Staff Information Assurance/Security Engineer

Job not on LinkedIn

November 13

⚔️ Virginia – Remote

Although this job is listed in Virginia, this company may be open to hiring remote in other states.

💵 $77.6k - $129.6k / year

⏰ Full Time

🔴 Lead

👮‍♂️ Cybersecurity / Security Engineer

Apply Now

Receive Emails with Similar Jobs

AMERICAN SYSTEMS

WebsiteLinkedInAll Job Openings

Engineering • IT Services • Government

AMERICAN SYSTEMS is an employee-owned company that specializes in information technology, engineering, and analytical support. Focused on mission support, they provide services such as test and evaluation, training, and digital engineering. With a strong commitment to veteran outreach and a diverse workforce, AMERICAN SYSTEMS aims to empower its employees in their careers while serving a wide array of government contracts.

1001 - 5000 employees

Founded 1975

🏛️ Government

📋 Description

• Conduct reviews, audits, and technical inspections to identify and mitigate potential security weaknesses and ensure that all security features applied to a system are implemented and functional. • Maintain day-to-day security posture and continuous monitoring of the cybersecurity tools to protect classified information systems. • Conduct security reviews in accordance with NIST guidelines, conduct security assessments, and conduct control testing to ensure that all relevant controls are thoroughly assessed. • Ensure security policies, procedures, and recommendations comply with FISMA, NIST, and Organizational guidelines as well as technical best practices. • Maintain security Assessment and Authorization (A&A) documentation of assigned systems in accordance with the Risk Management Framework (RMF), performing audits and incident response activities, interfacing with clients and/or Government personnel, and maintaining a thorough understanding of NIST 800-53 controls.

🎯 Requirements

• U.S. Citizenship and active Secret clearance • Bachelor's degree and 6-8 years of related work experience • Cybersecurity certification at the DoDI 8140.02 intermediate level (Security+ for example) • Demonstrated experience with the DoD RMF process, specifically as it pertains to securing and accrediting boundaries within a DoD enclave • Demonstrated experience with using security tools such as SCC/SCAP and ACAS in order to identify and address mitigation of security findings • Advanced knowledge of DoD STIGS applicable to MS technology, MS Best Practices, and RedHat Linux technology. • Advanced knowledge of MS Active Directory, MS servers, and RedHat Linux servers • Advanced knowledge of Trellix Endpoint Security Solutions, MS Enterprise Windows Defender, SCC/SCAP scanning, and ACAS scanning • Minimum 6-8 years of experience in MS and RedHat Linux systems administration and working on complex systems and software programs • Experience working within a disciplined, process-based Configuration Management Framework

🏖️ Benefits

• Employee Stock Ownership Plan (ESOP) • Flexible managing work hours and personal needs with a single accrual leave plan