Telos Corporation
IA Engineer
Telos Corporation, San Antonio, Texas, United States, 78208
Job Title
IA Engineer
Job Description
The most security-conscious organizations trust Telos Corporation to protect their vital IT assets. The reputation of our company rests on the quality of our solutions and the integrity of our people. Explore what you can bring to our solutions in the areas of cyber, cloud and enterprise security.Be a part of the Telos culture and see what sets us apart! Telos offers an excellent compensation package with benefits that include generous paid time off, medical, dental, vision, tuition reimbursement, and 401k. Our employees enjoy more than just a great work environment!This position will be based at Lackland AFB, TX and is Contingent upon award.Responsibilities:Learn and become familiar with the Xacta 360, Xacta.io, and Enterprise Mission Assurance Support Service (eMASS) tools.Responsible for entering security aspects of systems, software, applications, DevSecOps and associated RMF A&A data consistent with RMF ISSM responsibilitiesThe candidatewill be required to conduct "walkthroughs" of enterprise systems, applications, and DevSecOps projects to collect required artifacts in support of the initial NIST RMF A&A and subsequent continuous monitoring activitiesThe candidate will be responsible for the performance of security control assessment planning and execution in compliance with client policies and procedures with minimal supervisionThe candidate will have had prior experience working with a wide variety of technologies, be well versed in the current state of information security and be able to interpret requirements of relevant governing bodies (e.g., NIST, OMB, GAO, etc.)The candidate will utilize Xacta 360 and eMASS to produce Body of Evidence (e.g., System Security Plan (SSP), Risk Assessment Report (RAR), specific POA&M portions, vulnerability reports, etc.) that meets local requirements while maintaining compliance with higher-level governance (e.g., NIST, FISMA, etc.)Develop and manage multiple RMF projects in the Air Force RMF tools such as Xacta 360, Xacta.io and/or eMASSWork with the customer to gather FedRAMP artifacts that will be used to support AF and AF IC AO risk decisionsPerform system auditing, vulnerability risk assessments, hardware/software configuration management, and investigations on cybersecurity related security violations/incidentsDevelop system documentation for information system authorization, security management, and continuous monitoring for assigned systemsAssist with providing cybersecurity education and training for all system users on appropriate risk mitigation strategiesInterface with internal/external customers to identify requirements and provide problem resolution.Perform other administrative and support functions as needed
Job Requirements
Qualifications:Current TS Clearance with Sensitive Compartmented Information (SCI)IT/Computer Science/Cyber Security Bachelor's Degree, or the equivalent combination of education, professional training or workexperience (12years)IAM Level III - IAW DoD 8570 Baseline Certifications3 years of experience at the Senior or SME level for Information System Security Engineer, Information Systems Security Manager, Information Systems Security Officer; or 5 years' experience with RMF, NIST, FISMA, and POA&Ms from a theoretical, practical, and best practice perspectiveExperience with Cloud environments and cybersecurity requirementsExperience using a combination of IA and IT related skills. For this position knowledge and practical experience for the IT/RMF side versus IT/Systems Integration is weighed equally. Experience in a role within or implementation of the RMF Assessment and Authorize (A&A) process is a mustExperience developing, executing, reviewing, and documenting security control test plans and implementation statementsExperience investigating and documenting system topology in OV-1 or similar diagrams, to include: Internal/External Ports, Protocols, Internal/External interfaces, Hardware, Software, CryptographyExperience with security hardening requirements in accordance with DoD and vendor guidanceExperience in vulnerability analysis and patch remediationKnowledge and experience applying security requirements related to applicable control overlays (e.g., Privacy, Classified, Cross Domain Solutions, etc.)Strong written and verbal communications skills and the ability to interact with people at all levels are required.A professional attitude regarding attention to detail and customer service and excellent organizational skills are requiredAbility to pay strict attention to detail with an emphasis on high quality of deliverablesDemonstrated ability to work tasks autonomously
