THOR Solutions, LLC
Information System Security Specialist 3
THOR Solutions, LLC, Virginia Beach, Virginia, us, 23450
THOR Solutions
is seeking an
Information System Security Specialist
to provide engineering support for Cyber Situational Awareness (SA), Cyber Command and Control (C2), Mission Assurance, and Homeland Defense in
Virginia Beach, VA . This includes conducting Agile software engineering in a Development, Security, and Operations (DevSecOps) environment, performing Cloud architectural design, operation, and administration functions, and cyber security and Risk Management Framework (RMF) support. Also included are rapid design, development, test, deployment, maintenance and operation of specific software and hardware capabilities to meet current Cyber Defensive needs.
Typical Responsibilities:
Provide input as an RMF Expert for program documentation and policy.Provide reporting on network and host health in regard to ePO and ESS Product deployment and compliance.Manage network wide Software Whitelisting.Provide reporting on Data Loss Prevention violations and risks.Create, test and implement ePO policy and tasks.RMF processing.Manage ePO server and Microsoft SQL Database.Perform and implement STIG Checks for ESS related systems.Manage ePO Dashboards and queries for ISSM and Stakeholder reporting.Provide general IT industry advice for Network Policy and Procedures.Assist in the management of XACTA (Risk Management Framework) packages.
Location:
Full time onsite at Dam Neck Naval Base in Virginia Beach, VA.
Typical Physical Activity:
Primarily desk/computer work in an office environment. May involve: repetitive motion.
US Citizenship Required:
Due to the requirements of the federal contract that this position supports, U.S. citizenship is required. Citizenship will be confirmed via I-9/E-Verify at the start of employment.
Existing Top Security Clearance Required:
This position requires a DoD Top Secret security clearance. A qualified candidate must already possess an active Top Secret security clearance with eligibility to gain SCI.
Typical Knowledge, Skills, and Abilities:
One of the following combinations:
Bachelors degree in a relevant discipline plus five (5) years of relevant experience.Masters degree in a relevant discipline plus three (3) years of relevant experience.High school diploma/GED equivalent plus nine (9) years of relevant experience.
Relevant experience includes:
Use, installed, and configured ESS (Endpoint Security Solutions).Minimum of two (2) years of RMF (Risk Management Framework) direct hands on experience.Creating new ePO point product policies for an enterprise environment.Creating and troubleshooting Firewall rules for a variety of operating systems and environments.Managing and tuning an application whitelist, specifically experience utilizing Solidcore or a similar File Integrity Management systems.Troubleshooting endpoint product deployment and removal, as well as generalized software deployment practices.Generalized experience with incident management (Chain of custody, reporting practices, cyber tabletop exercises).Managing DLP incidents and reporting, as well as DLP policies in ePO.Utilizing a Security Event Manager to detect potential network threats, in combination with utilizing ePO / Trellix client logs.Server Administration for ePO server (Local Security Policies, Password Management, Access Control, and auditing).Managing SQL Databases (Able to create and perform SQL Queries, STIGing, Account Management, Audit management).
Must be IAT Level II certified.
To achieve this, must hold ONE of the following:
CompTIA Security+ CE (Sec+)GIAC Security Essentials (GSEC)ISC2 Systems Security Certified Practitioner (SSCP)CCNA-Security
Must meet requirements for Cyber Workforce (CWF) 461 Systems Security Analyst at the Intermediate level.
Per DoDD 8140.01, or successor, this requires ONE of the following:
Associate Degree from accredited university in a relevant discipline such as Computer Engineering, Computer Programming, Computer Science, Electrical Engineering, or similar.CNSSI 4011-Information Systems Security (INFOSEC) Professionals/4012-Senior Systems ManagersCYBR2400 Cyber Operator Training CourseOne of the following Navy Enlisted Classifications:
NEC 741A Information System Security ManagerNEC 742A Network Security Vulnerability TechnicianNEC H08A Advanced Network Analyst
CompTIA Advanced Security Practitioner (CASP+)CompTIA Security+ CE (Sec+)ISC2 Certified in Governance Risk and Compliance (CGRC)ISC2 Systems Security Certified Practitioner (SSCP)
Proof or a copy of any certifications used to meet these requirements will be required before hire.Proficient with common productivity software.Strong communications skills.
Benefit Offerings:
Along with competitive pay, THOR offers a comprehensive benefits package including:
Paid Time OffPaid Holidays401(k) with employer matchMedical Insurance (3 plan options)Dental Insurance (2 plan options)Vision Insurance PlanHealthcare and Dependent Care Flexible Spending AccountsCommuter BenefitsBasic Life, AD&D, short-term and long-term disability insuranceSupplemental life insurancePet BenefitsLegal Resources and ID Theft benefitsEmployee Assistant and Work-Life ProgramVoluntary Leave Transfer ProgramTuition ReimbursementEmployee Referral Program
THOR is proud to be an Affirmative Action/Equal Opportunity Employer.
THOR considers all qualified applicants for employment without regard to age, race, ethnicity, color, religion, sex, sexual orientation, gender identity or expression, national origin, genetics, disability status, or status as a protected veteran. THOR complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment.
