Armada
Information System Security Engineer II (ISSE)
Armada, Phila, Pennsylvania, United States, 19117
Type:
Full Time Location:
NSWC Philadelphia, PA Overtime Exempt:
Yes Reports To:
ARMADA HQ Security Clearance Required:
Active Secret *****CONTINGENT UPON AWARDING OF GOVERNMENT CONTRACT***** Duties & Responsibilities: The Information System Security Engineer (ISSE) shall assist with the developing, maintaining, and tracking Risk Management Framework (RMF) system security plans which include System Categorization Forms, Platform Information Technology (PIT) Determination Checklists, Assess Only (AO) Determination Checklists, Implementation Plans, System Level Continuous Monitoring (SLCM) Strategies, System Level Policies, Hardware Lists, Software List, System Diagrams, Privacy Impact Assessments (PIA), and Plans of Action and Milestones (POA&M). The Information System Security Engineer (ISSE) shall execute the RMF process in support of obtaining and maintaining Interim Authority to Test (IATT), AO approval, Authorization to Operate (ATO), and Denial of Authorization to Operate (DATO). The ISSE shall identify and tailor IT and CS security control baselines based on RMF guidelines and categorization of the RMF boundary. Perform Ports, Protocols, and Services Management (PPSM). Perform IT and CS vulnerability-level risk assessments. Execute security control testing as required by a risk assessment or annual security review (ASR). The ISSE mitigate and remediate IT and CS system level vulnerabilities for all assets withing the boundary per STIG requirements. The ISSE shall develop and maintain Plans of Actions and Milestones (POA&M) in Enterprise Mission Assurance Support Service (eMASS). The ISSE shall develop and maintain system level IT and CS policies and procedures for respective RMF boundaries and/or guidance provided by the command ISSMs. Implement and assess STIG and SRGs. Perform and develop vulnerability assessments with automated tools such as Assured Compliance Assessment Solution (ACAS), Security Content Automation Protocol (SCAP) Compliance Check (SCC) and Evaluate STIG. Deploy security updates to Information System components. Perform routine audits of IT system hardware and software components. Maintain inventory of Information System components. Participate in IT change control and configuration management processes. Upload vulnerability data in Vulnerability Remediation Asset Manager (VRAM). The ISSE shall image or re-image assets that are part of the assigned RMF boundary. Install software and troubleshoot software issues as necessary to support compliance of the RMF boundaries' assets. The ISSE shall assist with removal of SSD, HDD or other critical components of assets before destruction and removal from the RMF boundary. Provide cybersecurity patching of assets in times of DoD and DoN TASKORDs, FRAGORDs, or even designated by Command ISSM, ACIO, and/or Code 104 management. The ISSE shall support configuration change documentation and control processes and maintaining DOD STIG Compliance. The ISSE shall support cyber compliance of assets that are part of an enterprise IT network to include Windows server and CISCO networking hardware. This includes assessing vulnerabilities, patching and meeting requirements of the STIG for the hardware. The ISSE shall report compliance issues of network hardware to management as not cause an operational of the network. Other Duties as assigned.
Knowledge, Skills, and Abilities (KSAs): Experienced in capturing and refining information security operational and security requirements, and ensuring those requirements are properly addressed through purposeful architecting, design, development, and configuration; and implementing security controls, configuration changes, software/hardware updates/patches, vulnerability scanning, and securing configurations.
Minimum/General Experience: Three (3) years professional experience
Required Certifications: DOD IAT-II certification required
Minimum Education: Bachelor's degree in computer science, or information technology. Or an equivalent technical degree from an accredited college or university.
Disclaimer: The above information has been designed to indicate the general nature and level of work to be performed. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of the contractor assigned to this position.
Applying:
If you feel you have the knowledge, skills and abilities for this position visit our careers page at www.armadausa.com. Special Notes:
Relocation is not available for these jobs. ARMADA provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. ARMADA complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.
Full Time Location:
NSWC Philadelphia, PA Overtime Exempt:
Yes Reports To:
ARMADA HQ Security Clearance Required:
Active Secret *****CONTINGENT UPON AWARDING OF GOVERNMENT CONTRACT***** Duties & Responsibilities: The Information System Security Engineer (ISSE) shall assist with the developing, maintaining, and tracking Risk Management Framework (RMF) system security plans which include System Categorization Forms, Platform Information Technology (PIT) Determination Checklists, Assess Only (AO) Determination Checklists, Implementation Plans, System Level Continuous Monitoring (SLCM) Strategies, System Level Policies, Hardware Lists, Software List, System Diagrams, Privacy Impact Assessments (PIA), and Plans of Action and Milestones (POA&M). The Information System Security Engineer (ISSE) shall execute the RMF process in support of obtaining and maintaining Interim Authority to Test (IATT), AO approval, Authorization to Operate (ATO), and Denial of Authorization to Operate (DATO). The ISSE shall identify and tailor IT and CS security control baselines based on RMF guidelines and categorization of the RMF boundary. Perform Ports, Protocols, and Services Management (PPSM). Perform IT and CS vulnerability-level risk assessments. Execute security control testing as required by a risk assessment or annual security review (ASR). The ISSE mitigate and remediate IT and CS system level vulnerabilities for all assets withing the boundary per STIG requirements. The ISSE shall develop and maintain Plans of Actions and Milestones (POA&M) in Enterprise Mission Assurance Support Service (eMASS). The ISSE shall develop and maintain system level IT and CS policies and procedures for respective RMF boundaries and/or guidance provided by the command ISSMs. Implement and assess STIG and SRGs. Perform and develop vulnerability assessments with automated tools such as Assured Compliance Assessment Solution (ACAS), Security Content Automation Protocol (SCAP) Compliance Check (SCC) and Evaluate STIG. Deploy security updates to Information System components. Perform routine audits of IT system hardware and software components. Maintain inventory of Information System components. Participate in IT change control and configuration management processes. Upload vulnerability data in Vulnerability Remediation Asset Manager (VRAM). The ISSE shall image or re-image assets that are part of the assigned RMF boundary. Install software and troubleshoot software issues as necessary to support compliance of the RMF boundaries' assets. The ISSE shall assist with removal of SSD, HDD or other critical components of assets before destruction and removal from the RMF boundary. Provide cybersecurity patching of assets in times of DoD and DoN TASKORDs, FRAGORDs, or even designated by Command ISSM, ACIO, and/or Code 104 management. The ISSE shall support configuration change documentation and control processes and maintaining DOD STIG Compliance. The ISSE shall support cyber compliance of assets that are part of an enterprise IT network to include Windows server and CISCO networking hardware. This includes assessing vulnerabilities, patching and meeting requirements of the STIG for the hardware. The ISSE shall report compliance issues of network hardware to management as not cause an operational of the network. Other Duties as assigned.
Knowledge, Skills, and Abilities (KSAs): Experienced in capturing and refining information security operational and security requirements, and ensuring those requirements are properly addressed through purposeful architecting, design, development, and configuration; and implementing security controls, configuration changes, software/hardware updates/patches, vulnerability scanning, and securing configurations.
Minimum/General Experience: Three (3) years professional experience
Required Certifications: DOD IAT-II certification required
Minimum Education: Bachelor's degree in computer science, or information technology. Or an equivalent technical degree from an accredited college or university.
Disclaimer: The above information has been designed to indicate the general nature and level of work to be performed. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of the contractor assigned to this position.
Applying:
If you feel you have the knowledge, skills and abilities for this position visit our careers page at www.armadausa.com. Special Notes:
Relocation is not available for these jobs. ARMADA provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. ARMADA complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.