Information System Security Officer / Information System Enginee

Description:
Onsite in Aberdeen Proving Ground, MD

Our client seeks an Information System Security Officer / Information System Engineer to guide Cybersecurity policy, RMF processing, and accreditation activities. The role will manage eMASS record keeping, translate security requirements into secure configurations, and conduct network and host vulnerability scanning with residual risk analysis. The position will also implement incident handling processes, enforce security policies, and support tooling such as ACAS/Nessus, patch management systems, and scripting for secure configuration.

Due to federal security clearance requirements, applicant must be a United States Citizen with an active Secret clearance. This is a contract to hire opportunity. Applicants must be willing and able to work on a w2 basis and convert to FTE following contract duration. For our w2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance.

Rate: $65.00 to $70.00/hr. w2

Responsibilities:

• Guide development of Cybersecurity policy, requirements, engineering, certification, and accreditation for tactical network systems.
• Process systems through the Risk Management Framework and maintain records in eMASS.
• Translate security policies and requirements into configuration and application implementation requirements for accreditation.
• Perform network and host vulnerability scans and document results with residual risk identification.
• Implement and enforce security policies across environments.
• Conduct incident handling processes and analyze scan data.
• Utilize network vulnerability scanners such as ACAS and Nessus.
• Administer and use patch management tools such as WSUS, Update Expert, SMS, and McAfee ESM.
• Work with firewalls, IPS/IDS, application firewalls, and web content filtering.
• Develop scripts and automation in Batch, Bash, NSIS, and Python to patch and secure devices, operating systems, and appliances.

Experience Requirements:

• At least 4 years of relevant Cybersecurity experience.
• Hands-on experience with DoD Cybersecurity standards and RMF processes.
• Proficiency with eMASS for accreditation record keeping.
• Experience performing network and host vulnerability assessments and documenting residual risks.
• Experience with ACAS and Nessus or equivalent vulnerability scanning tools.
• Experience with patch management platforms such as WSUS, Update Expert, SMS, or McAfee ESM.
• Experience with firewalls, IPS/IDS, application firewalls, and web content filtering.
• Experience scripting in Batch, Bash, NSIS, or Python to support secure configurations.
• Ability to implement and enforce security policies and execute incident handling.
• Ability to obtain and maintain required security clearance; US citizenship required.
• Active Top Secret clearance noted as a special requirement.

Education Requirements:

• BA or BS in Computer Science, Information Systems, Engineering, Cybersecurity, or related technical discipline, or equivalent experience.
• Certification: Certified Information Systems Security Professional (CISSP).