Ideal Innovations
Information Assurance Engineer Intermediate
Ideal Innovations, Bridgeport, Ohio, United States, 26630
Description
Highlights: Our Team is very motivated for the success of the mission, also the contract is very flexible with hours. This Team is separated in 9 different tasks; each task has its part in order to guarantee the success of the mission/warfighter. This position is unique in that you'll be reviewing the different technologies and understanding our environment and the impact across the globe. Customer support is a huge factor for our Client and to understand requests from around the world. You will become well-versed in ACAS, NIST security control assessment, compliance validation, vulnerability analysis, compliance reporting, ESS site administration, along with other technologies. Typical Day: Providing all aspects of validation of security controls, analysis reporting, intelligence report creation, DISA STIG validations, CTO tracking/notifications/reporting, P/CR validations, documentation review, eMASS management, and Tenable ACAS Security Center management. Working with the Team to determine best practices and how to implement the best practices. Tasks: Familiar with Cybersecurity-Related IA and IA-Related Policies and Issuances as developed by the DoD Deputy CIO for Cybersecurity. Familiar with activities associated DoD Information Assurance Risk Management Framework (RMF), to include the NIST 800 SP series, 800-37 R1, Guide for Applying the Risk Management Framework to Federal Information Systems, FIPS 200, Minimum Security Requirements for Federal Information Systems, 800-53 R4, Security and Privacy Controls for Federal Information Systems, 800-53A R1, Guide for Assessing the Security Controls in Fed Information Systems, 800-18 R1, Guide for Developing Security Plans for Federal Information Systems, 800-30, Rev 1, Risk Management Guide for IT Systems, 800-137, Continuous Monitoring, 800-39, Managing Information Security Risk, and other related. Familiar with requirements related to CJCSI 6510.01F, Information Assurance and Computer Network Defense. Familiar with CJCSI 6211.02D, Defense Information System Network (DISN) Responsibilities. Working knowledge of the NIPRNet Systems/Network Approval Process (SNAP) and SIPRNet GIG Interconnection Approval Process System (SGS) databases for requesting DISN - Authorities to Connect (ATCs). Familiar with the DoD Information Assurance Vulnerability Management System. Familiar with administration and management of the DoD Enterprise Mission Assurance Support Service (eMASS). Knowledge in varied IT disciplines outlined in DISA Security Technical Implementation Guide and ability to validate compliant/non-compliant status for devices and services present. Ability to communicate ongoing vulnerabilities or noncompliance with Plan of Action & Milestones (POA&M). Familiar with the workflow processes for POA&M approval, Annual Security Review, Access and Authorize, and Extensions. Working knowledge of US CYBERCOM responsibilities, orders, and directives in securing the DoDIN. Familiar with the Army Registry for Network Layer 3 Devices (ARNLD) and the DoD NIPRNet DMZ Whitelist databases and effectively ensuring that required records are entered and kept updated on a recurring basis. Familiar with activities related to DODI 8551.1 for Ports, Protocols, and Services Management (PPSM) and ensuring that networks information, in concert with DFSC IT, is correctly provided to respective networks databases. Familiar with Continuous Monitoring requirements, tasks, and directives outlined in FISMA CCIS. Familiar with DoD NIPR and SIPR Network Information Centers (NICs). Familiar with Configuration Management documentation, processes, and validation of ongoing projects. Able to provide direct support, knowledge, and artifacts to compliance visitation teams and DoD inspections for Cybersecurity compliance. Ability to... For full info follow application link.
Highlights: Our Team is very motivated for the success of the mission, also the contract is very flexible with hours. This Team is separated in 9 different tasks; each task has its part in order to guarantee the success of the mission/warfighter. This position is unique in that you'll be reviewing the different technologies and understanding our environment and the impact across the globe. Customer support is a huge factor for our Client and to understand requests from around the world. You will become well-versed in ACAS, NIST security control assessment, compliance validation, vulnerability analysis, compliance reporting, ESS site administration, along with other technologies. Typical Day: Providing all aspects of validation of security controls, analysis reporting, intelligence report creation, DISA STIG validations, CTO tracking/notifications/reporting, P/CR validations, documentation review, eMASS management, and Tenable ACAS Security Center management. Working with the Team to determine best practices and how to implement the best practices. Tasks: Familiar with Cybersecurity-Related IA and IA-Related Policies and Issuances as developed by the DoD Deputy CIO for Cybersecurity. Familiar with activities associated DoD Information Assurance Risk Management Framework (RMF), to include the NIST 800 SP series, 800-37 R1, Guide for Applying the Risk Management Framework to Federal Information Systems, FIPS 200, Minimum Security Requirements for Federal Information Systems, 800-53 R4, Security and Privacy Controls for Federal Information Systems, 800-53A R1, Guide for Assessing the Security Controls in Fed Information Systems, 800-18 R1, Guide for Developing Security Plans for Federal Information Systems, 800-30, Rev 1, Risk Management Guide for IT Systems, 800-137, Continuous Monitoring, 800-39, Managing Information Security Risk, and other related. Familiar with requirements related to CJCSI 6510.01F, Information Assurance and Computer Network Defense. Familiar with CJCSI 6211.02D, Defense Information System Network (DISN) Responsibilities. Working knowledge of the NIPRNet Systems/Network Approval Process (SNAP) and SIPRNet GIG Interconnection Approval Process System (SGS) databases for requesting DISN - Authorities to Connect (ATCs). Familiar with the DoD Information Assurance Vulnerability Management System. Familiar with administration and management of the DoD Enterprise Mission Assurance Support Service (eMASS). Knowledge in varied IT disciplines outlined in DISA Security Technical Implementation Guide and ability to validate compliant/non-compliant status for devices and services present. Ability to communicate ongoing vulnerabilities or noncompliance with Plan of Action & Milestones (POA&M). Familiar with the workflow processes for POA&M approval, Annual Security Review, Access and Authorize, and Extensions. Working knowledge of US CYBERCOM responsibilities, orders, and directives in securing the DoDIN. Familiar with the Army Registry for Network Layer 3 Devices (ARNLD) and the DoD NIPRNet DMZ Whitelist databases and effectively ensuring that required records are entered and kept updated on a recurring basis. Familiar with activities related to DODI 8551.1 for Ports, Protocols, and Services Management (PPSM) and ensuring that networks information, in concert with DFSC IT, is correctly provided to respective networks databases. Familiar with Continuous Monitoring requirements, tasks, and directives outlined in FISMA CCIS. Familiar with DoD NIPR and SIPR Network Information Centers (NICs). Familiar with Configuration Management documentation, processes, and validation of ongoing projects. Able to provide direct support, knowledge, and artifacts to compliance visitation teams and DoD inspections for Cybersecurity compliance. Ability to... For full info follow application link.