Job Summary: 

• Develop and implement information assurance standards and procedures
• Coordinate, develop and evaluate security programs for an organization
• Recommend security solutions to support the information assurance guidelines and the customer requirements
• Perform vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle
• Analyze information assurance-related technical problems 
• Provide advanced engineering and technical support in solving these problems
• Perform analysis, design, and development of security features for system architectures
• Design, develop, engineer, and implement solutions that meet security requirements
• Provide integration and implementation of the computer system security solution
• Ensure that all information systems are functional and secure
• Identify, report, and resolve security violations
• Establish and satisfy information assurance and security requirements based upon the analysis of user, policy, regulatory, and resource demands

Skills on Resume: 

• Information Assurance (Hard Skills)
• Security Programs (Hard Skills)
• Risk Analysis (Hard Skills)
• Technical Problem-Solving (Soft Skills)
• Engineering Support (Hard Skills)
• Security Design (Hard Skills)
• System Integration (Hard Skills)
• Regulatory Compliance (Hard Skills)

Job Summary: 

• Provide the United States Coast Guard (USCG) with tailored documentation to support their security authorization
• Support Security Test and Evaluation/Security Assessment activities
• Support USCG system accreditation and Ongoing Assessment and Ongoing Authorization processes and activities to ensure the implementation of NIST SP 800-53 security controls
• Manage all Information Assurance activities
• Responsible for enabling the ongoing assessment and ongoing authorization of the CDM solution utilizing the Risk Management Framework (RMF) and automated Security Assessment and Authorization tools
• Implement the Risk Management Framework policy and application across the CDM program
• Provide SME knowledge of NIST Security Controls and Control Implementation methodologies for the SA&A process
• Develop and maintain System Security Plan, Security Assessment Report (SAR), Plans of Action and Milestones and other security documentation
• Support POA&M remediation activities and the creation of POA&M closure documentation
• Responsible for managing independent security-related projects/processes in support of USCG program requirements
• Provide SME support and input supporting system design, solutions, and procedures
• Responsible for assessing and developing authorization packages for technical solutions
• Collaborate with internal expertise and deep analysis of the technical solution
• Collaborative and communicates with parties within and outside of own job function
• Understands and supports Privacy Compliance Activities to include the development of Privacy Impact Analysis (PIA), Privacy Threshold Analysis (PTA), and Statement of Record Notices (SORN)
• Facilitates and monitors information assurance (IA) processes for new projects
• Develop security authorization packages and the tracking of progress for all Security Control implementations and Plans of Action and Milestones (POA&M)
• Develop all Security Authorization artifacts and documentation and assemble Authorization packages
• Responsible for the administration and adherence to the Risk Management Plan
• Coordinate closely with the Quality Assurance Specialists in identifying and mitigating risk to meet established quality standards

Skills on Resume: 

• Information Assurance (Hard Skills)
• Security Assessment (Hard Skills)
• System Accreditation (Hard Skills)
• Risk Management (Hard Skills)
• NIST Expertise (Hard Skills)
• Security Documentation (Hard Skills)
• Project Management (Soft Skills)
• Privacy Compliance (Hard Skills)

Job Summary: 

• Develops and supports an enterprise risk management program, including the establishment of foundational processes, governing bodies, and operating models
• Implement risk aggregation and monitoring tools for a Federal client
• Analyze network traffic, identify malicious and unauthorized activity, and respond to intrusion incidents
• Implement, configure, operate, and maintain network defense systems, audit network security controls, and manage vulnerabilities
• Perform vulnerability management to detect and remediate vulnerabilities
• Contribute to the development of innovative principles and ideas
• Routinely exercise independent judgment in developing methods, techniques, and criteria for achieving cybersecurity objectives
• Provide IA, computer network defense (CND), and technical review support to the government and contract operations
• Reviewing requirements for security-related capabilities
• Working CND and IA background and skills, analysis, correlation, and prioritization of vulnerabilities discovered in scans and vendor bulletins
• Monitoring of intrusion detection systems and other CND tools
• Providing vulnerability tracking and status reporting on vendor-provided or DoD-mandated patches

Skills on Resume: 

• Risk Management (Hard Skills)
• Network Analysis (Hard Skills)
• Intrusion Response (Hard Skills)
• Vulnerability Management (Hard Skills)
• Network Defense (Hard Skills)
• Independent Judgment (Soft Skills)
• Technical Review (Hard Skills)
• Innovation (Soft Skills)

Job Summary: 

