Apex Systems
Information Systems Security Engineer (ISSE) - Placement
Apex Systems, Washington, District of Columbia, us, 20022
Overview
Seeking high-level IT Professionals to provide cyber security and security engineering services including system security engineering, cybersecurity risk assessments, and security architecture support. The ISSE shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established cybersecurity standards and regulations and recommended mitigation strategies. Roles and Responsibilities
Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of secure networking, computing, and enclave environments Support security planning, assessment, risk analysis, and risk management Experience with Risk Management Framework (RMF), NIST SP 800-53, Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) Compliance Checker Prepare and review program documentation to include Risk Assessment Reports, Accreditation Packages, and security policy guides Continuous Monitoring – Plan of Action & Milestones (POAMs) – Working with engineers to resolve formal security findings from the security assessment and/or the scans and maintain the POAM Knowledge of SIPR and JWICS Assessment & Authorization (A&A) process Document the various security control implementations as well as gather the artifacts that support the Risk Management Framework (RMF) and ICD 503 Security Accreditation Interact with the customer and other project team members Identify overall security requirements for the proper handling of Government data Develop and implement security designs for new or existing network system(s). Ensure that the design of hardware, operating systems, and software applications adequately address cybersecurity requirements for the IS and Network Environment Identify information protection needs for an IS and Network Environment Define IS and Network Environment security requirements in accordance with applicable cybersecurity requirements Develop approaches to mitigate IS and Network Environment vulnerabilities and recommend changes to network or network system components as needed Work closely with system administrators to validate patching, AV definitions and other security tools are updated/not vulnerable Review requests for software installation and conduct technical risk assessment on implementation of the software Applies system security engineering expertise in one or more of the following: Building, deploying and patching HBSS Windows and ACAS RedHat Linux 7.9 and 8 servers Building, maintaining, and patching all ePO, Security Center, and Nessus servers Providing Security Center accounts for Vulnerability Managers to scan devices within ACAS Experience with ACAS scan results and how to remediate vulnerability findings Knowledge of the process of obtaining license for all HBSS ePO’s and Tenable Security Centers Expertise in the process of obtaining HBSS and ACAS kick start ISO’s from DISA Extensive knowledge of building virtual servers, deploying and patching all McAfee modules via the ePO, configuring McAfee policies for each environment STIG’ing HBSS Windows OS, McAfee policies to comply with benchmarks (Not reviewing or confirming), STIG’ing ACAS RHEL servers Ability to Run SCAP scans on Windows and RHEL servers Displays knowledge of updating RedHat 7.9 and 8 rpm’s as they are released Setup RedHat yum local rpm repositories to patch offline ACAS servers Deploying Rogue sensors on each subnet, Identifying Rogue subnets and rogue endpoints Able to troubleshoot Security Center and Nessus scanner issues Required Qualifications
Qualified candidates must possess a TS//SCI security clearance Security+ 7+ years of experience in understanding of all aspects of systems engineering, including design and architecture Demonstrated capability to identify security risks throughout information system network structures to include the Operating Systems, hardware, and various data transfer protocols Effective communication and presentation skills (i.e., ability to present ideas effectively in formal and informal situations in group and individual settings) Strong planning, organizational, and time management skills (i.e., ability to effectively plan, organize, and prioritize work, and to control and follow up to assure work completion) Demonstrated initiative (i.e. initiate appropriate action without being directed) and ability to work independently Strong interpersonal skills (e.g., ability to work effectively on teams, communicate effectively, work/interact effectively and amicably with people from diverse backgrounds and cultures and with diverse personal attributes) Preferred Qualifications
Experience with eMASS Experience with Xacta Ability to Run SCAP scans on Windows and RHEL server Knowledge of the process of obtaining licenses for all HBSS ePO’s and Tenable Security Centers Through understanding of Information Security principles and Risk Assessment techniques Support the Risk Management Framework (RMF) process using applicable tools EEO Employer Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex, age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or 844-463-6178.
