiring).

  • Certification in one or more of the following:

  • Microsoft Certified Technology Specialist (MCTS)

  • Core Impact Certified Professional Certification (CICP)

  • Windows Server 2008 Active Directory

  • GIAC Certified Incident Handler (GCIH)

  • GIAC Certified Penetration Tester (GPEN)

  • GIAC Reverse Engineering Malware (GREM)

  • Certified Ethical Hacker (CEH)

  • Certified Hacking Forensics Investigator (CHFI)

  • EC-Council Certified Security Analyst (ECSA)

  • Licensed Penetration Tester (LPT)

  • ArcSight Certified Systems Analyst (ACSA)

  • Qualified Forensics Expert (Q/FE)

#F35ProgramLandingPage

For more than 50 years, General Dynamics Information Technology has served as a trusted provider of information technology, systems engineering, training and professional services to customers across federal, state, and local governments, and in the commercial sector. Over 40,000 GDIT professionals deliver enterprise solutions, manage mission-critical IT programs and provide mission support services worldwide. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Assurance Analyst / Security Specialist

Smartronix

Posted 2 weeks ago

VIEW JOBS 2/6/2020 12:00:00 AM 2020-05-06T00:00 Smartronix, LLC, is an information technology and engineering solutions provider specializing in Cloud Computing, Cyber Security, Health IT, Network Operations, and Mission-Focused Engineering. Smartronix has been leading the cloud computing movement since 2009 and has unparalleled expertise providing advanced technology cloud solutions worldwide to Fortune 1000 Financial, Healthcare, Entertainment and Engineering clients, as well as to Federal, State and Local Governments and the DoD. The successful candidate will provide IA Vulnerability Assessment support for enterprise assets. A strong understanding of DoD STIG/ IAVA and compliance processes are necessary in order to be successful in this position. Assured Compliance Assessment Solution (ACAS) is the primary tool used to facilitate a compliant and secure network. DUTIES: * ISSO for 10 stand-alone classified systems, reporting directly to IA Lead * Assist with all client RMF operations, to include: network Security Categorizations, development of the Cybersecurity Program, and implementation of the Continuous Monitoring Program * Assist with development of the Security Control Traceability Matrix (SCTM) including negotiation with SCA/AO organizations regarding SC tailoring and overlays, System Security Plan (SSP), Security Assessment Plan (SAP), Cybersecurity Plan of Actions and Milestones (POA&M) Risk Assessment Report (RAR), and Continuous Monitoring (ConMon) strategy * Assist with development of various policy documents (SOPs/CONOPs) as required by the client. This may include policies regarding IS Sanitization, Media Security, Password Policy, Business Continuity, Continuity of Operations, Incident Response, Disaster Recover, Security Assessments, and related * Conducting Independent Validation and Verification (IV&V) testing on the client network, utilizing automated ACAS scans, automated and manual DISA STIG reviews, and collating the output into an actionable POA&M * Working with System Administrators/Engineers to conduct remediation and validation operations in accordance with the POA&M * Conducting application security reviews to determine feasibility/suitability of candidate applications for addition to the network * Assist with developing and leading the Inspection Readiness Program with the objective of preparing the client network for any upcoming SAP Inspections * Collaborate with other command security personnel, such as Physical Security, Personnel Security, and Program Security in developing command security program/policy Smartronix provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. Required Skills * Demonstrated ability to work effectively in an ambiguous environment * Strong oral and written communications skills * Strong analytical and problem-solving skills and proactive thinking skills * Strong knowledge of threats and vulnerabilities associated with network security * High-level familiarity with Vulnerability Management tools such as ACAS, SCAP, and SCCM * Basic level familiarity with DoD and other Cyber Security Regulatory Compliance bodies * Ability to drive automation of vulnerability management platform and processes * Understanding of how to classify and prioritize the risk of new vulnerabilities based on the operating environment * A Cyber Security Team team-player contributing to policy development, RMF package accreditation requirements Required Experience * Bachelor's Degree and minimum of 3 years of experience conducting DoD Certification & Accreditation (C&A) support with specific experience with DIACAP, PIT, NIST RMF, DoD RMF, JSIG, or FISMA * Education Substitution: An AS or AA degree and an additional three (3) years of experience can be substituted for a BS or BA degree * Two (2) years' experience in Vulnerability Assessment and/or Risk Analysis * DoDD 8570.01-m certification IAM II (CISSP, CISM, CASP, CAP, GSLC) * CEH, CISA, or OS certifications desired Level of Education 4 Year Degree Travel Requirements Negligible Clearance Level Required 04. Secret US Citizenship Required Yes Category Cyber/IA Position Type Full-Time/Regular Smartronix Patuxent River MD

Information Assurance Security Specialist Journeyman

General Dynamics Information Technology