In this role, you will performs incident investigative analysis support and compiles technical artifacts and evidential material using security content monitoring tools, intrusion detection tools, and security information & event management tools.
Responsible for providing information security support and communications support and ensure that system architectures are secure and capable of passing security audits and information system security assessments relative to information system security policies and procedures.
Provide technical expertise in lab-based and analytical R&D efforts to enhance security and inter-operability and to assist the Army with designing, developing, configuring, testing, and evaluating the security of GOTS products and CSfC solutions.
Conduct artifact audits by gathering, examining, and documenting appropriate and sufficient evidence of project artifacts to ensure compliance with established project management and system development life cycle policies and procedures.
Familiarity with NASA IT Security CISSP and/or Security + (at a minimum, exam passed) Working knowledge of Apple OSX, Solaris 11 and Linux. Working knowledge of systems security tools, including Nessus, Foundstone, BigFix, ForeScout.
The Information Assurance Engineer will be responsible for gathering information necessary to validate system security accreditations and to validate functioning security measures internal to these information systems. The IA engineer will define, create and maintain the required C&A documentation for each information system in accordance with requirements. The IA engineer will also assess the impacts of system modifications and technological advances on program project associated information systems.
The IA Engineer reviews weekly security posture of computer system configurations, identify deficiencies, and identify actions needed to correct the deficiencies. This includes regular weekly patches, as well as as-needed efforts.
Applies system security engineering expertise in one or more of the following to : system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off-the-shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning.
This individual is responsible for the design, implementation and/or integration of a DoD IA architecture, system, or system component for use within Computing Environment (CE), Network Environments (NE), and enclave environments.
The Information Systems Security Engineer shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies.
In this role, you will perform or review technical security assessments of computing environments to identify points of vulnerability or non-compliance with established Information Assurance (IA) standards and regulations and recommend mitigation strategies.