Role: Information Assurance Engineer – Senior
Location: Fort Knox, KY OR Remote
Education/Certifications: MA/MS preferred; IAT Level II; Computing Environment Certification
Years of Experience: 10+
Clearance Level & Investigation: Secret
IA Cert Level (DoD 8570.01): IAT Level II (Security+, CCNA-Security, CySA+, CN, or SSCP recommended)
Computing Environment Certifications: Required
Job Description:
Qualifications:
- Responsible for all activities relating to IA procedures and systems.
- Develops information systems assurance programs and control guidelines.
- Confers with and advises subordinates on administrative policies and procedures and resolving technical problems, priorities, and methods.
- Consults with and advises other sections regarding internal controls and security procedures.
- Prepares activity and progress reports relating to information systems audit function.
Specific Responsibilities:
- Performs research, makes recommendations, and provides Cloud computing support to Government representatives regarding migration and management of Command data to identified Cloud Service Provider.
- Provides cybersecurity cloud capabilities and support (Cybersecurity standards, compliance validation and reporting, Access Control, Assessment and Authorization, and Incident response) to meet RMF compliance and deliverables.
- Oversees delivery of cloud security capabilities.
- Provides surge support, technical guidance, and expertise in the areas of Cybersecurity to support Customer, Mission Partners, IMOs, ISSOs, IS Owners, Software Developers, Network System, and Database Administrators IAW all related cyber regulations and directives; provide results in reports, briefs, and deliverables as required to the appropriate Government representative.
- Provide Cybersecurity surge support in the event of real world or additional requirements in support of RMF compliance checks and documentation review across authorization boundaries, including, but not limited to:
- Perform security review preparation for all security controls associated with RMF applicable to an assigned authorization boundary based upon the Confidentiality, Integrity, or Availability designation.
- Perform on site or off-site reviews of all information systems to audit and validate compliance with associated security controls.
- Perform as reviewers of audit teams during inspections, assessments, evaluations, audits, etc.
- Provide reports to the assigned Government representative as required.
- Provide reviews, validation, and deliverable efforts in support of compliance or non-compliance IAW CCI, STIGs and SRGs for each finding or vulnerability IAW RMF.
- Provide embedded Cybersecurity support across Customer or other supported organizations as required.