Edgewater Federal Solutions
Information Systems Security Engineer
Edgewater Federal Solutions, Pocatello, Idaho, United States, 83204
Overview:
Edgewater Federal Solutions is currently seeking a Information Systems Security Engineer (Senior) to provide support for our Federal Client located in Pocatello, Idaho.Responsibilities:Responsible for the secure design, analysis, and test of information security systems and productsServe as the subject matter expert (SME) for data center system environments and performs standard project tasks to analyze IT security compliance requirements, translate those into security designs, implements these designs, and tests effectivenessServer as a SME with working knowledge of information security products including firewalls, monitoring and intrusion detection systems, anti-virus systems, vulnerability testing, and security analysis toolsCreate and update security test plans for detecting and mitigating risk to information systems. Engineer and perform tests and test plans to satisfy audits. Provide solutions for mitigating information systems findings or risksEvaluate, improve, and maintain the information security throughout the infrastructure.Monitor and correct information system issues and create recovery processes for failures and vulnerabilities and track vulnerabilities until they are resolved or mitigated to the satisfaction of the government Accrediting Authority (AO)Proactively ensure the highest levels of systems and infrastructure availabilityMonitor and test application performance for potential bottlenecks, identify possible solutions, and work with engineers to implement those fixesMaintain security, compliance, and reduce risk strategies for information systems. Works with other security entities for certification and accreditation and authority to operate for new platforms or services to include cloud services and platformsWrite and maintain custom scripts to increase system efficiency and lower the human intervention time on any tasks, such as automated scanning of systems and auditing, and data spill clean upsParticipate in the design of information and operational support systemsConfigure scanning tools to function without impacting the users or the systemConfigure and support TLS and PKI encrypted connectionsProvide 4th level support and liaise with vendors and other IT personnel for problem resolutionEnsure technical documentation exists for all systems and is kept up to date to include system security plans, business impact analyses, continuity of operations plans, mitigations, authorized software lists, authorized hardware lists, and elevated user access list and rolesEnsure technical documentation exists for all systems and is kept up to date to include inventory and patch levels of all systems to include hostnames, property numbers, IP addresses, enclave, number of cores, number of processors, admin passwords, certificates, and service accounts on a monthly intervalProvide real time alerts and dashboard information on security performance and availabilityDocument system configurations to include passwords, access controls, version number, and revision numbers, patch levels, and inventory to include hostnames, TCP/IP addresses, number of processors, and number of cores, memory, and license keysContinually transition knowledge to the government staff through training and assistance on how to use the technology using industry best practicesWrite Engineering Documents as requested this includes the Business Impact Analysis (BIA) and the Information System Contingency Plan (ISCP)Interface with other security teams within the FBI and its partners and consult to ensure deliverables meet all security requirementsImplement and monitor security measures for the protection of computer systems, networks, and informationIdentify and define system security requirements and design computer security architecture and develop detailed security designsPrepare and document standard operating procedures and protocolsConfigure and troubleshoot security infrastructure devicesDevelop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasksReport any security issues or incidents to management and provide a detailed explanation in both oral and written formProduce comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancementQualifications:
Ten (10) years of relevant cybersecurity experienceU.S. Citizenship is required per contract to obtain and maintain a Top Secret clearance with SCI-CI poly.Active Top-Secret Clearance with SCI-CI Poly eligibilityCertified Information Systems Security Professional (CISSP)Security assessment, testing, and operationsPreferred Qualification :Bachelors Degree?About Us:Edgewater Federal Solutions is a privately held government contracting firm located in Frederick, MD.? The company was founded in 2002 with the vision of being highly recognized and admired for supporting customer missions through employee empowerment, exceptional services and timely delivery. Edgewater Federal Solutions is ISO 9001, 20000-1, 270001 certified, appraised at CMMI Level 3 Maturity for Development and Services, and has been named in the Top Workplaces in the Greater Washington Area Small Companies for 2018 through 2022.It has been and continues to be the policy of Edgewater Federal Solutions to provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, marital status, veteran status, and/or other status protected by applicable law.#LI-LS1
