Sign Up Sign Up Log In Sign Up
This job has expired and you can't apply for it anymore. Start a new search.

IA Support (ISSE) 2019-050

 
ISHPI, a CMMI DEV/5 appraised, NIWC prime, is seeking candidates for Information Systems Security Engineers (ISSE) on the Naval Information Warfare Center (NIWC)  S2IPT  contract located in Charleston, SC.
 
Program Overview:
 
Naval Information Warfare Center (NIWC) S2IPT supports DoD and Navy information technology to design, develop, engineer, and maintain systems that will improve customer organizational efficiency.  Support areas include: Software Development, Administrative Services, Applications Integration Management, Corporate Strategy Planning and Execution, Information Assurance and Cyber Security, Information Resource Management, Information Technology (IT) Operations.  This tasking includes: new standards engineering, prototype installation, application development, data interoperability, system design, system management and maintenance, data collection, analysis, and other management and implementation efforts to support of data translation, data mediation, and data mapping.
 
A Software Services IPT Information Systems Security Engineer is an integral member of a scrum team (or likely multiple teams) challenged to provide security engineering and Assessment and Authorization (A&A) support for the implementation and fielding of S2IPT software-based capabilities and services.
 
Key Roles/Responsibilities:
  • Work with IPT and system stakeholders within the Agile development process to ensure that Information Assurance requirements are considered and addressed from concept through disposal of the software development lifecycle, i.e. built-in rather than bolted-on. Key tasks include:
    • Execution of the DOD 6 step RMF and/or DIACAP SA&A processes IAW DoDI 8510.01 to ensure ATO achievement and sustainment throughout the entirety of system and software lifecycle.
    • Analysis of proposed system and software features and capabilities to assist in the identification of resultant security impacts and DOD RMF documentation and vetting requirements as prescribed by DoDI 8510.01 and DoDI 5000.2
    • Documentation of employed and proposed system and software security requirements, features and enhancements as required by the determined  “Use case”
    • Creation and enhancement of system development and Information Assurance processes and methodologies in support of “bridging the gap” between the system development and IA teams
  • Work closely with software developers and other IA team members to ensure the software delivered by the IPT is safe, secure, and compliant with applicable DOD hardening guidelines and security control requirements; DOD STIGs, CNSSI 1253, NIST SP 800-53, etc
  • Verify software and system registration status within the required DOD repositories.  This includes DADMS registration and FAM approval for all for all integrated, installed, or operational applications and DITPR-DON registration for all systems
  • Plan, perform, coordinate, and/or review technical security assessments and ST&E events of computing baselines and architectures to identify weaknesses and areas of non-compliance with established DOD and Federal Cybersecurity standards and policies.
  • Work with system stakeholders and development teams in the creation, implementation and management of weakness mitigation and remediation strategies and their related POA&Ms
  • Recurring reviews and updates of the Vulnerability Remediation Asset Manager (VRAM) web portal
Required qualifications and skills include, but are not limited to, the following:
  • Working knowledge of the DOD implementation of the NIST Risk Management Framework (RMF) and DIACAP methodologies and processes 
  • Familiarity with the Navy’s High Risk Escalation Process
  • Experience in the Security Assessment Process to include performance of SME interviews and evaluation of provided artifacts in regard to mandated security control requirements.
  • Experience in the analysis of IAVA bulletins and Cyber Security TASKORDs and providing leadership details on any required actions and related timelines
  • Working knowledge of the Enterprise Mission Assurance Support Service (eMASS) tool
  • Requires U.S. Citizenship and ability to obtain a SECRET Clearance
  • 5 years of experience in DoD DIACAP or RMF system authorization processes
  • DoD 8570.1M IAT Level II baseline certification: CNA Security,  CySA+,  GICSP, GSEC,  Security+ CE or  SSCP
  • (Preferred) BS degree in Computer Science, Cyber Security, Information Assurance, or related field 10+ years of experience in Information Technology Security technologies
 
ISHPI was born a cyber-services company supporting U.S. Armed Forces personnel and other direct defenders of the homeland with a heavy focus on emerging asymmetric Information Operations.  Our focus on cyber related services has held steady while our client base and functional capabilities expanded exponentially to envelop essentially all cyber impacted components of modern warfare.  Philosophically, our approach to cyber surety has evolved to become Holistic in nature, based on a firm conviction that cyber activities are never truly secure unless every layer of the OSI model and every human input associated with the activity is Holistically engineered and integrated for cyber security.
 
In 2014 ISHPI acquired Advanced Information Services Inc., a globally recognized leader in Software Development Quality and the winner of the 2013 Government Information Security Leadership Award for secure software lifecycle practices and the IEEE Computer Society Software Process Achievement Award.  The acquisition added CMMI Maturity Level 5 Cyber-Secure Software Development to ISHPI's Holistic CyberStance Strategy.
 
Ishpi Information Technologies, Inc. (DBA ISHPI) is an Equal Opportunity Employer which governs all employment related decisions without regard to race, color, gender, sexual orientation, gender identity, religion, national origin, age, marital status, genetic information, disability, veteran status or any other protected classification.
 
If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access www.ishpi.net/careers as a result of your disability.  To request an accommodation, please contact us at [email protected]
 
Equal Opportunity Employer - VEVRAA Federal Contractor

Company Name:
Security Clearance:
Secret
Location:
Naval Information Warfare Center . Charleston, South Carolina
Country:
United States
Salary:
Not Specified
Job Number:




Send me email alerts for similar jobs

JOIN US