Previous Job
Previous
Information Assurance Security Engineer – ACAS
Ref No.: 17-20423
Location: Chantilly, Virginia
Position Type:Contract
Start Date / End Date: 07/18/2017 to 07/18/2019
Client: DLA
Location: Richmond, VA / Columbus, OH
Role: Information Assurance Security Engineer – ACAS
Duration: Full Time

Required Certifications:
Must have one certification in each of the following categories:
  • CISA, GSE, SCNA, CISSP, GCIH
  • SSCP or CEH

Required Clearance:
  • Active Secret

Required Skills:
  • Must have more seven (7) years of experience in the IA security field
  • Must have four (4) years of experience maintaining Vulnerability scanning solutions in a DoD environment
  • Must have Assured Compliance Assessment Solution (ACAS) experience
  • Must have experience in support vulnerability program
  • Experience performing integration of electronic processes or methodologies to resolve total system problem, or technology problems related to IA requirements
  • Experience analyzes information security requirements.
  • Experience applying analytical and systematic approaches in the resolution of problems of workflow, organization, and planning.
  • Experience providing security-engineering support for planning, design, development, testing, demonstration, integration of information systems.
  • Experience providing analysis of existing and emerging Information Systems and IT Infrastructure to assess compliance
  • Experience conducting and assisting with Security Test and Evaluation and IA assessment reviews as a way of validating compliance with IA policy.
  • Experience developing and documenting standards and guides for the implementation of IA solutions including but not limited to, compliance, system security design, security testing and IA assessments.
  • Experience creating baseline environments for hosting Cybersecurity tools for intrusion detection/prevention systems (IDS/IPS), log aggregation/correlation, compliance monitoring and remediation, and Host Based Security System (HBSS) and other emerging technologies
  • Experience implementing and sustaining the required tools for vulnerability scanning, assessment and reporting to meet existing and emerging
  • Experience providing "Plan of Action and Milestones” (POA&M) updates in accordance with project requirements.
  • Experience developing custom checks at the request of service areas, dashboards, and reporting capability in order to monitor performance metric
  • Experience developing and tracking all change requests (ie Account requests, Change Requests...) to maintain or install security scanning solutions
  • Experience developing and maintaining a means (i.e. Web portal, SharePoint site) to convey pertinent information
  • Experience in conducting testing and tuning of the hardware and software releases prior to introduction into the productions network using security best practices.

Familiarity with Technologies/Tools:
IBM Site Protector, Client ArcSight, Tenable Nessus, McAfee ePO and associated modules, SharePoint, Client Fortify Software Security Center (SSC)