Status: TEMPORARY position for 6 months beginning December 2017 to backfill employee on military leave
MYMIC LLC is looking for an Information Assurance (IA) Specialist to temporarily support a Joint Staff J8 contract at the Pentagon. The IA Specialist will provide IA Certification and Accreditation subject matter expertise in efforts to support the Joint Staff (JS) and Office of Secretary of Defense servers, stand-alone networks, and information systems.
* Ensures the confidentiality, integrity, and availability of identified mission supporting information systems and applications, their networks, data and tools * Establishes and satisfies complex system-wide information security requirements based upon the analysis of user, policy, regulatory, and resource demands * Plans, analyzes, develops, implements, maintains, and enhances the programs, policies, procedures, and tools necessary to provide information assurance in both the unclassified and classified environments, and ensure the operational availability of all systems * Coordinates with the Designated Approval Authority to maintain each system's Authority to Operate (ATO) in accordance with DoDI 8510.01 * Ensures compliance with all other applicable Department of Defense (DoD), Defense Information Services Agency (DISA), U.S. Cyber Command, National Institute of Standards and Technology (NIST), and JS guidance; maintains an in depth understanding of the Risk Management Framework (RMF), Information Assurance Work Force standards (IAWF), Security Technical Implementation Guides (STIG), and continuous monitoring standards from NIST SP-800 * Documents and mitigates deviations from policy * Develop certification and accreditation packages in accordance with RMF and Joint Staff policies * Complete security reviews as often as required to maintain a valid ATO for all J8 mission supporting systems * Performs vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle * Analyzes general information assurance-related technical problems and provides basic engineering and technical support in solving these problems * Provides support for data recovery operations
Other Duties and
Responsibilities Will consider a strong journeyman level candidate. * Support migration from DoD Information Assurance Certification and Accreditation (DIACAP) to RMF (NIST Risk Management Framework) process to certify, accredit and maintain the Authority to Operate (ATO) for the servers, stand-alone networks, and information systems * Ensure compliance with all applicable DoD, Joint Staff, DISA and USCYBERCOM guidance or that deviations are documented, mitigated, and approved by the Government * Ensure all managed systems are appropriately patched and configured * Prepare documentation, test results, and accreditation artifacts to maintain accreditation * Maintain an up-to-date IA status inside the Enterprise Mission Assurance Support Service (eMASS) application used by DoD to automate the RMF process * Conduct vulnerability assessments of all networks, applications and operating systems and recommend corrective actions * Upgrade operating systems and design systems enhancements as required * Provide reports, briefings and analysis as required * Participate in meetings and forums to ensure customer needs are met * Participate in special projects as required
Qualifications and Training:
* Working knowledge of Windows servers 2008 and 2012, VMware, and Linux in an Enterprise environment development * Experience in DISA Assured Compliance Assessment Solution (ACAS) is a plus * Strong interpersonal skills with the ability to collaborate
Candidates must possess a final Top Secret (TS) Clearance based on a Single Scope Background Investigation (SSBI), or PPR completed within the last 5 years (in-scope). Clearance must be verifiable in JPAS.
Minimum Education and Experience:
* Bachelors' degree from an accredited college or university with a curriculum or major field of study in computer science, information system, a physical science, engineering or a mathematics-intensive discipline, plus at least five (5) years of information security or information assurance experience; OR Associates' degree from a college or university with a curriculum or major field of study in computer science, information system, a physical science, engineering or a mathematics-intensive discipline, plus ten (10) years task related experience. * Must be IAT Level III certified, per DoD Directive 8570.1m (Ex: CISSP or CASP, PLUS an OS/CE certification)
This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, or national origin. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, national origin, protected veteran status or disability.
Per EO 11246, this federal contractor and subcontractor will refrain from discharging, or otherwise discriminating against, employees or applicants who inquire about, discuss, or disclose their compensation or the compensation of other employees or applicants. An exception exists where the employee or applicant makes the disclosure based on information obtained in the course of performing his or her essential job functions.