Information Security Analyst Advisor

ARMA-Global is seeking a Cybersecurity Engineer to participate as a member of an integrated government/contractor team of technical and functional experts in the conduct of cybersecurity at USSOCOM. The office monitors USSOCOM networks and systems for cyber threats and works with stakeholders to mitigate and remediate identified cyber vulnerabilities. This position will be responsible for implementing and monitoring necessary security controls to maintain an Authorization to Operate (ATO). Track and maintain certification information databases, websites and tools to ensure that networks, systems and devices are properly documented and managed from a security perspective.

• Identifies security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives.
• Conducts complex security architecture analysis to evaluate and mitigate issues. Develops policies and procedures for securing the system infrastructure and applications.
• Develops complex technical and programmatic assessments, evaluates engineering and integration initiatives and provides complex technical support to assess security policies, standards and guidelines. Develops, implements, enforces and communicates security policies and/or plans for data, software applications, hardware and telecommunications.
• Performs highly complex product evaluations, recommends and implements products/services for network security. Validates and tests complex security architecture and design solutions to produce detailed engineering specifications with recommended vendor technologies.
• Provides complex technical oversight and enforcement of security directives, orders, standards, plans and procedures. Develops manuals and ensures system support personnel receive/maintain security awareness and training.
• Assesses the impact on the business unit/customer caused by theft, destruction, alteration or denial of access to information and reports to senior management.

DESIRED QUALIFICATIONS:

• 8+ years Cybersecurity experience
• Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic mail and access-lists.
• Experience working with internet, web, application and network security techniques.
• Experience working with relevant operating system security (Windows, Linux, etc.).
• Experience working with leading firewall, network scanning and intrusion detection products and authentication technologies.
• Thorough understanding and practical expertise with Intelligence Community Directive 503 (ICD 503) and National Institute of Standards and Technology (NIST) Risk Management Framework.
• Experience producing and maintaining Assessment and Authorization packages.
• Experience validating NIST 800-53 Security Controls; CNSSI 1253 Security Controls and Overlays.

EDUCATION:

• BA/BS (or equivalent experience)

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.