Next Tier Concepts Inc
Information Systems Security Engineer
Next Tier Concepts Inc, Chantilly, Virginia, United States, 22021
NT Concepts is seeking a Information System Security Engineer to provide design, implementation and administration on the leading the planning, design, and implementation of a modern, on-premises, multi-tenant domain on hyperconverged infrastructure leveraging Nutanix and Cisco UCS. The successful candidate will provide technical leadership in migrating legacy systems and applications to the new domain while ensuring uptime of critical systems. The ideal candidate will have expertise in designing and implementing virtualized infrastructure, automation, and system optimization.
Mission Focus:
We are building an innovative compute, networking, storage, and A/V communications IT stack to support the vital security interests of the United States. Support to this system infrastructure will occasionally require on-call, unscheduled work outside of core hours to respond to mission needs.
Clearance: Active TS/SCI w/ Poly
Location/Flexibility: Chantilly, VA, onsite
Lead the Assessment and Authorization (A&A) and information assurance processes in accordance with Risk Management Framework (RMF) guidelines. Ensure the secure development and maintenance of tools, including managing accreditations and authorization processes; identifying and mitigating security risks and collaborating with stakeholders. Provide consultation, analysis and recommendations on system architecture, system configuration and data flows throughout the life cycle of tool development; including testing, operations, maintenance and decommission. Provide support services that include assisting project personnel in the identification and implementation of appropriate information security controls applicable to their systems, recommending mitigation strategies for vulnerabilities, recommending system exceptions and/or Plan of Action and Milestones, and assisting in the remediation of risk findings identified by Security. Maintain close liaison with ISSM office, with a focus on synthesizing ISSM guidance for streamlined and low-risk implementation for systems. Work with team to write and successfully execute Risk Mitigation Framework (RMF) and Plans of Action and Milestones (POA&Ms) to address cyber security issues and liens Serve as the office representative to relevant Cloud and Security related groups. Qualifications:
Clearance: Active TS/SCI with Poly Bachelor's degree in a related field with a minimum of 12 years of relevant experience; or a Master's degree with 10 years of experience; or a Doctorate with 8 years of experience. Proven experience in supporting A&A and information assurance processes. Strong understanding of DISA STIGs and hands-on experience with STIG Viewer. Comprehensive knowledge of current security risks, protocols, and best practices. Proven experience in supporting A&A and information assurance processes. Strong understanding of DISA STIGs and hands-on experience with STIG Viewer. Comprehensive knowledge of current security risks, protocols, and best practices. Physical Requirements:
Prolonged periods sitting at a desk and working on a computer. Must be able to lift up to 10-15 pounds at times.
If you are a motivated and experienced Information Systems Security Engineer looking to lead the design and implementation of a modern, on-premises, multi-tenant domain, we encourage you to apply for this exciting opportunity.
Mission Focus:
We are building an innovative compute, networking, storage, and A/V communications IT stack to support the vital security interests of the United States. Support to this system infrastructure will occasionally require on-call, unscheduled work outside of core hours to respond to mission needs.
Clearance: Active TS/SCI w/ Poly
Location/Flexibility: Chantilly, VA, onsite
Lead the Assessment and Authorization (A&A) and information assurance processes in accordance with Risk Management Framework (RMF) guidelines. Ensure the secure development and maintenance of tools, including managing accreditations and authorization processes; identifying and mitigating security risks and collaborating with stakeholders. Provide consultation, analysis and recommendations on system architecture, system configuration and data flows throughout the life cycle of tool development; including testing, operations, maintenance and decommission. Provide support services that include assisting project personnel in the identification and implementation of appropriate information security controls applicable to their systems, recommending mitigation strategies for vulnerabilities, recommending system exceptions and/or Plan of Action and Milestones, and assisting in the remediation of risk findings identified by Security. Maintain close liaison with ISSM office, with a focus on synthesizing ISSM guidance for streamlined and low-risk implementation for systems. Work with team to write and successfully execute Risk Mitigation Framework (RMF) and Plans of Action and Milestones (POA&Ms) to address cyber security issues and liens Serve as the office representative to relevant Cloud and Security related groups. Qualifications:
Clearance: Active TS/SCI with Poly Bachelor's degree in a related field with a minimum of 12 years of relevant experience; or a Master's degree with 10 years of experience; or a Doctorate with 8 years of experience. Proven experience in supporting A&A and information assurance processes. Strong understanding of DISA STIGs and hands-on experience with STIG Viewer. Comprehensive knowledge of current security risks, protocols, and best practices. Proven experience in supporting A&A and information assurance processes. Strong understanding of DISA STIGs and hands-on experience with STIG Viewer. Comprehensive knowledge of current security risks, protocols, and best practices. Physical Requirements:
Prolonged periods sitting at a desk and working on a computer. Must be able to lift up to 10-15 pounds at times.
If you are a motivated and experienced Information Systems Security Engineer looking to lead the design and implementation of a modern, on-premises, multi-tenant domain, we encourage you to apply for this exciting opportunity.