Engineer, Information Security

Company: ManTech International Corporation ( Learn More )

General Information
US-AZ-Sierra Vista
N/A
Not Specified
Full-Time
Not Specified
Not Specified
False
False
Job Description Group: MSS

Clearance Level Needed: TS/SCI

Shift: Day

Category: Cyber

Become an integral part of a diverse team that leads the world in Mission, Cyber, and Intelligence Solutions. At ManTech International Corporation, you will help protect our national security while working on innovative projects that offer opportunities for advancement and providing optimal support to our primary Government customers.

General Responsibilities:

• Provides customer support in solving all phases of complex INFOSEC - related technical problems

• Reviews and recommends INFOSEC solutions to customer problems based on an understanding of products/systems test results

• Conducts systems security analysis and implementation, system engineering, electrical design, design assurance, testing, software engineering, program design, configuration management, integration and testing of INFOSEC products and techniques

• Solutions are based on a firm understanding of government/industry policy, practices, procedures, and customer requirements

• Ensures INFOSEC solutions are fully compatible with or engineered into the customer’s network design

• Review and updated Information Security documentation, POAM, Scans, STIGs, SSAA, SRTM, etc.

• Implementation and operation of the system or component of a Government customer’s information systems.

• Ensures all information systems are functional and secure in operations and poly knowledge of IA policy, procedures and structure to develop, implement, and maintain a secure information system.

• Develop, implement, and integrate information security standards and procedures through the IA process as required.

• Write comprehensive security analysis reports including assessment-based findings, outcomes and enter this data into DoD Information Assurance Management databases for evaluation by Authorizing Officials to support the receipt of an Authority to Operate (ATO) for the systems

• Describes, tests and validates security measures active on security infrastructure devices for the protection of computer systems, networks and information system

• Identifies and defines system security requirements and correlates/documents them by analysis of organizational standard security operating procedures (SOP) and protocols

• Determines security violations and inefficiencies through security tests, evaluations and audits

• Prepares and completes action plans; defines production, quality, and military unit standards; resolves problems; completes security audits; identifies security and threat trends; determines system improvements; defines system security change requests

• Recommends improvements by assessing current security implementations and anticipating new security requirements

• Maintains system security by implementing and maintaining security control

Mandatory Skills Requirements:

• Must meet 8570/8140 certification criteria

• JWICS, SIPR, and/or CENTRIXS accreditation experience and Risk Management Framework (RMF) knowledge

• Experience in heterogeneous computer networking technology and work in protocol and/or interface standards specification

• Experience analyzing and resolving INFOSEC technical problems

• Familiarity with network and information system security principles and test practices

• Familiarity with applicable NRO, IC, DoD policies, procedures and operating instructions related to IT, IA and IM

• Experience developing security accreditation/certification documentation, and creating and maintaining security policy and procedures

• Vast knowledge of Government security policies and familiarity with security-related technologies and auditing tools

• Experience providing security engineering analysis on a variety of information systems

• Advance skills at developing security accreditation/certification documentation, and creating and maintaining security policy and procedures

• Experience performing security certification engineering analysis, vulnerability assessments, and risk assessments

• Must be capable of designing and configuring security tools

• Experience developing test procedures, establishing test environments, executing security certification test/demonstrations/evaluations, documenting results, and developing reports, conclusions, and recommendations

• Must be capable of conceptualizing and implementing security systems and architectures

• Must be willing to travel up to 25 - 50%, both statewide and overseas (no deployment areas)

Other Skills Preferred:

Experience in DAMI certification policies and procedures

Job RequirementsRequires Bachelor's degree (in field mathematics, telecommunications, electrical engineering, computer engineering, computer science) or equivalent and five to seven years experience with information networks and the security aspects.