DecisionPoint Corporation
Information Assurance Engineer
DecisionPoint Corporation, Reston, Virginia, United States, 22090
Information Assurance Engineer
ID: 2024-2713 Job Locations:
US
Category:
Information Technology
Type:
Regular Full-Time
Overview
DecisionPoint prides itself on delivering efficient, effective solutions across a wide range of industries. Come join our team as an
Information Assurance Engineer
on the UNITED STATES TRANSPORTATION COMMAND MILITARY SURFACE DEPLOYMENT AND DISTRIBUTION COMMAND (SDDC) Transportation Financial Management System (TFMS) contract! This position is 100% remote work and requires a Secret clearance. Duties & Responsibilities
Provide program specific input for the development of new application security documentation and the updating of existing application security documentation. Sustain all TFMS servers, applications, and databases in all operating environments in compliance with the Defense Information Agency (DISA) STIGs. Provide updates to existing certification and accreditation documentation, such as artifacts, test result, major and minor modification documents, network diagrams, ports and protocol matrix, topology diagrams, vulnerability scans, application certification package created during release cycle, and other existing documentation. Remediate the applicable DoD Security Authorization Decision conditions (conditional Authority to Operate (c/ATO)). Provide basic Virtual Machines (VMs), Virtual desktop (VDI), or other access to the required non-Production environments. Maintain all source code and design artifacts. Provide FIAR security audit artifacts. Sustain accurate Risk Management Framework (RMF) documentation. Complete and validate STIG/SRG checklists for RMF, quarterly. Provide RMF ATO Artifacts, RMF Financial/Privacy Overlay. Support data cleansing activities to ensure test and development data are not from production and do not contain sensitive information. Perform code scans of staging, production, and other environments, as needed. Sustain the scanning tool and run scans, mitigate findings, and confirm clean scans prior to subsequent code releases. Track and report on all security issues uncovered during the software lifecycle. Complete monthly application STIG status reporting and POA&M updates. Ensure associated risks are evaluated, documented, and reported along with risk mitigation and recommend course of action. Qualifications
Active Secret Clearance required. Associates or Bachelors with up to 5 years related work experience. Experience with IA tools such as: Nessus, Splunk, and Fortify SCA. Information Assurance Management (IAM) Level I certification such as Security+.
#J-18808-Ljbffr
ID: 2024-2713 Job Locations:
US
Category:
Information Technology
Type:
Regular Full-Time
Overview
DecisionPoint prides itself on delivering efficient, effective solutions across a wide range of industries. Come join our team as an
Information Assurance Engineer
on the UNITED STATES TRANSPORTATION COMMAND MILITARY SURFACE DEPLOYMENT AND DISTRIBUTION COMMAND (SDDC) Transportation Financial Management System (TFMS) contract! This position is 100% remote work and requires a Secret clearance. Duties & Responsibilities
Provide program specific input for the development of new application security documentation and the updating of existing application security documentation. Sustain all TFMS servers, applications, and databases in all operating environments in compliance with the Defense Information Agency (DISA) STIGs. Provide updates to existing certification and accreditation documentation, such as artifacts, test result, major and minor modification documents, network diagrams, ports and protocol matrix, topology diagrams, vulnerability scans, application certification package created during release cycle, and other existing documentation. Remediate the applicable DoD Security Authorization Decision conditions (conditional Authority to Operate (c/ATO)). Provide basic Virtual Machines (VMs), Virtual desktop (VDI), or other access to the required non-Production environments. Maintain all source code and design artifacts. Provide FIAR security audit artifacts. Sustain accurate Risk Management Framework (RMF) documentation. Complete and validate STIG/SRG checklists for RMF, quarterly. Provide RMF ATO Artifacts, RMF Financial/Privacy Overlay. Support data cleansing activities to ensure test and development data are not from production and do not contain sensitive information. Perform code scans of staging, production, and other environments, as needed. Sustain the scanning tool and run scans, mitigate findings, and confirm clean scans prior to subsequent code releases. Track and report on all security issues uncovered during the software lifecycle. Complete monthly application STIG status reporting and POA&M updates. Ensure associated risks are evaluated, documented, and reported along with risk mitigation and recommend course of action. Qualifications
Active Secret Clearance required. Associates or Bachelors with up to 5 years related work experience. Experience with IA tools such as: Nessus, Splunk, and Fortify SCA. Information Assurance Management (IAM) Level I certification such as Security+.
#J-18808-Ljbffr