Information Systems Security Specialist II SBG

SBG a DSS Inc. company specializing in engineering information technology cyber-security intelligence and training is looking for a hard-working results-oriented Information Systems Security Specialist II and III. We are seeking highly motivated individuals with a positive attitude looking to join our rapidly growing company. The ideal candidates for this position have strong attention to detail analytical and ethical who can excel in a very fast-paced government contractor environment. This is an on-site role based inPhiladelphia PA.

**Contingent Upon Contract Award**

OVERVIEW

The Information System Security Engineer II and III is responsible for supporting all aspects of a Program Information Assurance (IA) processes tailored to include minimum qualification standards fundamental awareness and familiarity to demonstrated competency with specific experience in Cyber Security Engineering Test & Evaluation (T&E) and/or Security Control Assessor (SCA) under a Certification & Accreditation (C&A) and/or Assessment & Authorization (A&A) process. * Must have active Secret clearance and be a US Citizen.

The Information System Security Specialist:

• Support all aspects of Program Information Assurance (IA) activities across the Certification & Accreditation (C&A) and/or Assessment & Authorization (A&A) lifecycle.

• Apply knowledge and experience in cybersecurity engineering Test & Evaluation (T&E) and/or Security Control Assessment (SCA) roles.

• Demonstrate working knowledge of the Risk Management Framework (RMF) and/or prior experience with Defense Information Assurance Certification and Accreditation Process (DIACAP).

• Interpret and apply relevant security policies and guidance documents to support the development and maintenance of IA artifacts and traceability documents required for Authority to Operate (ATO) compliance.

• Evaluate and validate security solutions to ensure they meet system requirements for handling up to classified information.

• Assist in the development and enforcement of system security policies ensuring alignment with configuration management and change control processes.

The preceding functions are examples of the work performed by employees assigned to this job classification. Management reserves the right to add modify change or rescind work assignments and make a reasonable accommodation as needed.

• (3) years (For Level II/Mid) or Seven (7) years (For Level III/Senior) professional experience capturing and refining information security operational and security requirements and ensuring those requirements are properly addressed through purposeful architecting design development and configuration; and implementing security controls configuration changes software/hardware updates/patches vulnerability scanning and securing configurations.

• Demonstrated working knowledge of the Risk Management Framework (RMF) process.

• Hands-on experience with Information Assurance tools such as:

  • DISA Enterprise Mission Assurance Support Service (eMASS)

  • Assured Compliance Assessment Solution (ACAS)

  • Interim Security Control Assessor (SCA) qualification may be required.

• Familiarity with cybersecurity policies and guidance to support:

  • Preparation and maintenance of security artifacts

  • Creation of traceability documentation

  • Compliance with Authority to Operate (ATO) requirement

• Ability to evaluate and validate security solutions for systems processing up to classified information.

• Experience maintaining and/or supervising the operational security posture of information systems or programs.

• Experience developing and enforcing system security policies including support for configuration management and change control processes.

• At least 3 (for Mid Level) and 7 (for Senior Level) years of experience supporting one or more of the following within DoD or Federal environments:

  • Network and system security

  • Cybersecurity Service Providers (CSSP)

  • Cyber Red Teams

• With at least 3 of the following 6 focus areas:

  • Vulnerability Analysis

  • Network Security Monitoring

  • Incident Response / Forensics

  • Penetration Testing / Red Teaming

  • CND Infrastructure Support

  • CND Incident Response

EDUCATION:

Bachelors degree in computer science Information Technology or an equivalent degree from an accredited college or university.

CERTIFICATION:

Required to have and maintain and current DoD 8570.1 IAT-II (Mid-Level) (or IAT-III for Senior-Level) Certifications.

PHYSICAL DEMANDS:

SBG Inc. is an Equal Opportunity Employer

If you need an accommodation seeking employment with SBG Inc. please email or call . Accommodations are made on a case-by-case basis.