Hybrid – Computer Security Systems Specialist #3338

Careers

  • US-Remote Located in DC/MD/VA
  • Cybersecurity & Intelligence
Apply Now

GovCIO is a team of transformers—people who are passionate about transforming government I.T. We believe in making a difference by developing digital strategies and delivering the technology- related innovation that improves governmental operations each day.

 

But we can’t do it alone. We welcome and nurture an inclusive and diversified work culture. Because different backgrounds, experiences, abilities, and perspectives make us better decision-makers, problem solvers, and creators. We’re changing the face of I.T. – from our diverse staff to the end-products we develop. And we’re excited to expand our team. Are you ready to be a transformer?

  

Responsibilities

Computer Security Systems Specialist 3 provides oversight of cybersecurity analysis support to assist at the program and system level, pertinent to Assessment and Authorization (A&A) actions for conducting Tier III RMF tasks, and provides their expertise in the performance of the following activities:

  • Assist program on developing cybersecurity documentation, Plan of Actions & Milestones (POA&M), enterprise mission assurance support service (eMASS) submissions, and system security engineering efforts.
  • Develop written artifacts for IT security vulnerability testing via DCSA authorized scanning tool(s).
  • Develop, update, and provide for Government review, all DoD and other federal agency- specific documentation specified in Government A&A Framework and DoDI 8510.01, as applicable.
  • Maintain all DCSA & PM managed system records and documents supporting compliance with federal laws, directives, policies and procedures, and provide at all times complete access to the records. Store all A&A related documentation within a Government A&A Repository.
  • Conduct A&A related security test and evaluations using Government mandated tools and test procedures.
  • Develop or contribute to A&A related POA&Ms and Risk Assessment Reports as directed by applicable policy and guidance.
  • Create and update SOPs and guides on configuration, administration, report generation and analysis of eMASS (or similar tool), at least annually.
  • Scan IT products using Government approved scanning tools to identify potential risk to the Government production network.
  • Perform a wide range of computer security duties, including architectures, firewalls, electronic data traffic, and network access.
  • Participate in the certification and accreditation processes; perform technical vulnerability assessments of computer security.
  • Provide business continuity and disaster recovery support.
  • Engage in intrusion detection and prevention; provide incident reporting and response support.
  • Conduct ongoing monitoring of computer security requirements and compliance, and maintain system security plans and risk mitigation plans.
  • Train clients in proper computer security measures and prevention.

 Required Qualifications

 

Bachelor’s Degree with 8+ years (or commensurate experience)

  • Knowledge of Security Information and Event Management (SIEM) tools, network and operating system security features (e.g., Windows, Linux, Ubuntu) and network security technologies (e.g., firewalls, filtering routers, authentication mechanisms, IPSEC VPN, server hardening).
  • Have hands-on experience with tools and technologies used throughout secure Systems Development Life Cycle (SDLC).
  • Hands on experience with managing security awareness and training such as online training modules, lunch and learns, periodic security communication, and simulated phishing campaigns.
  • Demonstrated experience drafting documentation including functional and system requirements, configuration management plans, disaster recovery plans, user guides, system security plans, and production data waivers.
  • Familiarity with attack vectors and its customer impact.
  • Demonstrated experience in the following areas of:
    • Risk assessment procedures, policy formation, role-based authorization methodologies, authentication technologies and security attack pathologies
    • Perimeter security controls firewall, IDS/IPS, network access control and network segmentation
    • Router, switch and VLAN security; wireless security
    • Security concepts related to DNS, routing, authentication, VPN, proxy services and DDOS mitigation technologies
  • Security + w/ce certification
  • Secret Clearance with the ability to obtain TS/SCI

Preferred Skills and Experience

  • CASP, CISSP or CISM certification
  • TS/SCI clearance
  • Experience in the information security field with exposure to audit, risk management, data privacy, and regulatory and compliance practices.

#cjpost

COVID Policy: New employees will be required to adhere to the Company’s and its clients’ COVID-19 safety procedures. In the event that the COVID-19 vaccination mandate for Federal Contractors is enforced, you must become fully vaccinated or request and be approved for an exemption. Employees working onsite at a client location must comply with our client’s COVID-19 requirements.

GovCIO is a team of professionals who want to make a difference. And that can only happen with a diverse, happy, and cared-for team. So, we prioritize your well-being, equity for all and look for ways to make work a better place for each of us every day.

We are an Equal Opportunity Employer. All qualified applicants receive consideration for employment without regard to race, ethnicity, religious affiliation, gender, gender identity or expression, sexual orientation, national origin, or disability status. EOE AA M/F/Vet/Disabled

Apply Now

Not The Right Fit?

Is this not the job you’re looking for? That’s ok! We’ve got plenty of other opportunities for you to peruse. Search all of our open positions by your area of interest or location.

View All Jobs