IAO (Information Assurance Officer) will provide information assurance knowledge for the conduct of Information Assurance (IA) duties including Certification and Accreditation (C&A) & Information Vulnerability Management activities. Will have a working knowledge of the DoD security requirements/processes, IBM ITCS104 security requirements/processes, system security architectures best practices, security policies, technical security safeguards, and operational security measures. Will lead and assist in the implementation and maintenance of internal IBM security compliance efforts, validation of security controls, creating/maintaining security processes & procedures and maintaining continued security compliance for IBM networks/systems. Will also provide Information Assurance subject matter expertise throughout the tasking and translate security requirements into technical designs/solutions. The candidate should have excellent communication and customer relations skills.
Principal Duties & Responsibilities: Conduct regular analysis of IT systems through the use of vulnerability assessment tools and manual reviews to determine current IA posture, assessing system vulnerabilities; determining adequacy of security controls, and mitigating residual risk, Performance of health checks on IT systems and network devices using both automated and manual methods, Document Security Control compliance in a POA&M format, Coordinate with Network and Systems Administrators to ensure non-compliant items are resolved in a timely manner, Develop and Review IA processes and procedures necessary to comply with IBM and customer requirements, Work with IT personnel to improve security awareness and integrate security into the system development life cycle, Perform Security Tests & Evaluations using automated and manual methods to validate that security controls are in place as described, Maintain systems in the IBM Mixed Address Databases and ensure compliance with each, Validate application, network and system or firmware changes for security compliance to accepted standards as part of the Configuration and Change Management process, Respond to Security Incidents and ensure that proper procedures for responding and remediating are followed.
Required Skills: (Cont.) Development of Security policies, processes, and procedures, Performance of Security Tests and Evaluation using both automated and manual methods, Update and Maintenance of system Plan of Actions and Milestones (POA&M), Familiar with IBM ITCS104 Requirements.
Some of our client engagements do require up to 100% travel for an extended period of time. Consultants are required to be flexible with their ability to travel and cannot refuse projects due to travel.
Looking for a smarter career? IBM is the place to be. Here, you can cultivate your expertise, use your knowledge to the fullest extent, or re-invent yourself—without ever having to leave the company.
We are the world's largest IT and consulting company. Great opportunities abound. Build your portfolio while working on society's most pressing issues. They're at the top of our strategic agenda. From energy production to climate change, traffic congestion to health care, streamlined government processes to citizen collaboration and everything in between. We're not only leading the way in developing "green technology," we’re also leading a revolution in corporate responsibility and citizenship.
Join us as we enter a new era for our Public Sector industry. Work with us as we make the world a smarter planet.
There is a tremendous mandate for positive change in the world, a change to the way that we interact with each other, with our environment, and with the systems that support us. At this critical moment with so much at stake, IBM is ready to be the smart leader - with top notch consultants delivering first class results. We have the resources to do this.
High School Diploma/GED
At least 5 years experience in Information Assurance/Information Security
At least 2 years experience in NESSUS and or Retina Vulnerability Assessment Tool
At least 2 years experience in Tivoli Endpoint Manager (TEM)
At least 2 years experience in and working knowledge of Microsoft Active Directory and Group Policy Management
At least 2 years experience in and working knowledge of Windows 2008 Server, Linux, and AIX
At least 2 years experience in and working knowledge of Router, Switch, and Firewall technology
At least 2 years experience in implementation and validation of IBM and Industry security policy/ technical guidelines
Security clearance of Secret - Active
Readiness to travel Up to 1 day a week
U.S. citizenship required
At least 2 years experience in DISA Gold Disk Assessments Federal, DoD, and DISA Policy/Guideline implementation
At least 4 years experience in experience or industry certification demonstrating technical proficiency may be substituted for educational requirements. B.Sc., Computer Science, Info Assurance or related discipline
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
IBM - 13 months ago
International Business Machines Corporation (IBM), is an information technology (IT) company. s major operations include Global Technology...