Edgewater Federal Solutions is currently seeking a Information Systems Security Engineer (Senior) to provide support for our Federal Client located in Pocatello, Idaho.Responsibilities:Responsible for the secure design, analysis, and test of information security systems and productsServe as the subject matter expert (SME) for data center system environments and performs standard project tasks to analyze IT security compliance requirements, translate those into security designs, implements these designs, and tests effectivenessServer as a SME with working knowledge of information security products including firewalls, monitoring and intrusion detection systems, anti-virus systems, vulnerability testing, and security analysis toolsCreate and update security test plans for detecting and mitigating risk to information systems. Engineer and perform tests and test plans to satisfy audits. Provide solutions for mitigating information systems findings or risksEvaluate, improve, and maintain the information security throughout the infrastructure.Monitor and correct information system issues and create recovery processes for failures and vulnerabilities and track vulnerabilities until they are resolved or mitigated to the satisfaction of the government Accrediting Authority (AO)Proactively ensure the highest levels of systems and infrastructure availabilityMonitor and test application performance for potential bottlenecks, identify possible solutions, and work with engineers to implement those fixesMaintain security, compliance, and reduce risk strategies for information systems. Works with other security entities for certification and accreditation and authority to operate for new platforms or services to include cloud services and platformsWrite and maintain custom scripts to increase system efficiency and lower the human intervention time on any tasks, such as automated scanning of systems and auditing, and data spill clean upsParticipate in the design of information and operational support systemsConfigure scanning tools to function without impacting the users or the systemConfigure and support TLS and PKI encrypted connectionsProvide 4th level support and liaise with vendors and other IT personnel for problem resolutionEnsure technical documentation exists for all systems and is kept up to date to include system security plans, business impact analyses, continuity of operations plans, mitigations, authorized software lists, authorized hardware lists, and elevated user access list and rolesEnsure technical documentation exists for all systems and is kept up to date to include inventory and patch levels of all systems to include hostnames, property numbers, IP addresses, enclave, number of cores, number of processors, admin passwords, certificates, and service accounts on a monthly intervalProvide real time alerts and dashboard information on security performance and availabilityDocument system configurations to include passwords, access controls, version number, and revision numbers, patch levels, and inventory to include hostnames, TCP/IP addresses, number of processors, and number of cores, memory, and license keysContinually transition knowledge to the government staff through training and assistance on how to use the technology using industry best practicesWrite Engineering Documents as requested this includes the Business Impact Analysis (BIA) and the Information System Contingency Plan (ISCP)Interface with other security teams within the FBI and its partners and consult to ensure deliverables meet all security requirementsImplement and monitor security measures for the protection of computer systems, networks, and informationIdentify and define system security requirements and design computer security architecture and develop detailed security designsPrepare and document standard operating procedures and protocolsConfigure and troubleshoot security infrastructure devicesDevelop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasksReport any security issues or incidents to management and provide a detailed explanation in both oral and written formProduce comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancementQualifications:
Ten (10) years of relevant cybersecurity experienceU.S. Citizenship is required per contract to obtain and maintain a Top Secret clearance with SCI-CI poly.Active Top-Secret Clearance with SCI-CI Poly eligibilityCertified Information Systems Security Professional (CISSP)Security assessment, testing, and operationsPreferred Qualification :Bachelors Degree?About Us:Edgewater Federal Solutions is a privately held government contracting firm located in Frederick, MD.? The company was founded in 2002 with the vision of being highly recognized and admired for supporting customer missions through employee empowerment, exceptional services and timely delivery. Edgewater Federal Solutions is ISO 9001, 20000-1, 270001 certified, appraised at CMMI Level 3 Maturity for Development and Services, and has been named in the Top Workplaces in the Greater Washington Area Small Companies for 2018 through 2022.It has been and continues to be the policy of Edgewater Federal Solutions to provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, marital status, veteran status, and/or other status protected by applicable law.#LI-LS1