• Provides technical and programmatic Information Assurance Services to internal and external customers in support of network and information security systems
• Designs, develops and implements security requirements within an organization’s business processes
• Prepares documentation from information obtained from the customer using accepted guidelines such as RMF (Risk Management Framework)
• Provides assessment and authorization (A&A) support in the development of security and contingency plans and conducts complex risk and vulnerability assessments
• Analyzes policies and procedures against Federal laws and regulations
• Provides recommendations for closing gaps
• Develops and completes system security plans and contingency plans
• Recommends system enhancements to improve security deficiencies
• Develops, tests and integrates computer and network security tools
• Secures system configurations and installs security tools, scans systems
• Determine compliance and report results and evaluate products and various aspects of system administration
• Conducts security program audits and develops solutions to lessen identified risks
• Develops strategies to comply with privacy, risk management, and e-authentication requirements
• Provides information assurance support for the development and implementation of security architectures to meet new and evolving security requirements
• Evaluates, develops and enhances security requirements, policy and tools
• Assists in computer incident investigations
• Performs vulnerability assessments, including the development of risk mitigation strategies
• Provide security planning, assessment, risk analysis, and risk management
• Perform system or network designs that encompass multiple enclaves, to include those with differing data protection/classification requirements
• Recommend system-level solutions to resolve security requirements
• Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures

Skills on Resume: 

• Information Assurance (Hard Skills)
• Security Requirements (Hard Skills)
• Risk Assessment (Hard Skills)
• Regulatory Compliance (Hard Skills)
• System Security (Hard Skills)
• Security Audits (Hard Skills)
• Incident Investigation (Hard Skills)
• Risk Mitigation (Hard Skills)

Job Summary: 

• Complete Project Impact Assessments to determine the Security impact
• Input to and review of project documentation to ensure that Security requirements are captured, delivered and tested
• Create reference security designs aligned with Enterprise Security Architecture to drive SP delivery
• Creating traceable requirements from technical controls through to technical delivery requirements
• Relaying requirements from the Enterprise Security Architect to the SP delivery teams
• Complete security-specific artefacts including Supplier Security Assessments, Software Security Reviews, Data Protection Impact Assessments and Business Continuity Assessments
• Contribute to and review security elements in supplier contracts
• Review requirements to identify potential security vulnerabilities during the design stage of technical solution development
• Perform Cyber Security analysis, correlation, and prioritization of findings discovered in scans and vendor bulletins
• Exercise knowledge of installation, maintenance, and upgrade techniques for Operating Systems and applications for server and client environments to identify security vulnerabilities
• Assist in the development and implementation of all policies and procedures relating to Cyber and Network Security
• Proactively monitor vendor and DoD Cyber Security notices and report results accordingly
• Assist in the development and assessment of targeted metrics to assess security postures
• Understand, adhere to, and implement overall cybersecurity and configuration policies and procedures in alignment with the industry standard security compliance framework

Skills on Resume: 

• Project Assessment (Hard Skills)
• Security Design (Hard Skills)
• Requirements Analysis (Hard Skills)
• Supplier Assessment (Hard Skills)
• Vulnerability Review (Hard Skills)
• Cyber Analysis (Hard Skills)
• Policy Development (Hard Skills)
• Configuration Compliance (Hard Skills)

Job Summary: 

• Review, develop and document policies and procedures IAW NIST 800-53
• Review, develop, and implement security plans for existing and new system assets
• Review and update Plans of Action and Milestones (POA&Ms)
• Support the DoD RMF assessment and authorization (A&A) processes
• Support the implementation and development of Information Technology (IT) Security Programs
• Perform vulnerability scans using Security Content Automation Protocol (SCAP) or Nessus
• Coordinate and perform information security inspections, tests, and reviews
• Ensure security policies, standards and procedures are established and enforced
• Conduct risk assessments and mitigate findings
• Ensure users have appropriate security clearance and access to information systems
• Manage, assess, and implement the Information Assurance Vulnerability Management (IAVM) Program

Skills on Resume: 

• Policy Development (Hard Skills)
• Security Planning (Hard Skills)
• POA&M Management (Hard Skills)
• RMF Support (Hard Skills)
• IT Security (Hard Skills)
• Vulnerability Scanning (Hard Skills)
• Security Inspections (Hard Skills)
• Risk Assessment (Hard Skills)

Job Summary: 

• Understand classification management, classified document control, and classified media control
• Submit and track accreditation package, to include annual reviews of accredited networks and systems
• Perform techniques to clear, purge, declassify, and release system memory, media, and output
• Provide initial IA briefings and annual training to privileged and non-privileged users 
• Develop and provide training on information system security policies and procedures
• Implement and support incident response processes involving classified assets and networks
• Conduct evaluation and analysis of software/hardware intended for use on classified assets
• Conduct hardware and software implementations and updates for information systems
• Implement, monitor, and document mitigation and remediation progress
• Create and maintain System Security Plan (SSP) and related documentation
• Perform information system security inspections, tests, and reviews
• Conduct auditing and hardware tracking

Skills on Resume: 

• Classification Management (Hard Skills)
• Accreditation Support (Hard Skills)
• Media Sanitization (Hard Skills)
• User Training (Soft Skills)
• Policy Training (Soft Skills)
• Incident Response (Hard Skills)
• System Evaluation (Hard Skills)
• Security Auditing (Hard Skills)