5+ years experience in security management for computing environments, including cloud.
Proficient in managing security accreditation projects under ICD-503 Rev. 4.
Expert knowledge of information systems security policies and risk management frameworks.
5+ years creating and maintaining system security plans and related documentation.
Responsibilities
Maintain the security posture of various computing environments.
Manage workflows for security accreditation projects throughout their lifecycle.
Engage with ISSMs to ensure ongoing security compliance.
Produce and update system security plans and other security documentation.
Full Job Description
Information System Security Engineer
Minimum Qualifications
Five or more (5+) years' experience maintaining security posture of Sponsor compute environments, including cloud environments.
Experience managing the full lifecycle of, and workflows for, security accreditation projects under the ICD-503 Rev. 4 framework.
Extensive knowledge of Sponsor's information system security policies, and risk management framework.
Five or more (5+) years' experience creating and maintaining system security plans (SSP) and other security relevant documentation for computer systems and applications.
Desired Qualifications
Demonstrated ability to effective engage with Sponsor Information System Security Managers (ISSMs) to ensure security compliance of systems.
Experience obtaining IC reciprocity for at least one security accreditation project.