RYAN Consulting Group, Inc. (RYAN) is headquartered in Indianapolis, Indiana. RYAN utilizes advanced technologies, methodologies, and business intelligence tools to help our clients reach their full potential. We are dedicated to delivering superior consulting services, and we have an unwavering commitment to completing each project.
We have an opening for an Information Assurance Engineer for a project with the Air Force Medical Service (AFMS).
Lead the certification, accreditation and reaccreditation of all systems within the assigned area of responsibility in accordance with AF DIACAP and AF PIT Processes. Maintain current software licenses and ensure security related documentation is current and accessible to properly authorized individuals. Provide technical security subject matter expertise.
Responsible for Information Assurance engineering and consulting to include, review, revising, and creating information security policies, guidelines, and procedures. Advises customers on compliance matters regarding applicable Federal and International information system regulations and standards such CMS, DIACAP, HIPAA, ISO 27001, FISMA, NIST, etc. Analyzes information security postures and advises clients regarding implementation of mitigation countermeasures in a risk management framework
Develop & author DIACAP IA Artifacts – System Security Policy (SSP), Security Test and Evaluations (ST&E), Plan of Actions and Milestones (POA&M), Application Security & Development STIGS, Database STIGS, DISA STIGS, DoD Ports & Protocols Matrix, etc…
Working knowledge of Air Force Certification & Accreditation Process/DIACAP
Prior experience in working with Air Force Network Integration Center (AFNIC) and within EMASS to achieve Authority to Operate (ATO)/Authority to Connect (ATC)
Working Knowledge of network security analysis, secure software development, static analysis/source code analysis, software behavior analysis.
Experience with C&A of Platform IT (PIT) and certification for the Air Force Enterprise Approved Product List (EAPL). Strong knowledge of PKI and network security simulations network.
Knowledge of NIST Risk Management Framework, NIST Security Content Automation Protocol (SCAP), DoD 8500 Control set and Healthcare Security Requirements (HIPAA Security Rule)
Experience w/AFNIC’s Security testing tools, eEYE Retina software and other penetration/security testing tools
2 to 4 years of hands on IA Experience
Strong written communication skills and attention to detail
Certs: MCSE, 8570 Level II or Level III, Security +, CAP, GSLC, CISM or CISSP
- Bachelor’s degree required in IT-related field or degree in unrelated field and work experience acceptable.
Ryan Consulting Group, Inc is an Equal Opportunity Employer (M/F/D/V).
RYAN Consulting Group - 17 months ago
As an established force in the Information technology services and solutions industry, Ryan Business Services. has been one of the leading...