Verity Integrated Systems
  • Huntsville, AL, USA
  • Salary
  • Full Time

The Information Assurance SME provides information assurance and cybersecurity expertise for the authorization and operation of classified information systems.

The Information Assurance SME will be responsible for serving as an Information Systems Security Officer (ISSO) for systems assigned and ensuring classified systems and controlled areas are maintained in accordance with established security documentation for system hardware and software, SSP's, POA&M's, equipment specifications, practices, and procedures.

Duties and responsibilities

  • Independently determine and develop approaches to information assurance solutions.
  • Develop system documentation for information system authorization, security management, and continuous monitoring of both networked and standalone classified systems.
  • Perform system auditing, vulnerability risk assessments, Assured File Transfers, hardware/software configuration management, system patching/updating, data integrity containments, and investigations on IA related security violations/incidents.
  • Assist in the planning, organization, maintenance and compliance of multiple classified systems in accordance with NISPOM, Risk Management Framework (RMF) requirements, and Defense Counterintelligence and Security Agency (DCSA) Assessment & Authorization Process Manual (DAAPM).
  • Implementation and validation of security relevant controls on computing systems and perform certification tests & periodic inspections of Information Systems.
  • Provide day-to-day technical support to classified Information Systems including adherence to policies, procedures, and best practices.
  • Troubleshoot systems as necessary.
  • Ensure systems and data are protected, operated, maintained and disposed of, in accordance with security policies and practices as outlined in the RMF package.
  • Manage user access and conduct user briefings as required.
  • Assist with classified spills/incident response or other security-related incidents.
  • Interact with representatives of FBI, DCSA, Customers and other government agencies as required.
  • Responsible for the development of a comprehensive security plan for IT systems security.
  • Maintain thorough understanding of NIST 800-53/800-171 controls, and determine which controls are applicable to the application, as well as document implementation.
  • Assist Information System Security Manager (ISSM) in performing periodic self-inspections, tests and reviews of the IS program to ensure that systems are operating as authorized/accredited and that conditions have not changed.
  • Support Facility Security Officer (FSO) and ISSM in company-wide initiatives.

Required:

  • BS/MS degree (Computer Science, Math, Engineering, or Related Science degree)
  • Active SECRET or TOP SECRET Clearance
  • Must be a U.S. Citizen.
  • 10+ years related experience
  • Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Manager Level 3.
  • Experience with National Industrial Security Program (NISP) Enterprise Mission Assurance Support Service (eMASS) submission and maintenance.
  • Experience with implementation of Defense Federal Acquisition Regulations Supplement (DFARS) 252.204-7012 requirements.
  • Knowledge of Cybersecurity Maturity Model Certification (CMMC) requirements.
  • Knowledgeable of DCSA certification authority and familiar with the RMF accreditation process.
  • Thorough understanding of US Government Cybersecurity/IA policies
  • Experience with DCSA RMF processes.
  • Must have the ability to work in a dynamic environment and effectively interact with numerous DOD, military/civilian personnel and industry partners.
  • Working knowledge of Microsoft Office (Word, PowerPoint, and Excel).
  • Exceptional communication skills
  • Exceptional work history
  • Ability to work independently and in a professional manner
  • High degree of attention to detail
  • Ability to multi-task and excel in a multi-customer environment.
  • Must be able to lift up to 50 lbs.

Desired:

  • Possess a high degree of originality, creativity, initiative requiring minimal supervision.
  • Experience in a Department of Defense Information Security contractor security environment with demonstrated knowledge of classified Information System operating systems.
  • Experience with security configurations across multiple operating systems in various environments.
  • In-depth knowledge of National Institute of Standards and Technology (NIST) guidelines.
  • Experience with the implementation of NIST 800-53 controls.
  • Experience using Assured Compliance Assessment Solution (ACAS) to identify vulnerabilities.
  • In-depth knowledge of Security Technical Implementation Guides (STIGs) and their implementation.
  • Experience with configuration and usage of Security Content Automation Protocol (SCAP) Compliance Checker (SCC).
  • Experience with the configuration and installation of the Defense Information Security Agency (DISA) Secure Host Baseline (SHB).
  • Experience with Windows Active Directory management and Group Policy implementation.
  • Experience with Windows 10 management and hardening.
  • Experience with Windows Server management and hardening.
  • Experience with Unix/Linux management and hardening.
  • Experience with the configuration and management of virtualization technologies.
Verity Integrated Systems
  • Apply Now

    with our quick 3 minute Application!

  • * Fields Are Required

    What is your full name?

    How can we contact you?

  • Sign Up For Job Alerts!

  • Share This Page
  • Facebook Twitter LinkedIn Email
.
Home About Capabilities Contract Vehicles News Careers Contact Us logo