(Information Security Engineer; Maritime Global Command and Control System; Naval Information Warfare Center, Pacific; Assured Compliance Assessment Solutions)
We are GDIT. We support and secure some of the most complex government, defense, and intelligence projects across the country. At GDIT, cyber security is not just a singular part of our mission—it connects every one of us because it’s embedded into every aspect of what we do.
GDIT is your place. You make it your own by bringing your ideas and unique perspective to our culture. By owning your opportunity at GDIT, you are helping us ensure today is safe and tomorrow is smarter. Our work depends on a Senior Information Systems Security Engineer joining our team to support NIWC Pacific Code 532.
At GDIT, people are our differentiator. As a Senior Information Systems Security Engineer supporting NIWC Pacific Code 532, you will be trusted to work on Maritime Global Command and Control System-Maritime (GCCS-M) Family of Systems (MGF).
We are looking for a Senior Information Systems Security Engineer (ISSE), who can join our team and make an immediate impact through their creativity, enthusiasm and technical abilities. Our Senior ISSE will oversee the progressing of the Maritime Global Command and Control System-Maritime (GCCS-M) Family of Systems (MGF) Authority To Operate (ATO) packages through the Risk Management Framework (RMF) process supporting Naval Information Warfare Center (NIWC) Pacific Code 532 – the MGF Software Support Activity. We aren’t looking for someone who will simply go through the motions, but someone willing to go beyond expectations, do something important, and make a true difference.
As a SeniorISSE, your responsibilities will include:
Manage, develop, and progress Risk Management Framework (RMF) packages through Assessment and Accreditation (A&A) process and ultimately achieve Authority to Operate (ATP) approval from the Navy Approving Office (NAO) for MGF programs.
Transition previously approved or processed DoD Information Assurance Certification and Accreditation Process (DIACAP) packages to Risk Management Framework (RMF) as implemented by the Department of the Navy.
Act as a lead Cybersecurity Analyst and collaborate with peers and RMF colleagues within NIWC Pacific Code 532 and PMW 150 to validate and verify their RMF packages, as they will validate yours.
Complete Risk Management Framework (RMF) Memoranda for the Record (MFR) as part of the Change Management Process including revised network diagrams, Assured Compliance Assessment Solutions (ACAS) scan results, System Technical Information Guides (STIG) checklists and hardware and software lists are updated, compiled, and entered into the review process.
Perform ACAS security scans on all network assets as part of the network vulnerability management process.
WHAT YOU’LL NEED: (Desired)
Demonstrated experience with Information Assurance tools such as Defense Information System Agency (DISA) Enterprise Mission Assurance Support Service (eMASS), Assured Compliance Assessment Solution (ACAS) and hold a Full Security Control Assessor qualification.
Working knowledge and ability to train other on the Enterprise Mission Assurance Support Service (eMASS), DoD Information Assurance Vulnerability Management (IAVM) Process, and Federal Information Assurance Management Act (FISMA) Process
Effective written and verbal communication skills resulting in the ability to achieve consensus in resolving problems in all phases of acquisition life-cycle with all stakeholders.
Thorough understanding of DoD Computer Network Defense (CND) policy and requirements and have cursory familiarity with CND tools and processes (e.g. network scanners; vulnerability mitigation; remediation; risk management).
Working understanding of secure software development and assessment.
Working knowledge of government processes and practices involved with safeguarding classified information.
CompTIA Security +, and DoD Instruction 8570 IAT Level II certification.
3-5 years of experience in Cybersecurity and Risk Management Framework, including ACAS scans and STIG application, network security, and understanding of the RMF workflow process.
Navy Qualified Validator (Level II)
5-7 years of experience in Cybersecurity and Risk Management Framework processes, and management of A&A processes to achieve ATO’s
Cybersecurity certification in any of the following: Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP) (or Associate), or Global Information Assurance Certification (GIAC) Security Leadership Certification (GSLC).
Navy Qualified Validator Level III
5-7 years as a Systems Engineer (Information Systems Security Engineer) working on a Cybersecurity based program in the DoD, specifically NAVWAR, or NAVWAR Information Center Pacific (NIWC PAC)
Provide subject matter expertise to assist in the execution of engineering objectives which mirror the immediate needs of NIWC Pacific Code 532.
Master’s degree in Information Technology, specializing in Information Assurance, Systems Engineering, Network Architecture and Design, or related field of study.
Department of Defense Secret Clearance
We’d expect you to have the following educational background, but appropriate experience (above) may outweigh the education requirements:
Bachelors degree in Information Technology, specializing in Information Assurance, Systems Engineering, Network Architecture and Design, or related field of study.
WHAT GDIT CAN OFFER YOU:
Full-flex work week
401K with company match
Internal mobility team dedicated to helping you own your career
Collaborative teams of highly motivated critical thinkers and innovators
Ability to make a real impact on the world around you
Not sure this job’s the one for you? Check out our other openings at gdit.com/careers.
Do you have a friend or colleague this posting describes? Let them know about the opportunity by clicking “Share.”
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.