Sr Information Assurance Security Engineer/Information System Security Engineer
Leidos has an immediate opportunity for a Senior Information Assurance Security Engineer/Information System Security Engineer in Suitland, MD. This position requires a candidate with an active TS/SCI clearance.
This individual will support the Office of Naval Intelligence. The Senior IASE/ISSE will provide direct security engineering support to the execution of the customer's Information Assurance (IA) Certification and Accreditation (C&A)/Assessment and Authorization (A&A) mission.
Design, develop, integrate, test, implement, deploy and perform operations & maintenance (O&M) of tools for the automation of security testing in support of C&A/A&A.
Perform architectural design, integration, installation, configuration, testing, and administration of systems and capabilities to support the scanning, monitoring, and reporting of Information Assurance Vulnerability Alerts (IAVA)/Intelligence Community Vulnerability Alerts (ICVA) for the Naval Intelligence (NAVINTEL) Community.
Integrate, install, configure, test, administer C&A Management tools and capabilities to implement C&A/A&A business processes, workflow, DCID 6/3, NIST 800-53 security controls mappings, and FISMA reporting.
Integrate and test new features and functions within the A&A Management solution. This includes, but may not be limited to, DoD 8500.2, and NIST 800-53 Security Controls mappings; implementing updates business processes, workflow, and templates; and direct support to Fleet customers.
System administration and O&M support for the A&A Management capability.
Perform security assessments; design reviews; and provide guidance on new technologies for Fleet customers. New technologies may include, but are not limited to, Cloud technologies, Cross Domain Solutions, Hardware, Operating System, Web technologies; and Databases. Provide Security Engineering, on an as needed basis, to support to the Security Controls Assessors (SCAs) and Validators for A&A and C&A efforts, respectively.
Design, develop, integrate, test, document, administer, perform O&M for systems that support hidden/malicious file content analysis and reporting; Reliable Human Review (RHR) workflow functionality, enforcement, and audit; and cross-domain transfers.
Draw upon in depth understanding of hidden data threats associated with complex and proprietary file types such as MS Office Word, PowerPoint, and Excel; and Adobe Portable Document Format (PDF).
BS with 12+ years of Information Assurance/Security Engineering experience OR a MS with 10+ years of Information Assurance / Security Engineering experience
8+ years of experience with DIACAP, DCID 6/3, ICD-503, and/or RMF.
CISSP or CASP or ability to obtain appropriate Cyber Security certification within six months of hire
Active TS/SCI clearance
Experience in system/software design, development, integration, testing, system administration, and O&M.
Experience implementing and executing software and security engineering practices in the System/Software Development Life Cycle (SDLC) process.
Experience with DoD DISA, Fleet Cyber Command, DoDIIS, and IC tools, systems, recording mechanisms, and requirements for C&A.
Experience with information assurance, including accreditation security testing and evaluation.
Expert technical knowledge of DoD, IC, and national level system security initiatives, and Security Information/LAN/WAN/Cloud technologies/Cross Domain Solutions.
Experience designing and developing host based and network based scanning tools. Extensive experience with the use of host based and network based scanning tools.
Experience with Security Content Automated Protocol (SCAP) based tools and specifications.
Extensive experience in OS hardening; securing systems/software IAW IC, DoD, and industry best practices; development of security controls, testing methodologies, and procedures for systems, cloud based architectures and CDSs.
Preferred Qualifications: Experience developing in an Oracle Solaris or Red Hat Enterprise Linux (RHEL) environment. Experience in OpenOffice or LibreOffice integration or development.
Systems Security Engineering Professional (ISSEP) and/or CISSP certification.
Project management experience.
Leidos is a global science and technology solutions leader working to solve the world's toughest challenges in the defense, intelligence, homeland security, civil, and health markets. The company's 33,000 employees support vital missions for government and commercial customers. Headquartered in Reston, Virginia, Leidos reported pro forma annual revenues of approximately $10 billion for the fiscal year ended January 1, 2016 after giving effect to the recently completed combination of Leidos with Lockheed Martin's Information Systems & Global Solutions business (IS&GS). For more information, visit www.Leidos.com. The company's diverse employees support vital missions for government and commercial customers. Qualified women, minorities, individuals with disabilities and protected veterans are encouraged to apply. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an Equal Opportunity Employer.