Alpha Omega Integration LLC
Information System Security Engineer with Security Clearance
Alpha Omega Integration LLC, Alexandria, Virginia, us, 22350
Job Title: Information System Security Engineer
Clearance Required: US Citizen, Active Secret
Work Location: Alexandria, VA area (hybrid work option available)
Alpha Omega is looking for a focused, driven self–starter to work in a highly dynamic, cross–functional, complex IT environment. The Security Engineer (SE) will assist and support C5ISC's security posture tracking activities of USCG systems in Alexandria, VA.
The SE will report directly to the Alexandria Project Manager (PM), while independently leading and or conducting enterprise and system–level SE tasks.
Key Responsibilities:
Performs network vulnerability scanning using ACAS, and performs vulnerability analysis, vulnerability reporting in accordance with the provisions of DoD, DISA, and NIST policies, directives, and guidelines. Diagnoses and resolves ACAS vulnerability scanning credential failures, false positives, scanning issues and reporting issues. Provides detailed reports including data, analyses, and conclusions upon completion of tests, scans, and assessments, including mitigations and, if indicated, appropriate escalation of identified risks and vulnerabilities. Performs other Network Security/Information Assurance tasks as assigned. Conduct reviews of NIST, OMB, DHS, DoD, FISMA policies, mandates, and vendor publications related to enterprise technologies and recommend changes to organizational policy and procedures affected by new guidance. Support authoritative order review, research, impact assessment, distribution, compliance determination, tracking, and reporting. Monitors identified vulnerabilities throughout their lifecycle from discovery to mitigation using ACAS, HBSS, STIG Viewer or other industry tools. Facilitate the Plan of Actions and Milestones (POA&M) program to ensure customer systems have accurately and fully provided information for POA&M activities. Capture, store, analyze and present Cybersecurity data for stakeholder situational awareness at appropriate command and senior management levels both local and enterprise wide. Participate in the development, review and de–confliction of customer information system security policy and standards, including writing guidelines, standards, procedures, and other technical documentation (technical roadmaps, project plans, etc.). Support the development and maintenance of system asset lists, hardware, and software baselines. Provide detailed security–related reports including data, analyses, and conclusions upon completion of tests, scans, and assessments, including mitigations and, if indicated, appropriate escalation of identified risks and vulnerabilities. Keep management informed of impending areas of concern, verbally and in writing Required Qualifications:
Five (5) years of related experience Fully qualified, by qualification standards and requirements in accordance with DoDD 8140.01 and DoDM 8140.03, DCWF Reference 511, 622, 722, Level II/Level III Experience with industry tools, such as STIG viewer and ACAS Experience with IAVMs, DISA STIGs, POA&Ms, and related Federal/DoD policies and regulation Experience with regulatory interpretation, risk analysis, systematic data gathering, and presentation Experience with MS Office and MS Teams Preferred Qualifications:
Fully qualified, by qualification standards and requirements in accordance with DoDD 8140.01 and DoDM 8140.03, DCWF Reference 511, 622, 722, Level III; CISSP certification in good standing Bachelor's degree or higher in IT Experience and familiarity with DevSecOps principles especially in terms of secure coding best practices Background in some or all the following: Networking, Security Engineering, Systems Engineering, Configuration Management. The likely salary range for this position is $100k–$130k. Alpha Omega Integration, LLC (Alpha Omega) is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.
#J-18808-Ljbffr
Performs network vulnerability scanning using ACAS, and performs vulnerability analysis, vulnerability reporting in accordance with the provisions of DoD, DISA, and NIST policies, directives, and guidelines. Diagnoses and resolves ACAS vulnerability scanning credential failures, false positives, scanning issues and reporting issues. Provides detailed reports including data, analyses, and conclusions upon completion of tests, scans, and assessments, including mitigations and, if indicated, appropriate escalation of identified risks and vulnerabilities. Performs other Network Security/Information Assurance tasks as assigned. Conduct reviews of NIST, OMB, DHS, DoD, FISMA policies, mandates, and vendor publications related to enterprise technologies and recommend changes to organizational policy and procedures affected by new guidance. Support authoritative order review, research, impact assessment, distribution, compliance determination, tracking, and reporting. Monitors identified vulnerabilities throughout their lifecycle from discovery to mitigation using ACAS, HBSS, STIG Viewer or other industry tools. Facilitate the Plan of Actions and Milestones (POA&M) program to ensure customer systems have accurately and fully provided information for POA&M activities. Capture, store, analyze and present Cybersecurity data for stakeholder situational awareness at appropriate command and senior management levels both local and enterprise wide. Participate in the development, review and de–confliction of customer information system security policy and standards, including writing guidelines, standards, procedures, and other technical documentation (technical roadmaps, project plans, etc.). Support the development and maintenance of system asset lists, hardware, and software baselines. Provide detailed security–related reports including data, analyses, and conclusions upon completion of tests, scans, and assessments, including mitigations and, if indicated, appropriate escalation of identified risks and vulnerabilities. Keep management informed of impending areas of concern, verbally and in writing Required Qualifications:
Five (5) years of related experience Fully qualified, by qualification standards and requirements in accordance with DoDD 8140.01 and DoDM 8140.03, DCWF Reference 511, 622, 722, Level II/Level III Experience with industry tools, such as STIG viewer and ACAS Experience with IAVMs, DISA STIGs, POA&Ms, and related Federal/DoD policies and regulation Experience with regulatory interpretation, risk analysis, systematic data gathering, and presentation Experience with MS Office and MS Teams Preferred Qualifications:
Fully qualified, by qualification standards and requirements in accordance with DoDD 8140.01 and DoDM 8140.03, DCWF Reference 511, 622, 722, Level III; CISSP certification in good standing Bachelor's degree or higher in IT Experience and familiarity with DevSecOps principles especially in terms of secure coding best practices Background in some or all the following: Networking, Security Engineering, Systems Engineering, Configuration Management. The likely salary range for this position is $100k–$130k. Alpha Omega Integration, LLC (Alpha Omega) is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.
#J-18808-Ljbffr