Information systems security specialist

Position Ti: Information Systems Security Specialist II (Mid) and III (Senior) - SBG

Level: 4 Year Degree

Job Location: SBG - Philadelphia, PA - Philadelphia, PA

Position Type: Full Time

Education Level: 4 Year Degree

Travel Percentage: Up to 25%

Job Shift: Day

Job Category: Information Technology

Description:

Job Details

Level

Experienced

Job Location

SBG - Philadelphia, PA - Philadelphia, PA

Position Type

Full Time

Education Level

4 Year Degree

Travel Percentage

Up to 25%

Job Shift

Day

Job Category

Information Technology

Description

SBG, a DSS, Inc. company, specializing in engineering, information technology, cyber-security, intelligence, and training, is looking for a hard-working results-oriented Information Systems Security Specialist II and III. We are seeking highly motivated individuals with a positive attitude looking to join our rapidly growing company. The ideal candidates for this position have strong attention to detail, analytical and ethical, who can excel in a very fast-paced government contractor environment. This is an on-site role based in Philadelphia, PA.

**Contingent Upon Contract Award**

OVERVIEW

The Information System Security Engineer II and III is responsible for supporting all aspects of a Program Information Assurance (IA) processes tailored to include minimum qualification standards, fundamental awareness and familiarity to demonstrated competency with specific experience in Cyber Security, Engineering, Test & Evaluation, (T&E) and/or Security Control Assessor (SCA) under a Certification & Accreditation (C&A) and/or Assessment & Authorization (A&A) process. * Must have active Secret clearance and be a US Citizen.

The Information System Security Specialist:

• Support all aspects of Program Information Assurance (IA) activities across the Certification & Accreditation (C&A) and/or Assessment & Authorization (A&A) lifecycle.

• Apply knowledge and experience in cybersecurity, engineering, Test & Evaluation (T&E), and/or Security Control Assessment (SCA) roles.

• Demonstrate working knowledge of the Risk Management Framework (RMF) and/or prior experience with Defense Information Assurance Certification and Accreditation Process (DIACAP).

• Interpret and apply relevant security policies and guidance documents to support the development and maintenance of IA artifacts and traceability documents required for Authority to Operate (ATO) compliance.

• Evaluate and validate security solutions to ensure they meet system requirements for handling up to classified information.

• Assist in the development and enforcement of system security policies, ensuring alignment with configuration management and change control processes.

The preceding functions are examples of the work performed by employees assigned to this job classification. Management reserves the right to add, modify, change or rescind work assignments and make a reasonable accommodation as needed.

Qualifications

• (3) years (For Level II/Mid) or Seven (7) years (For Level III/Senior) professional experience capturing and refining information security operational and security requirements, and ensuring those requirements are properly addressed through purposeful architecting, design, development, and configuration; and implementing security controls, configuration changes, software/hardware updates/patches, vulnerability scanning, and securing configurations.

• Demonstrated working knowledge of the Risk Management Framework (RMF) process.

• Hands-on experience with Information Assurance tools such as:

  • DISA Enterprise Mission Assurance Support Service (eMASS)

  • Assured Compliance Assessment Solution (ACAS)

  • Interim Security Control Assessor (SCA) qualification may be required.

• Familiarity with cybersecurity policies and guidance to support:

  • Preparation and maintenance of security artifacts

  • Creation of traceability documentation

  • Compliance with Authority to Operate (ATO) requirement

• Ability to evaluate and validate security solutions for systems processing up to classified information.

• Experience maintaining and/or supervising the operational security posture of information systems or programs.

• Experience developing and enforcing system security policies, including support for configuration management and change control processes.

• At least 3 (for Mid Level) and 7 (for Senior Level) years of experience supporting one or more of the following within DoD or Federal environments:

  • Network and system security

  • Cybersecurity Service Providers (CSSP)

  • Cyber Red Teams

• With at least 3 of the following 6 focus areas:

  • Vulnerability Analysis

  • Network Security Monitoring

  • Incident Response / Forensics

  • Penetration Testing / Red Teaming

  • CND Infrastructure Support

  • CND Incident Response

EDUCATION:

Bachelor's degree in computer science, Information Technology, or an equivalent degree from an accredited college or university.

CERTIFICATION:

Required to have and maintain and current DoD 8570.1 IAT-II (Mid-Level), (or IAT-III for Senior-Level) Certifications.

PHYSICAL DEMANDS:

Standing

10% per day

Sitting

60% per day

Walking

5% per day

Stooping

0% per day

Lifting

• If traveling, the ability to lift up to 50 lbs. unassisted (luggage, laptop, etc.)

• Up to 15 lbs. unassisted, several times a day (laptop, office equipment, office supplies, etc.)

Computer Work

100% per day

Telephone Work

60% per day

Reading

100% per day

Other, please specify

• Travel unassisted less up to 10% per year, via aircraft or privately owned vehicle.

SBG, Inc. is an Equal Opportunity Employer

If you need an accommodation seeking employment with SBG, Inc., please email [email protected] or call (703) 299-9093. Accommodations are made on a case-by-case basis.

PI279220218