Equal Employment Opportunity (EEO) is the law.#J-18808-Ljbffr
is seeking an
Information System Security Specialist
to provide engineering support for Cyber Situational Awareness (SA), Cyber Command and Control (C2), Mission Assurance, and Homeland Defense in
Virginia Beach, VA . This includes conducting Agile software engineering in a Development, Security, and Operations (DevSecOps) environment, performing Cloud architectural design, operation, and administration functions, and cyber security and Risk Management Framework (RMF) support. Also included are rapid design, development, test, deployment, maintenance and operation of specific software and hardware capabilities to meet current Cyber Defensive needs.
Typical Responsibilities:
Provide input as an RMF Expert for program documentation and policy.Provide reporting on network and host health in regard to ePO and ESS Product deployment and compliance.Manage network wide Software Whitelisting.Provide reporting on Data Loss Prevention violations and risks.Create, test and implement ePO policy and tasks.RMF processing.Manage ePO server and Microsoft SQL Database.Perform and implement STIG Checks for ESS related systems.Manage ePO Dashboards and queries for ISSM and Stakeholder reporting.Provide general IT industry advice for Network Policy and Procedures.Assist in the management of XACTA (Risk Management Framework) packages.
Location:
Full time onsite at Dam Neck Naval Base in Virginia Beach, VA.
Typical Physical Activity:
Primarily desk/computer work in an office environment. May involve: repetitive motion.
US Citizenship Required:
Due to the requirements of the federal contract that this position supports, U.S. citizenship is required. Citizenship will be confirmed via I-9/E-Verify at the start of employment.
Existing Top Security Clearance Required:
This position requires a DoD Top Secret security clearance. A qualified candidate must already possess an active Top Secret security clearance with eligibility to gain SCI.
Typical Knowledge, Skills, and Abilities:
One of the following combinations:
Bachelors degree in a relevant discipline plus five (5) years of relevant experience.Masters degree in a relevant discipline plus three (3) years of relevant experience.High school diploma/GED equivalent plus nine (9) years of relevant experience.
Relevant experience includes:
Use, installed, and configured ESS (Endpoint Security Solutions).Minimum of two (2) years of RMF (Risk Management Framework) direct hands on experience.Creating new ePO point product policies for an enterprise environment.Creating and troubleshooting Firewall rules for a variety of operating systems and environments.Managing and tuning an application whitelist, specifically experience utilizing Solidcore or a similar File Integrity Management systems.Troubleshooting endpoint product deployment and removal, as well as generalized software deployment practices.Generalized experience with incident management (Chain of custody, reporting practices, cyber tabletop exercises).Managing DLP incidents and reporting, as well as DLP policies in ePO.Utilizing a Security Event Manager to detect potential network threats, in combination with utilizing ePO / Trellix client logs.Server Administration for ePO server (Local Security Policies, Password Management, Access Control, and auditing).Managing SQL Databases (Able to create and perform SQL Queries, STIGing, Account Management, Audit management).
Must be IAT Level II certified.
To achieve this, must hold ONE of the following:
CompTIA Security+ CE (Sec+)GIAC Security Essentials (GSEC)ISC2 Systems Security Certified Practitioner (SSCP)CCNA-Security
Must meet requirements for Cyber Workforce (CWF) 461 Systems Security Analyst at the Intermediate level.
Per DoDD 8140.01, or successor, this requires ONE of the following:
Associate Degree from accredited university in a relevant discipline such as Computer Engineering, Computer Programming, Computer Science, Electrical Engineering, or similar.CNSSI 4011-Information Systems Security (INFOSEC) Professionals/4012-Senior Systems ManagersCYBR2400 Cyber Operator Training CourseOne of the following Navy Enlisted Classifications:
NEC 741A Information System Security ManagerNEC 742A Network Security Vulnerability TechnicianNEC H08A Advanced Network Analyst
CompTIA Advanced Security Practitioner (CASP+)CompTIA Security+ CE (Sec+)ISC2 Certified in Governance Risk and Compliance (CGRC)ISC2 Systems Security Certified Practitioner (SSCP)
Proof or a copy of any certifications used to meet these requirements will be required before hire.Proficient with common productivity software.Strong communications skills.
Benefit Offerings:
Along with competitive pay, THOR offers a comprehensive benefits package including:
Paid Time OffPaid Holidays401(k) with employer matchMedical Insurance (3 plan options)Dental Insurance (2 plan options)Vision Insurance PlanHealthcare and Dependent Care Flexible Spending AccountsCommuter BenefitsBasic Life, AD&D, short-term and long-term disability insuranceSupplemental life insurancePet BenefitsLegal Resources and ID Theft benefitsEmployee Assistant and Work-Life ProgramVoluntary Leave Transfer ProgramTuition ReimbursementEmployee Referral Program
THOR is proud to be an Affirmative Action/Equal Opportunity Employer.
THOR considers all qualified applicants for employment without regard to age, race, ethnicity, color, religion, sex, sexual orientation, gender identity or expression, national origin, genetics, disability status, or status as a protected veteran. THOR complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment.
Equal Employment Opportunity (EEO) is the law.#J-18808-Ljbffr