Location:
DC MetroJob Description:
- Review current policies and procedures, identify gaps in terms of compliance with Federal and Department (civilian government) requirements and determine which are applicable to the customer’s environment
- Research & Development Support includes product reviews, evaluations and recommendations and to determine integration capabilities for all new and existing technologies
- Provide recommendations based on feasibility, operational requirements and cost/cost savings in order to support the mission
- Monitor the network and provide network security by identifying problems and troubleshooting alerts
- Monitoring of security events detected by customers Security tool set. Security events can include intrusion detection events, malicious software detection, events from SIEM tool, vulnerability scans, penetration test findings, audit findings and other network events as it relates to security
- Validation and confirmation of security events and assessing impact of the event
- Determine solutions to mitigate threats
- Provide incident response and mitigation support on compromised systems
Job Requirements
- Working and holistic understanding and knowledge of the Risk Management Framework (RMF) as defined by National Institute of Technology (NIST) Special Publication (SP) 800-53 (current revision) and NIST SP 800-53A Revision 1
- BS degree in Computer Science or related field, MS degree preferred
- 3 years of C&A/ST&E experience, with two (2) of those years in support of Federal Civil agencies
- Experience with RETINA, DISA Gold Disk, DISA STIGS and Security Readiness Review script
- Experience managing a small team (3-5 personnel) preferable
- CISSP is highly desirable