The Security Engineer (SE) reports to the IA PCS and will independently lead and/or conduct enterprise and system-level Security engineering tasks.
IA Security Engineer III General Position Description:
Conduct security reviews of system configuration management documents to determine security posture of the system to which they pertain as well as the security impacts to the interconnected systems or enterprise.
Assess and review technology infrastructure to identify key risks areas, and ensure adequate levels of control are in place to address those risks.
Conduct the following tests, scans and assessment: penetration testing; daily vulnerability assessment, threat assessment, and mitigation: vulnerability scanning, and vulnerability assessments, via scanning with various tools.
Provide detailed reports including data, analyses and conclusions upon completion of tests, scans and assessments, including mitigations and if, indicated, appropriate escalation of identified risks and vulnerabilities.
Provide incident response and work with the C&A annual system self assessments.
Maintains currency of their own and the project teams knowledge on the latest security engineering techniques and technologies and advances in combating unauthorized access to systems and information and maintains currency pertaining to the latest viruses, worms, etc.
Recommend technological and architectural upgrades/modifications to Agency's Information Systems Security architecture and develop/provide input to draft INFOSEC policies and procedures, and perform other Network Security/Information Assurance tasks as assigned.
Lead/participate in system/security policy and standards development, including writing
Eight (8) or more years IT engineering/network security/information assurance experience demonstrating successful command of most, if not all, of the technical and analytical skills and abilities described above.
At least three (3) years experience independently planning and leading small teams conducting the duties described for the position, including technical mentoring/supervision of others on a task basis. SE-III must have demonstrated excellent oral and written technical communication and presentation/public speaking skills.
Minimum Education: Bachelors degree or substitution of equivalent experience in a related field.
Expert knowledge of NIST Special Publication 800-37 and DHS Sensitive Systems Policy 4300A and the Commandant Instruction (COMMDINST) 5500.13B and background in some or all of the following: Networking, Security Engineering, Systems Engineering, Configuration Management, and Disaster Recovery/Contingency Planning.
DHS and USCG security and risk management policies and procedures;
CISSP, CISA, SANS GIAC or related certifications are desirable.
Active Secret Clearance
- 2 years ago - save job