Athenix ISSE/ISSO
$95,000 - $225,000/Yr
Visual Awareness Technologies And Consulting - Annapolis Junction, MD
posted 1 day ago
- Entry Level
Annapolis Junction, MD
Professional, Scientific, and Technical Services
About the position
Athenix Solutions Group is looking for Information System Security Engineers and Information Systems Security Officers for a variety of roles to assist in the performance and review of technical security assessments of various computing environments. These assessments will assist in identifying vulnerabilities, and ensure compliance, with established Information Assurance standards and regulations. In addition, the ISSE/ISSO will recommend and oversee the application of mitigation strategies to achieve security compliance.
Responsibilities
- Participating as a security engineering representative on engineering teams for the design, development, implementation and/or integration of secure networking, computing, and enclave environments
- Participating as a security engineering representative on engineering teams for the design, development, implementation and/or integration of IA architectures, systems, or system components
- Participating as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of secure networking, computing, and enclave environments
- Applying knowledge of IA policy, procedures, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments
- Interacting with the customer and other project team members
- Supporting the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures
- Supporting security planning, assessment, risk analysis, and risk management
- Identifying overall security requirements for the proper handling of Government data
- Validating and verifies system security requirements definitions and analysis and establishes system security designs
- Designing, developing, implementing and/or integrating IA and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements
- Building IA into systems deployed to operational environments
- Assisting architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of customers security policy and enterprise solutions
- Supporting the building of security architectures
- Enforcing the design and implementation of trusted relations among external systems and architectures
- Assessing and mitigating system security threats/risks throughout the program life cycle
- Contributing to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations
- Reviewing certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its content
- Applying system security engineering expertise in one or more of the following: system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off-the-shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non-repudiation, availability, and access control); and security testing
- Supporting security authorization activities in compliance with customer Information System Certification and Accreditation Process and DoD Risk Management Framework (RMF), the Risk Management Framework (RMF) process, and prescribed DoD business processes for security engineering
Requirements
- Active Clearance: TS/SCI with Polygraph is required
- Entry Level - Bachelor's degree in Information Assurance, Information Security or related field, and no or minimal experience (Note: even without a degree experience can qualify you for this level with 4 years of relevant experience)
- Basic Level - Bachelor's degree in Information Assurance, Information Security or related field, and 4 years of relevant experience
- Mid Level - Bachelor's degree in Information Assurance, Information Security or related field, and 8 years of relevant experience
- Senior Level - Bachelor's degree in Information Assurance, Information Security or related field, and 12 years of relevant experience
- A Master's degree in Information Assurance, Information Security or relevant field can be used to substitute for 4 years of experience
Benefits
- EEO/Affirmative action employer
- Commitment to hiring and retaining a diverse workforce
