Your Impact:

The mission: 

The program provides a broad range of support services, which include network architecture, network design, network engineering, project management, implementation and deployment of new services, storage engineering, network O&M, network hardware life-cycle management, tracking and management of vendor support agreements, and software licenses, procurement of hardware/software, network end-user helpdesk support, and management of network security assessments and accreditations. 

Our Senior ISSE will work with a team of highly skilled technical professionals and provide direct support in the design, implementation, deployment, management and monitoring of the security requirements governing technology-based solutions. We value detail-oriented candidates while also being able to think and react quickly to emerging and unique problem sets. The ideal candidate will be able to rapidly adapt to security relevant changes in the network environment and implement the required mitigations or policy changes. 

Responsibilities:  Provide support to design, develop, and maintain the Sponsor's systems compliance with ICD 503 requirements. This also includes advising and assisting the Sponsor with: security and network accreditations; providing the Sponsor with a working understanding of the latest networking communications and protocols, server technologies, application technologies, and security vulnerabilities, organizing and maintaining awareness of both physical and logical placement of network nodes within a network; identifying software components that fulfill mission requirements; and translating a network's technology requirements into usable solutions. Prepare and maintain documentation for specified networks that provide a reference for users to understand the established restrictions associated with those specific networks. Develop and maintain System Security Plans (SSP) to meet ongoing security requirements. Ensure approved SSPs are kept up to date as changes are made to the networks. Implement security requirements and ensure compliance with the Sponsor's Information System Security Manager (ISSM) approved SSPs for a network. This includes: establishing or utilizing existing access control mechanisms; defining and configuring the appropriate firewall settings; conducting intrusion detection and prevention; conducting vulnerability scanning; conducting anti-virus management; and conducting the necessary incidence response actions in accordance with Sponsor security policies.

Exercise robust network oversight that incorporates rigorous compliance, privacy and data security standards and achieves the following objectives:

• Secure network.
• High network availability.
• High functionality and usability.
• High network performance.
• Low infrastructure cost and risk.
• Complete record of ongoing network changes to include activity logging and auditing.

#divergent

Here’s what you’ll need:

• Candidate should have experience in several of the following areas: 
• Securing mission systems through the ICD 503 process for security risk management, certification, and accreditation.
• Securing and monitoring Microsoft Windows desktop and server in a secure IT environment including one or more of Windows 7, Windows 10, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, Windows Server 2016.
• Securing and monitoring Linux desktop, servers, and other devices.
• Securing and monitoring Macintosh devices.
• Applying Risk Management Framework controls to systems with successful authorization of those systems
• Use of system authorization workflow tools including advising on how to navigate those tools and assisting projects with steps needed to complete authorization
• Xacta® or Greenlight 360 compliance and risk assessment application tool
• Rapid7 scanning and vulnerability remediation
• NMAP scans
• Splunk Administration knowledge and skills
• Securing and monitoring enterprise level Cisco network devices.
• Securing and monitoring enterprise level Cisco VOIP devices.
• Securing and monitoring enterprise level Cisco VTC devices.
• Administering, securing and monitoring enterprise level Windows and Linux network infrastructures

Clearance Required:

• TS/SCI w Poly

Minimum Education:

• Bachelor's Degree
• A Master's degree in a relevant field will meet the educational requirement in the event a Bachelor's Degree is not in a relevant field. Additional equivalent experience may be substituted for a Bachelor's Degree to meet the educational requirement. Equivalent experience for a Bachelor's Degree is 4 years working experience in a relevant field in the respective discipline. Consequently, the Senior Skill Level shall require 12 years of relevant experience if experience is referenced in lieu of a Bachelor's Degree.

Minimum Years of Experience:

• The candidate shall have a minimum of eight (8) years of experience providing support, in the respective disciplines.

Preferred:

• Certified Information Systems Security Professional (CISSP) Certification(s)
• Certified Splunk Administrator