Desired skills:Experience using the Air Force RMF mandated Xacta and eMASS toolsUnderstand the policies related to RMF (NIST SP 800-53, CNSSI 1253)Knowledge of DoD and Air Force policies related to RMFExperience with DISA Security Technical Implementation Guidance (STIG) and Security Requirements Guides (SRG)Experience with vulnerability management tools (i.e. ACAS) to validate compliance with security and patch management requirementsExperience with SCAP tools and scanning to validate compliance with security requirementsOperating systems such as Linux (primary) Windows (secondary)Amazon Web Services Solutions experience and/or certificationUnderstanding of Agile development or similar frameworksExperience in troubleshooting and root cause analysis of complex technical issuesUnderstanding of application security in Microservice architectureAccount management, Auditing, Configuration Management, Cryptography and Certificate Management, Vulnerability Management, and IT systems administrationExperience securing containers technologies (Docker, Podman, etc.,)Experience securing containers orchestration systems (Kubernetes, Swarm, AKS, EKS, etc.,)Experience with CI/CD tools (e.g. Jenkins, GitLab, GitHub)Querying Database Management Systems such as Oracle, PostgreSQL, or MSSQLScripting languages such as JavaScript, PHP, Python, or Apache VelocityExperience in diagraming and developing workflows through Business Process EngineeringPrior SAP Experience
The successful candidate must meet eligibility requirements to access sensitive information, which requires US citizenship.Telos maintains a drug-free workplace and will conduct drug testing on all applicants who have accepted an offer of employmentTelos Corporation participates in the E-Verify program. Therefore, any employment with Telos will also be contingent upon confirmation from the Social Security Administration ("SSA") and/or the Department of Homeland Security ("DHS") of your authorization to work in the United States. Telos offers excellent compensation packages including salary commensurate with experience and benefits to meet your needs for today and the future.Telos Corporation and its subsidiaries are committed to equal opportunity for all, without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identity, age, veteran status, disability, genetic information, or any other protected characteristic. Telos Corporation will make reasonable accommodations for known physical or mental limitations of otherwise qualified employees and applicants with disabilities unless the accommodation would impose an undue hardship on the operation of our business. If you are interested in applying for an employment opportunity and feel you need a reasonable accommodation pursuant to the ADA, please contact us at 1-800-283-1911. If you require relay service assistance, please click on the following link to review information on your state's relayservice:http://transition.fcc.gov/cgb/dro/Telos Corporation is an EEO/AA employer.Job Type
Full-Time
Location
San Antonio, TX 78243-7099 US (Primary)
Telos offers an excellent compensation packages including salary commensurate with experience and benefits to meet your needs for today and the future. Telos and its subsidiaries are an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.
IA Engineer
Job Description
The most security-conscious organizations trust Telos Corporation to protect their vital IT assets. The reputation of our company rests on the quality of our solutions and the integrity of our people. Explore what you can bring to our solutions in the areas of cyber, cloud and enterprise security.Be a part of the Telos culture and see what sets us apart! Telos offers an excellent compensation package with benefits that include generous paid time off, medical, dental, vision, tuition reimbursement, and 401k. Our employees enjoy more than just a great work environment!This position will be based at Lackland AFB, TX and is Contingent upon award.Responsibilities:Learn and become familiar with the Xacta 360, Xacta.io, and Enterprise Mission Assurance Support Service (eMASS) tools.Responsible for entering security aspects of systems, software, applications, DevSecOps and associated RMF A&A data consistent with RMF ISSM responsibilitiesThe candidatewill be required to conduct "walkthroughs" of enterprise systems, applications, and DevSecOps projects to collect required artifacts in support of the initial NIST RMF A&A and subsequent continuous monitoring activitiesThe candidate will be responsible for the performance of security control assessment planning and execution in compliance with client policies and procedures with minimal supervisionThe candidate will have had prior experience working with a wide variety of technologies, be well versed in the current state of information security and be able to interpret requirements of relevant governing bodies (e.g., NIST, OMB, GAO, etc.)The candidate will utilize Xacta 360 and eMASS to produce Body of Evidence (e.g., System Security Plan (SSP), Risk Assessment Report (RAR), specific POA&M portions, vulnerability reports, etc.) that meets local requirements while maintaining compliance with higher-level governance (e.g., NIST, FISMA, etc.)Develop and manage multiple RMF projects in the Air Force RMF tools such as Xacta 360, Xacta.io and/or eMASSWork with the customer to gather FedRAMP artifacts that will be used to support AF and AF IC AO risk decisionsPerform system auditing, vulnerability risk assessments, hardware/software configuration management, and investigations on cybersecurity related security violations/incidentsDevelop system documentation for information system authorization, security management, and continuous monitoring for assigned systemsAssist with providing cybersecurity education and training for all system users on appropriate risk mitigation strategiesInterface with internal/external customers to identify requirements and provide problem resolution.Perform other administrative and support functions as needed
