Responsibilities:
The Information Systems Security Engineer/Officer is responsible for supporting Engineering and Operations infrastructure solutions and strategic adherence to all aspects of the Information Assurance (IA) program as stipulated by various U.S. Government requirements including (but not limited to): Director of Central Intelligence Directives (DCID), IC Directive (ICD) 503 and associated NIST publications.
- Prepares security test and evaluation plans.
- Provides certification and accreditation support in the development of security and contingency plans and conducts complex risk and vulnerability assessments.
- Analyzes policies and procedures against Federal laws and regulations and provides recommendations for closing gaps.
- Recommends system enhancements to improve security deficiencies. Develops, tests, and integrates computer and network security tools.
- Secures system configurations and installs security tools, scans systems to determine compliancy and report results and evaluates products and various aspects of system administration.
- Conducts security program audits and develops solutions to lessen identified risks.
- Provides information assurance support for the development and implementation of security architectures to meet new and evolving security requirements.
- Assists in computer incident investigations.
- Performs vulnerability assessments including development of risk mitigation strategies.
- Prepares Assessment and Authorization (A&A) documents and procedures. Interface with other IA team members, other security disciplines (industrial security, physical security, special programs security, etc.), program personnel, and Government security representatives.
Qualifications:
- Minimum bachelors degree and 8 years of experience
- TS/SCI clearance adjudication or ability to obtain SCI and pass a poly
- Track record of progressively responsible information assurance experience in ICD 503 certification and accreditation
- ISSEISSO shall be compliant with DoD 8140 and any other certification/training required by DoD for role
- Minimum IAT Level III certification
- Must maintain required technical and security training relative to cybersecurity duties, in accordance with DoD instruction 8510.01, Risk Management Framework for DoD Systems, NIST Special Publication 800-53, Recommended Security Controls for Federal Information Systems and Organizations and DoD Directive 8570.01-M, IA Workforce Improvement Program
- ISSE/ISSO must have certifications and/or comprehensive hands-on technical experience in the technology area(s) of their assigned system(s) in order to effectively carry out their duties
- Familiarization with NIST Special Publication 800-37 Revision 1, Guide for Applying the Risk Management Framework to Federal Information Systems?, Committee on National Security Systems Instructions (CNSSI) 1253, and NIST SP 800-53 Revisions 3 and 4, SP800-39, SP 800-30
Peraton Overview:
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the worlds leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the cant be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how were keeping people around the world safe and secure.
Target Salary Range: $146,000 - $234,000. This represents the typical salary range for this position based on experience and other factors.