IS Security Engineering Lead (Westfields)

At&T Oakton , VA 22124

Posted 2 months ago

Job Description: responsible for the design, development, implementation, and/or integration of the NRO IA architecture, system or system component. They ensure that IA related IS will be functional and secure. They provide Information Technology security engineering, integration services, technical assessments, and solutions. This includes analyzing the IA/Information Systems environment helping customers understand information security needs, defining system security requirements, designing system security architectures, developing and implementing detailed security designs and measures to safeguard information, and assessing information protection effectiveness.

  • Identifies information protection needs for the NRO Information Systems (IS).

  • Defines NRO IS security requirements in accordance with applicable IA requirements.

  • Provides system related input on IA security requirements to be included in statements of work and other appropriate procurement documents.

  • Designs security architectures for use within the NRO IS.

  • Designs and develops IA or IA-enabled products for use within a NRO IS.

  • Integrates and/or implements Cross Domain Solutions (CDS) for use within a NRO IS.

  • Develops and implements security designs for new or existing network system(s); ensures that the design of hardware, operating systems, and software applications adequately address IA security requirements for the NRO IS.

  • Designs, develops, and implements network security measures that provide confidentiality, integrity, availability, authentication, and non-repudiation.

  • Designs, develops, and implements specific IA countermeasures for the NRO IS.

  • Develops interface specifications for the NRO IS.

  • Develops approaches to mitigate NRO IS vulnerabilities and recommend changes to system or system components as needed.

  • Ensures system(s) designs support incorporation of DoD, IC, and NRO-directed IA vulnerability solutions, such as Information Assurance Vulnerability Alerts (IAVAs)/Intelligence Community Vulnerability Alerts (ICVAs).

  • Develops IA architectures and designs for designs for National Security Systems with security categorizations of confidentiality, low to moderate; integrity, low to moderate; and availability, low to moderate.

  • Develops IA architectures and designs for systems processing Sensitive Compartmented Information (SCI) operating in dedicated, system high or compartmented mode.

  • Assesses threats to and vulnerabilities of the NRO IS.

  • Identifies, assesses, and recommends IA or IA-enabled products used within NRO IS; ensures products are in compliance with NRO evaluation and validation requirements.

  • Ensures that the implementation of security designs properly mitigate identified threats.

  • Assesses the effectiveness of information protection measures used by the NRO IS.

  • Evaluates security architectures and designs and provides input as to the adequacy of security designs and architectures proposed or provided in response to requirements contained in acquisition documents.

  • Ensures security deficiencies identified during security/certification testing have been mitigated, corrected, or a risk acceptance has been obtained by the appropriate Authorizing Official or Designated Authorization Official (DAO).

  • Provides input to IA C&A process activities and documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training)

  • Participates in an Information Systems (IS) risk assessment during the C&A process and design security countermeasures to mitigate identified risks.

  • Provides engineering support to security/certification test and evaluation activities.

  • Documents system security design features and provides input to implementation plans and standard operating procedures.

  • Recognizes a possible security violation and take appropriate action to report the incident.

  • Implements and/or integrates security measures for use in network system(s) and ensure that system designs incorporate security configuration guidelines.

  • Ensures the implementation of NRO IA policies into system architectures.

  • Ensures the implementation of subordinate NRO IA policies is integrated into the NRO IS system architecture.

  • Oversee and provide technical guidance to IASAE Level I and II personnel

Obtains and maintains IA certification appropriate to the position.

Required Skills, Experience, and Education: Candidate must have 16 years of experience that can be a combination of work history and education. This equates to a Doctorate and 8 years of experience OR Masters and 10 years, Bachelors and 12 years, Associates and 14 years or HS and 16 years. Must meet DoD 8570 IAM Level 3 certification requirements AND be willing to obtain CISSP-ISSAP or CISSP-ISSEP within 6 months.

Required Clearance: Active TS/SCI, with CI Poly.

Job ID 1850729 Date posted 12/06/2018


See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Capacity Engineering Lead (Westfields)

At&T

Posted 2 months ago

VIEW JOBS 10/28/2018 12:00:00 AM 2019-01-26T00:00 Installs, configures, and supports an organization's local area network (LAN), wide area network (WAN), NRO's Internet Network, Intranet and Internet and other data communications systems or a segment of a network system. Maintains network hardware and software. Monitors network to ensure network availability to all system users and perform necessary maintenance to support network availability. May supervise other network support and client server specialists and plan, coordinate, and implement network security measures. Oversees network control centers. Provides support to projects that involve networks. Evaluates new network technologies and makes recommendations to project managers regarding the integration of these technologies into the existing network. Plans new network configurations and integration into existing networks to maintain optimal performance. Ensures that plans for hardware and communications are adequate. Develops and implements methodologies for analysis, installation and support of voice communications systems. Provides support in the translation of business requirements into telecommunications (e.g., LAN, MAN, WAN, Voice and Video) requirements, designs and orders. * Diagnose hardware and software problems, and replace defective components. Perform data backups and disaster recovery operations. * Maintain and administer computer networks and related computing environments, including computer hardware, systems software, applications software, and all configurations. * Monitor the performance of computer systems and networks * Perform routine network startup and shutdown procedures, and maintain control records. * Configure, and test hardware, networking software and operating system software. * Prepare technical proposals for presentation to the NRO's engineering review boards for adding new technologies to the network. * Perform a full range of upgrades in accordance with existing network architecture. * Review user requests for upgrades or additions to the network to assess impact on network performance and provide advice and guidance on the most practical technical approach to meeting user requirements. * Perform long term O&M activities to include tier 3 troubleshooting and problem resolution. * Utilize complex network analysis tools to identify and correct problems in the network. * Prepare troubleshooting procedures for restoring the network to optimal performance levels. * Provide fault management for the network and supports performance management functions. * Respond, isolate, and resolve network troubles. Monitor alarms and alerts to identify network elements causing network degradation or failure. * Maintain logs and records associated with reported problems or situations. * Execute reporting functions and data input associated with network management. * Monitor security posture of the network, report suspected violations to designated authority. * Coordinate with configuration management and implementation teams. * Perform operator-level maintenance on components for network management systems * Analyze network characteristics (e.g., traffic, connect time, transmission speeds, packet sizes, and throughput); recommend procurement, removals, and modifications to network components. * Optimize network topologies and site configurations. Plan installations, transitions, and cutovers of network components and capabilities. * Coordinate requirements with users and suppliers. * Organize and direct network installations on site surveys. * Assess and document current site network configuration and user requirements. * Maintain operating systems, communications software, data base packages, compilers, assemblers, and utility programs. * Apply software, hardware, and standards information technology skills in the analysis, specification, development, integration, and acquisition of open systems for Information Management (IM) applications. * Ensure these systems and applications are compliant with standards for open systems architectures, reference models, and profiles of standards - such as the IEEE Open Systems Environment (OSE) reference model - as they apply to the implementation and specification of IM solutions on the application platform, across the application program interface (API), and the external environment/software application. * Evaluate and recommend COTS applications and methodologies that can be acquired to provide interoperable, portable, and scalable information technology solutions. Required Skills, Experience, and Education: Candidate must have 16 years of experience that can be a combination of work history and education. This equates to a Doctorate and 8 years of experience OR Masters and 10 years, Bachelors and 12 years, Associates and 14 years or HS and 16 years. Must meet DoD 8570 certification requirements for IAM Level 3 Required Clearance: Active TS/SCI, with CI Poly Job ID 1850996 Date posted 12/07/2018 At&T Oakton VA

IS Security Engineering Lead (Westfields)

At&T