Job Requirements
Qualifications:Current TS Clearance with Sensitive Compartmented Information (SCI)IT/Computer Science/Cyber Security Bachelor's Degree, or the equivalent combination of education, professional training or workexperience (12years)IAM Level III - IAW DoD 8570 Baseline Certifications3 years of experience at the Senior or SME level for Information System Security Engineer, Information Systems Security Manager, Information Systems Security Officer; or 5 years' experience with RMF, NIST, FISMA, and POA&Ms from a theoretical, practical, and best practice perspectiveExperience with Cloud environments and cybersecurity requirementsExperience using a combination of IA and IT related skills. For this position knowledge and practical experience for the IT/RMF side versus IT/Systems Integration is weighed equally. Experience in a role within or implementation of the RMF Assessment and Authorize (A&A) process is a mustExperience developing, executing, reviewing, and documenting security control test plans and implementation statementsExperience investigating and documenting system topology in OV-1 or similar diagrams, to include: Internal/External Ports, Protocols, Internal/External interfaces, Hardware, Software, CryptographyExperience with security hardening requirements in accordance with DoD and vendor guidanceExperience in vulnerability analysis and patch remediationKnowledge and experience applying security requirements related to applicable control overlays (e.g., Privacy, Classified, Cross Domain Solutions, etc.)Strong written and verbal communications skills and the ability to interact with people at all levels are required.A professional attitude regarding attention to detail and customer service and excellent organizational skills are requiredAbility to pay strict attention to detail with an emphasis on high quality of deliverablesDemonstrated ability to work tasks autonomously
Desired skills:Experience using the Air Force RMF mandated Xacta and eMASS toolsUnderstand the policies related to RMF (NIST SP 800-53, CNSSI 1253)Knowledge of DoD and Air Force policies related to RMFExperience with DISA Security Technical Implementation Guidance (STIG) and Security Requirements Guides (SRG)Experience with vulnerability management tools (i.e. ACAS) to validate compliance with security and patch management requirementsExperience with SCAP tools and scanning to validate compliance with security requirementsOperating systems such as Linux (primary) Windows (secondary)Amazon Web Services Solutions experience and/or certificationUnderstanding of Agile development or similar frameworksExperience in troubleshooting and root cause analysis of complex technical issuesUnderstanding of application security in Microservice architectureAccount management, Auditing, Configuration Management, Cryptography and Certificate Management, Vulnerability Management, and IT systems administrationExperience securing containers technologies (Docker, Podman, etc.,)Experience securing containers orchestration systems (Kubernetes, Swarm, AKS, EKS, etc.,)Experience with CI/CD tools (e.g. Jenkins, GitLab, GitHub)Querying Database Management Systems such as Oracle, PostgreSQL, or MSSQLScripting languages such as JavaScript, PHP, Python, or Apache VelocityExperience in diagraming and developing workflows through Business Process EngineeringPrior SAP Experience
The successful candidate must meet eligibility requirements to access sensitive information, which requires US citizenship.Telos maintains a drug-free workplace and will conduct drug testing on all applicants who have accepted an offer of employmentTelos Corporation participates in the E-Verify program. Therefore, any employment with Telos will also be contingent upon confirmation from the Social Security Administration ("SSA") and/or the Department of Homeland Security ("DHS") of your authorization to work in the United States. Telos offers excellent compensation packages including salary commensurate with experience and benefits to meet your needs for today and the future.Telos Corporation and its subsidiaries are committed to equal opportunity for all, without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identity, age, veteran status, disability, genetic information, or any other protected characteristic. Telos Corporation will make reasonable accommodations for known physical or mental limitations of otherwise qualified employees and applicants with disabilities unless the accommodation would impose an undue hardship on the operation of our business. If you are interested in applying for an employment opportunity and feel you need a reasonable accommodation pursuant to the ADA, please contact us at 1-800-283-1911. If you require relay service assistance, please click on the following link to review information on your state's relayservice:http://transition.fcc.gov/cgb/dro/Telos Corporation is an EEO/AA employer.Job Type
Full-Time
Location
San Antonio, TX 78243-7099 US (Primary)
Telos offers an excellent compensation packages including salary commensurate with experience and benefits to meet your needs for today and the future. Telos and its subsidiaries are an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.