Information Assurance/Security Engineer III
Springfield, VA

Job Description

Overview:

Every day at Perspecta, we enable hundreds of thousands of people to take on our nation's most important work. We're a company founded on a diverse set of capabilities and skills, bound together by a single promise: we never stop solving our nation's most complex challenges. Our team of engineers, analysts, developers, investigators, integrators and architects work tirelessly to create innovative solutions. We continually push ourselves-to respond, to adapt, to go further. To look ahead to the changing landscape and develop new and innovative ways to serve our customers.

Perspecta works with U.S. government customers in defense, intelligence, civilian, health care, and state and local markets. Our high-caliber employees are rewarded in many ways-not only through competitive salaries and benefits packages, but the opportunity to create a meaningful impact in jobs and on projects that matter.

Perspecta's talented and robust workforce-14,000 strong-stands ready to welcome you to the team. Let's make an impact together.

Perspecta is an AA/EEO Employer - Minorities/Women/Veterans/Disabled and other protected categories

Responsibilities:

Provides technical and programmatic Information Assurance Services to internal and external customers in support of network and information security systems. Designs, develops and implements security requirements within an organization's business processes. Prepares documentation from information obtained from customer using accepted guidelines such as RMF (Risk Management Framework). Prepares test plans. Provides assessment and authorization (A&A) support in the development of security and contingency plans and conducts complex risk and vulnerability assessments. Analyzes policies and procedures against Federal laws and regulations and provides recommendations for closing gaps. Develops and completes system security plans and contingency plans. Recommends system enhancements to improve security deficiencies. Develops, tests and integrates computer and network security tools. Secures system configurations and installs security tools, scans systems in order to determine compliancy and report results and evaluates products and various aspects of system administration. Conducts security program audits and develops solutions to lessen identified risks. Develops strategies to comply with privacy, risk management, and e-authentication requirements. Provides information assurance support for the development and implementation of security architectures to meet new and evolving security requirements. Evaluates, develops and enhances security requirements, policy and tools. Provides assistance in computer incident investigations. Performs vulnerability assessments including development of risk mitigation strategies.

Program Specific Description: The NUO program is a contract providing SETA (Systems Engineering Technical Advisor) services to the IC customer with a focus on RF satellite communications. NUO contract support is part of the customer team focused on all aspects of the systems life cycle including conops development, capturing requirements, working with developers to deliver capability, testing to ensure capabilities meet requirements, transition to operations and operations support. The program is comprised of 90 FTE supporting several locations in the Northern Virginia region. Part of the requirements for each program include those necessary to comply with ICD-503.

Specific position description: The program seeks an Info Security Systems Engineer to support the customer's team in development, implementation and maintenance of its IA program including system design evaluation for ICD 503 policy compliance, continuous monitoring/scanning and patch management programs. Duties include maintaining systems as well as working with SETA and development contractors to work through required C & A processes, including building the bodies of evidence (BOE) and coordinating with stakeholders on both the NUO customer program side, as well as the agency level security component. The position supports a customer that is responsible for many different projects and will be required to help keep multiple projects organized using schedule and task management tools.

Qualifications:

Requried:

* Requires 5 to 8 years with BS or 3 to 5 years with MS or 0 to 2 years with PhD.

(note: 4 years of relevant experience with the NUO customer information systems security process can be substituted.)

* Requires at least a CompTIA Security+CE certification and willingness to seek a CISSP certification.
* Must be a team player and possess a strong ability to work collaboratively with a diverse team as well as work independently with minimal supervision
* Working knowledge of digital communications and related IT communications technologies
* Demonstrated ability to work effectively at all levels in an organization.
* Demonstrated ability to quickly ramp up to support the customer's needs, clearly communicate (orally & written) ideas, work autonomously, take the initiative to provide creative alternatives to intractable challenges or systemic problems.
* Demonstrated ability to work with customers providing detailed and unbiased feedback, guidance, and recommendations

Desired Qualifications:

* Three years of prior customer experience in supporting their information system security processes (RMF, ICD-503) and tools.
* Experience with C2S cloud environments and designing systems to work the cloud.
* Experience with XACTA, which is the tool used to maintain asset security compliance records & status.