Northrop Grumman Information Systems is seeking a Security Engineer with a DoD system security certification and accreditation background to support enhancements to the Global Combat Support System (GCSS-J) and its evolution to a Net-Centric Architecture. The Candidate is expected to proactively assist the design and development of a secure system so it will meet and pass all certification and accreditation requirements. The position requires the candidate to evaluate requirements and changes to architecture and determine the impact of the system especially in the areas of interoperability and security.
The applicant needs strong planning, organizing, coordinating, and customer interface skills and must be proficient in developing technical documentation and reports. The applicant should also be comfortable making technical presentations, resolving technical issues and conflicts in a positive manner. In addition to working with the customer the applicant must be able to work closely with System Engineers, Software Engineers, Testers, and other team members.
The work will be primarily performed in the Northern Virginia Area with the primary facility located in Herndon, VA
Basic qualifications for this position:
BS degree in a technical field
5+ years technical security experience
Information Assurance experience in a DoD Environment,
System Security Engineering Processes,
Vulnerability Assessments,
Risk Assessments, Certification and Accreditation (C&A) using Department of Defense IA Certification and Accreditation Process (DIACAP),
Development, tracking, and maintenance of IAVAs and POA&Ms,
Network Administration/Security Engineering to include: Network Security/Information Protection Operations, penetration testing, firewall administration, load balancer, and switch audits, configuration, and administration, and security engineering in the design of secure systems, web applications, services, and networks.
Hands-on experience utilizing enumeration and vulnerability assessments tools (software) such as Retina, NESSUS, ISS, Retina, NMAP.
The applicant must have a strong understanding of Federal and DoD security regulations/standards.
A working knowledge of the following is also required;
Solaris/Unix, Cisco network devices, IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls including XML firewalls, proxy services, DNS, electronic mail and access-lists. MS Office Products.
Experience in the following areas is an asset:
--Knowledge of Windows XP/2003, Unix (Solaris), Oracle/Sybase, TCP/IP, LAN networking , configuration of O/S, server installation/configuration, client installation, FTP, Telnet, shell scripting, and web technologies. --DITSCAP/DIACAP/NIACAP/NIST-C&A processes - DISA STIGS, SRR's and STIG-Tools for Computer Network Enclaves.
The following experience/certification is a plus but not required:
Experience/knowledge with the following technologies are desirable: DataPower, Agile development processes, J2EE app server (e.g., JBOSS, BEA Weblogic), databases (e.g., Oracle), SQL, DISA's net-centric initiatives, NCES, GIG, continuous integration. ISC2 Certified Information Systems Security Professional (CISSP) Any SANS Institute GIAC certification, any Cisco Professional Level certification.
Ideal skills and experience for this position:
A security engineer that has worked with DIA, DISA and JITC performing certification and accreditation activities using DIACAP for at least three years and meets all the skills and expertise listed above.
Security Clearance Required.
|