Sotera Defense Solutions

[DAI - RMF] DCGS-A Information Security Engineer (SSES NG LC ISE - S)

US-AZ-Sierra Vista
1 month ago
ID
2017-9853
Category
Information Technology
Clearance
Secret

Description

Join our Distributed Common Ground Station-Army engineering and sustainment services Ground Station Integration Facility infrastructure team. The infrastructure sustainment team provides SEC all system specific necessary functions to complete their critical PM DCGS-A sustainment support activities. Types of support provided by the team include Engineering Management, Lab Systems Administration, Test/Quality Assurance Engineering (T/QAE), and Technical Writing. 

 

The team supports all system specific development areas inside the DCGS-A Family of Systems baseline. Additionally the team is responsible for communicating with respective stakeholders and POR representatives to resolve critical issues in a timely and effective manner. As a part of this team, your work efforts will contribute to the security engineering support to the Software Engineering Center (SEC) Intelligence Support Division (ISD). This will include evaluating system security requirements to ensure all software releases and development systems can be accredited for processing at appropriate classification levels in compliance with applicable policies, regulations, and guidelines.

 

As a DCGS-A RMF-focused security engineer, you will work individually and as part of a team to comprehensively assess RMF controls and monitor known potential security threats and propose appropriate resolutions as needed. 

  • Must be knowledgeable with the Security Technical Implementation Guides (STIG), and all Assessment and Authorization (A&A) policies and directives (i.e., DoDI 8510.01) for RMF
  • Work with security solution developers and independent testers to ensure that authored solutions correctly and fully satisfy the mitigation criteria for reported vulnerabilities
  • Organize and facilitate RMF and other cyber security practices throughout the organization with both contractor and government stakeholders
  • Review applicable regulations governing software development efforts and environment, present applicable findings to multiple stakeholder levels in the software development lifecycle process, and monitor and assist with compliance
  • Prepare systems for receipt of Authority to Operation (ATO) and Interim Authority to Operation (IATO) certifications.
  • Operate manual and automated security vulnerability scanning processes, record and analyze the findings, then report the findings to stakeholders throughout the organization
  • Use subject matter expertise of the assigned systems to proactively seek vulnerabilities prior to their materialization from external sources
  • Experience with developing software compliant with RMF or DIACAP requirements
  • Execute formal and informal tests with objectivity and strict attention to detail
  • Monitor available patches for software and operating systems, and recommend courses of action based on formal policy and risk assessment
  • Install and configure assigned systems, including operating systems, patches, applications and networking connectivity
  • Design and execute custom manual and automated tests for known and potential security vulnerabilities, analyze and present the results, and recommend courses of action to mitigate any adverse findings
  • Comply with ISD PPSS Lifecycle requirements for software baseline handoffs to configuration management, integration and independent testing

Requirements

Minimum Qualifications

  • A bachelor's degree in Computer Science, Mathematics, or other Engineering or Technical discipline and ten (10) years of professional work experience is required.If the candidate has existing qualified IA certifications, twelve (12) additional years of applicable work experience may be substituted for the degree.
  • Department of Defense Information Assurance Certification and Accreditation Program (DIACAP) or Risk Management Framework (RMF) accreditation package development experience
  • Experience with organizational policy and process documents such as:System Security Plan
  • Audit Control Policy
  • Account Management Policy
  • Access Control Policy
  • Working knowledge of Fixed supporting operating systems (Microsoft Windows 7, Server 2008 R2, or Server 2012)
  • Knowledge of Microsoft common services and existing within a Microsoft environment.
  • Experience in administering SQL or Oracle databases
  • Must be self-starter, willing to take complete ownership of complex technical problems
  • Should be able to think clearly and articulate with appropriate level of abstraction his/her thought process on complex technological issues
  • DoD 8570 IAT Level 2 certified (baseline security certification i.e. CompTIA Security+ce) and (technical computing environment training or certification i.e. Server+) prior to start of work
  • Secret, TS/SCI Eligible

Preferred Qualifications

  • CISSP Certified
  • Experience with either DCGS-A v3, DCGS-A Fixed, CDSS, or DE-AS/SS
  • 10+ years’ experience with any Army POR system and fielding
  • Demonstrated knowledge of VMware, SCCM, and database administration
  • Experience in scripting (PowerShell, VBScript, batch files, InstallScript, Wise Script, etc.)
  • MCSE or other related Microsoft certification
  • VCP5 or higher
  • Demonstrated experience with software developers or Lab Management operations
  • Familiarity of project management principles
  • Software development, system engineering, and security engineering experience
  • Experience or training in the DIACAP or RMF accreditation process
  • Certification and Accreditation experience
  • Additional non-engineer skills to support the effort:Technical writing experience
  • Software Quality Control/Quality Assurance experience

About The Organization

Sotera Defense Solutions, Inc. (Sotera) is an agile, mid-size national security technology company that delivers innovative systems, solutions and services in support of the critical missions of the Intelligence Community, Department of Defense, Department of Homeland Security and federal law enforcement agencies charged with ensuring the safety and security of our nation. Our 1,200 employees are focused on delivering essential counterterrorism, cyber operations, intelligence, data analytics, C4ISR and force mobility solutions to our customers throughout the national security community.

 

Sotera Defense Solutions is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.

 

If you require a reasonable accommodation to apply for a position with Sotera through its online applicant system, please contact Sotera’s recruiting team at recruiting@soteradefense.com.  

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed