Apply on Employer Site

SBG Technology Solutions, Inc. · 3 months ago

Information Systems Security Specialist II (Mid) and III (Senior) - SBG

Philadelphia, PA, USA

Full-time

Onsite

Mid, Senior Level

3+ years exp

SBG Technology Solutions, Inc. is a company specializing in engineering, information technology, cyber-security, intelligence, and training. They are seeking Information Systems Security Specialists II and III to support Program Information Assurance activities, ensuring compliance with security policies and managing cybersecurity initiatives.

ConsultingInformation TechnologySoftware

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Support all aspects of Program Information Assurance (IA) activities across the Certification & Accreditation (C&A) and/or Assessment & Authorization (A&A) lifecycle

Apply knowledge and experience in cybersecurity, engineering, Test & Evaluation (T&E), and/or Security Control Assessment (SCA) roles

Demonstrate working knowledge of the Risk Management Framework (RMF) and/or prior experience with Defense Information Assurance Certification and Accreditation Process (DIACAP)

Interpret and apply relevant security policies and guidance documents to support the development and maintenance of IA artifacts and traceability documents required for Authority to Operate (ATO) compliance

Evaluate and validate security solutions to ensure they meet system requirements for handling up to classified information

Assist in the development and enforcement of system security policies, ensuring alignment with configuration management and change control processes

Qualification

Cyber SecurityRisk Management FrameworkInformation AssuranceDISA eMASSACASSecurity Control AssessorVulnerability AnalysisIncident ResponseSoft Skills

Required

Must have active Secret clearance and be a US Citizen

3 years (For Level II/Mid) or 7 years (For Level III/Senior) professional experience capturing and refining information security operational and security requirements

Demonstrated working knowledge of the Risk Management Framework (RMF) process

Hands-on experience with Information Assurance tools such as DISA Enterprise Mission Assurance Support Service (eMASS) and Assured Compliance Assessment Solution (ACAS)

Interim Security Control Assessor (SCA) qualification may be required

Familiarity with cybersecurity policies and guidance to support preparation and maintenance of security artifacts, creation of traceability documentation, and compliance with Authority to Operate (ATO) requirement

Ability to evaluate and validate security solutions for systems processing up to classified information

Experience maintaining and/or supervising the operational security posture of information systems or programs

Experience developing and enforcing system security policies, including support for configuration management and change control processes

At least 3 (for Mid Level) and 7 (for Senior Level) years of experience supporting one or more of the following within DoD or Federal environments: Network and system security, Cybersecurity Service Providers (CSSP), Cyber Red Teams

With at least 3 of the following 6 focus areas: Vulnerability Analysis, Network Security Monitoring, Incident Response / Forensics, Penetration Testing / Red Teaming, CND Infrastructure Support, CND Incident Response

Bachelor's degree in computer science, Information Technology, or an equivalent degree from an accredited college or university

Required to have and maintain current DoD 8570.1 IAT-II (Mid-Level), (or IAT-III for Senior-Level) Certifications