DCO Information Systems Security Engineer (ISSE)
Clark Creative Solutions
Full-time
On-site
Port Hueneme, California, United States
The Naval Facilities Engineering Systems Command (NAVFAC) builds and maintains sustainable facilities, delivers utilities, and services. NAVFAC requires facilities under its command and the facility related controls systems (FRCS) in them to be interconnected to properly provide Technical Management, Continuous Monitoring, and an End-to-End (E2E) Cyber Defense capabilities for each NAVFAC Facilities Engineering Commands (FECs). NAVFAC has established a Cyber Planning and Response Center (CPRC) to provide multiple layers of focused cyber security to the operational technology (OT) for these locations.
An ideal candidate for this position will have experience with Defense in Depth Principals/technology (including access control, authorization, identification and authentication, public key infrastructure, network, and enterprise security architecture) and applying risk assessment methodology to system development. The selected individual will become part of the Defensive Cyber Operations (DCO) team working on solving challenging issues on a large, significant program. The position requires a solid understanding of security practices and policies as well as hands-on vulnerability testing experience to ensure that systems meet security requirements. The selected individual will collaborate with other engineers and technical experts in providing improvements to our operational, test, integration, and development systems.
Minimum Qualifications
Must have a minimum 3 years of relevant, Information Systems Security Engineering or IT experience in performing system issue analysis, risk management, technical writing, system troubleshooting, and system documentation.
Responsibilities
The selected candidate will have several responsibilities from day to day drawn from a wide array of activities. The strongest candidates will have experience working in these areas:
• Validating and verifying system security requirements and establishing system security designs for large-scale systems, major system elements, and interfacing systems that are part of a large complex network environment with geographically distributed components.
• Identifying and implementing appropriate information security architectures and functionality to ensure uniform application of security policy and enterprise solutions.
• Recommending and developing technical solutions, products, and standards based on current and desired system security architecture.
• Communicating with Program Managers and POCs from customer organizations when necessary, regarding Security issues of significant importance.
• Analyzing and assessing system implementation against multiple security compliance policies and recommending and implementing enhancements
• Supporting risk assessment, risk management, security control assessment, continuous monitoring, service design, and other Information Assurance (IA) program support functions.
Qualifications
• Quantified experience in Information Assurance, Information Security System Engineering, or a related discipline.
• Must have a solid understanding of security practices and policies and hands-on vulnerability testing experience.
• Has experience applying Risk Management Framework.
• Must have experience formulating and assessing IT security policy.
• Must have demonstrated knowledge of and experience with common security tools, such as Nessus, NMAP and Wireshark hardware/software security implementation, communication protocol, encryption techniques/tools, and web services.
• Must have experience with secure configurations of commonly used desktop and server operating systems.
• Must be comfortable working on multiple systems and components simultaneously in various configurations.
• Must have strong verbal and written communications skills.
• Must be committed to adopting and adhering to best practices.
• Must be able to effectively plan and prioritize tasking and communicate clearly regarding technical options and trade-offs.
• Must be capable of performing high quality work both independently and with a team in a fast-moving environment.
Desired Skills
Experience in the following would be highly considered.
• DoD 8570 compliance with IASAE Level 2 or 3.
• Information Systems Security Engineering Professional (ISSEP) Certification.
• Computer Information Systems Security Professional (CISSP) Certification.
• Experience developing/implementing integrated security services management processes, such as assessing and auditing network penetration testing, anti-virus planning assistance, risk analysis, and incident response.
• Experience providing information assurance support for application development that includes system security certifications and project evaluations for firewalls that encompass the development, design, and implementation.
• Experience in technical documentation and writing.
• Experience with penetration testing tools.
• Experience with scripting languages.
An ideal candidate for this position will have experience with Defense in Depth Principals/technology (including access control, authorization, identification and authentication, public key infrastructure, network, and enterprise security architecture) and applying risk assessment methodology to system development. The selected individual will become part of the Defensive Cyber Operations (DCO) team working on solving challenging issues on a large, significant program. The position requires a solid understanding of security practices and policies as well as hands-on vulnerability testing experience to ensure that systems meet security requirements. The selected individual will collaborate with other engineers and technical experts in providing improvements to our operational, test, integration, and development systems.
Minimum Qualifications
Must have a minimum 3 years of relevant, Information Systems Security Engineering or IT experience in performing system issue analysis, risk management, technical writing, system troubleshooting, and system documentation.
Responsibilities
The selected candidate will have several responsibilities from day to day drawn from a wide array of activities. The strongest candidates will have experience working in these areas:
• Validating and verifying system security requirements and establishing system security designs for large-scale systems, major system elements, and interfacing systems that are part of a large complex network environment with geographically distributed components.
• Identifying and implementing appropriate information security architectures and functionality to ensure uniform application of security policy and enterprise solutions.
• Recommending and developing technical solutions, products, and standards based on current and desired system security architecture.
• Communicating with Program Managers and POCs from customer organizations when necessary, regarding Security issues of significant importance.
• Analyzing and assessing system implementation against multiple security compliance policies and recommending and implementing enhancements
• Supporting risk assessment, risk management, security control assessment, continuous monitoring, service design, and other Information Assurance (IA) program support functions.
Qualifications
• Quantified experience in Information Assurance, Information Security System Engineering, or a related discipline.
• Must have a solid understanding of security practices and policies and hands-on vulnerability testing experience.
• Has experience applying Risk Management Framework.
• Must have experience formulating and assessing IT security policy.
• Must have demonstrated knowledge of and experience with common security tools, such as Nessus, NMAP and Wireshark hardware/software security implementation, communication protocol, encryption techniques/tools, and web services.
• Must have experience with secure configurations of commonly used desktop and server operating systems.
• Must be comfortable working on multiple systems and components simultaneously in various configurations.
• Must have strong verbal and written communications skills.
• Must be committed to adopting and adhering to best practices.
• Must be able to effectively plan and prioritize tasking and communicate clearly regarding technical options and trade-offs.
• Must be capable of performing high quality work both independently and with a team in a fast-moving environment.
Desired Skills
Experience in the following would be highly considered.
• DoD 8570 compliance with IASAE Level 2 or 3.
• Information Systems Security Engineering Professional (ISSEP) Certification.
• Computer Information Systems Security Professional (CISSP) Certification.
• Experience developing/implementing integrated security services management processes, such as assessing and auditing network penetration testing, anti-virus planning assistance, risk analysis, and incident response.
• Experience providing information assurance support for application development that includes system security certifications and project evaluations for firewalls that encompass the development, design, and implementation.
• Experience in technical documentation and writing.
• Experience with penetration testing tools.
• Experience with scripting languages.