Listing Description

STR has an exciting opportunity for an ISSE to function as a key contributor for the Cybersecurity Compliance team. In this dynamic position you will interface and collaborate with other Cybersecurity/Information Assurance (IA) professionals (ISSM’s, ISSO’s), Security professionals (CPSO’s, FSO’s), and System Administrators, on NIST compliance and configuration change management.

Responsibilities:

• Review/manage various IA Vulnerability Alerts (IAVA) (i.e., US-CERT, etc.) and overall remediation


• Conduct both vulnerability and compliance scans of Information Systems


• Support the development of Risk Management Framework (RMF) documentation and control validation testing for Authority to Operate (ATO) accreditations


• Support the development of cybersecurity requirements, design, and architecture


• Implement Information Assurance and Information Security protections and requirements in program development and execution environments


• Implement required security controls of networking devices, databases, operating systems, and hardware and software components


• Collaborate with program and engineering disciplines and ensuring cybersecurity solution alternatives


• Assist ISSM’s in monitoring and resolving Plan of Action and Milestones (POA&M) to mitigate system vulnerabilities


• Conduct reviews and technical inspections to identify and mitigate potential security weaknesses and ensure that all security features applied to a system are implemented and functional


• Support completion of Continuous Monitoring requirements IAW RMF and NIST SP800-53 requirements

Requirements:

• Active Top Secret with SAP/SCI eligibility


• 3-5 years of progressive technical (hands-on) experience related to Information Assurance/Cyber Engineering requirements, development, and implementation


• Experience with NIST SP800-53 control implementation and assessment


• Experience with managing and implementing DISA STIGs and benchmarks in a variety of operations systems (Windows, Linux, Ubuntu) benchmarks


• Experience with various IA vulnerability/compliance scanning tools (e.g., NMap, ACAS, Nessus, Security Content Automation Protocol (SCAP)


• Experience with maintaining/managing Security Incident and Event Management (SIEM) and centralized auditing tools (i.e., Splunk, PowerStrux)


• Familiarity with Microsoft Deployment Toolkit (MDT) and DISA Secure Host Baseline Framework


• Support hardening of new builds of Information Systems (IS) and ensure full functionality before deployment


• Familiarity with PowerShell scripting


• Familiarity with the National Industrial Security Operating Manual (NISPOM), DCSA Authorization and Assessment Process Manual (DAAPM), and the Joint Special Access Implementation Guide (JSIG)


• Experience with configuration/certification and auditing/analysis of Windows/Linux operating systems and system virtualization in peer-to-peer, LAN & WAN networks


• DoD 8570 IAM Level III certification (CISA, CISM, CISSP, etc.) or the ability to obtain within 6 months upon being hired


• Ability to organize and prioritize numerous customer requests in a fast paced, deadline driven environment