Cask is a woman-owned small business and is certified by the State of California as a Micro Business and by the SBA as an Economically Disadvantaged Woman-Owned Small Business (EDWOSB) and Small Disadvantaged Business (SDB).
Cask was founded in 2004 by a group of professionals who saw the need to help clients use and unlock the value of technology in more efficient, cost effective ways. Cask delivers business and technology advisory and consulting services to help our customers achieve success.
The Information System SecurityEngineer will provide cybersecurity and information system security support to the GCSS-MC Logistics Information Systems (LIS) Program Management Office in Albany, GA.
*If you are an incumbent, please notate accordingly in your cover letter/resume.*
Provide information system securityengineering support for all assigned GCSS-MC Logistics Information Systems (LIS) and to the LIS product office as part of integrated product teams
Provide technical knowledge and expertise to support engineering change proposals and change requests by reviewing proposed modifications to system baselines, evaluating cybersecurity impact to design, and writing necessary changes to the product specification to support new capabilities
Develop and maintain Department of Defense (DoD) Instruction 8510.01 compliant risk management framework (RMF) authorization packages for all assigned systems and applications utilizing the Marine Corps Certification and Accreditation Support Tool (MCCAST)
Develop the security assessment plans for all assigned systems to include detailing how to test and validate the applicable RMF controls and delivering the final test plan a specified number of days prior to the scheduled self-assessment test event
Develop, update, and maintain assigned systems’ and applications’ plans of actions and milestones
Provide support to the preparation and evaluation of technical documents, papers, studies, analysis, and briefings in support of acquisition of major automated information systems
Minimum of 10 years of experience in information technology, at least 7 of which must have been in the previous 10 years and in direct support of DoD Information Assurance / Cybersecurity
Demonstrated experience in providing senior-level management and direction on client information system securityengineering
Demonstrated experience developing and implementing cybersecurity standards, procedures, and information assurance engineering requirements based an analysis of user, policy, regulatory, and resource demands and implementing them into automated information system designs or operational systems
Demonstrated proficiency in analyzing complex cybersecurity-related technical problems and providing engineering and technical support for resolution
Demonstrated experience in leading vulnerability and risk analyses of computer systems and applications during the system development lifecycle
Demonstrated ability to work as part of a large and diverse team
Valid and Current Certified Information Systems Security Professional (CISSP) or CompTIA Advanced Security Practitioner (CASP)) or Certified Secure Software Lifecycle Professional (CSSLP)
Must meet requirements of DoD 8570.01-M Information Assurance System Engineer (IASE) Level II/ SECNAV-M 5239.2 Advanced/Master Proficiency Level
High School Diploma or Equivalent