#J-18808-Ljbffr
Seeking high-level IT Professionals to provide cyber security and security engineering services including system security engineering, cybersecurity risk assessments, and security architecture support. The ISSE shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established cybersecurity standards and regulations and recommended mitigation strategies. Roles and Responsibilities
Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of secure networking, computing, and enclave environments Support security planning, assessment, risk analysis, and risk management Experience with Risk Management Framework (RMF), NIST SP 800-53, Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) Compliance Checker Prepare and review program documentation to include Risk Assessment Reports, Accreditation Packages, and security policy guides Continuous Monitoring – Plan of Action & Milestones (POAMs) – Working with engineers to resolve formal security findings from the security assessment and/or the scans and maintain the POAM Knowledge of SIPR and JWICS Assessment & Authorization (A&A) process Document the various security control implementations as well as gather the artifacts that support the Risk Management Framework (RMF) and ICD 503 Security Accreditation Interact with the customer and other project team members Identify overall security requirements for the proper handling of Government data Develop and implement security designs for new or existing network system(s). Ensure that the design of hardware, operating systems, and software applications adequately address cybersecurity requirements for the IS and Network Environment Identify information protection needs for an IS and Network Environment Define IS and Network Environment security requirements in accordance with applicable cybersecurity requirements Develop approaches to mitigate IS and Network Environment vulnerabilities and recommend changes to network or network system components as needed Work closely with system administrators to validate patching, AV definitions and other security tools are updated/not vulnerable Review requests for software installation and conduct technical risk assessment on implementation of the software Applies system security engineering expertise in one or more of the following: Building, deploying and patching HBSS Windows and ACAS RedHat Linux 7.9 and 8 servers Building, maintaining, and patching all ePO, Security Center, and Nessus servers Providing Security Center accounts for Vulnerability Managers to scan devices within ACAS Experience with ACAS scan results and how to remediate vulnerability findings Knowledge of the process of obtaining license for all HBSS ePO’s and Tenable Security Centers Expertise in the process of obtaining HBSS and ACAS kick start ISO’s from DISA Extensive knowledge of building virtual servers, deploying and patching all McAfee modules via the ePO, configuring McAfee policies for each environment STIG’ing HBSS Windows OS, McAfee policies to comply with benchmarks (Not reviewing or confirming), STIG’ing ACAS RHEL servers Ability to Run SCAP scans on Windows and RHEL servers Displays knowledge of updating RedHat 7.9 and 8 rpm’s as they are released Setup RedHat yum local rpm repositories to patch offline ACAS servers Deploying Rogue sensors on each subnet, Identifying Rogue subnets and rogue endpoints Able to troubleshoot Security Center and Nessus scanner issues Required Qualifications
Qualified candidates must possess a TS//SCI security clearance Security+ 7+ years of experience in understanding of all aspects of systems engineering, including design and architecture Demonstrated capability to identify security risks throughout information system network structures to include the Operating Systems, hardware, and various data transfer protocols Effective communication and presentation skills (i.e., ability to present ideas effectively in formal and informal situations in group and individual settings) Strong planning, organizational, and time management skills (i.e., ability to effectively plan, organize, and prioritize work, and to control and follow up to assure work completion) Demonstrated initiative (i.e. initiate appropriate action without being directed) and ability to work independently Strong interpersonal skills (e.g., ability to work effectively on teams, communicate effectively, work/interact effectively and amicably with people from diverse backgrounds and cultures and with diverse personal attributes) Preferred Qualifications
Experience with eMASS Experience with Xacta Ability to Run SCAP scans on Windows and RHEL server Knowledge of the process of obtaining licenses for all HBSS ePO’s and Tenable Security Centers Through understanding of Information Security principles and Risk Assessment techniques Support the Risk Management Framework (RMF) process using applicable tools EEO Employer Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex, age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or 844-463-6178.
#J-18808-Ljbffr