SMS Data Products Group Information Assurance Engineer in Ft. Huachuca, Arizona
SMS is seeking an Information Assurance Engineer with knowledge and experience in support of Department of Defense (DoD) Assessment and Authorization (A&A) support in alignment with the National Institute for Standards and Technologies (NIST) Risk Management Framework (RMF); system categorization, security control assessment, authorization and monitoring through all phases of the system life cycle. The candidate should have extensive experience reviewing Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs) and validating security controls.
SMS is a fast growing, veteran-owned business that's has supported Federal Government's IT initiatives for over four decades. We work side-by-side with our Federal clients as a trusted, long-term partner to offer innovative advice and leadership to solve their most pressing and complex problems. We orchestrate people, strategies, technologies and best-of-breed business processes. The SMS advantage in management and technology consulting includes deep domain expertise in complex networking design and unifying communities of interest.
We have strong capabilities in design & build, planning, governance, quality management, security, analytics, virtualization, operations and business process improvement. For 40 years, SMS has brought customer satisfaction to Federal clients and formed lasting alliances with leading technology companies and talented small businesses to deliver joint, leading-edge, cost-effective services and products.
Submit your resume today!
Experience in providing knowledge, techniques and/or capabilities related to system IA, certification and accreditation (C&A), documentation, security testing and vulnerability remediation. Candidate will support the Certification and accreditation process for administering Risk Management Framework (RMF) program. Candidate must also have experience in managing IT or IA related projects that required extensive and simultaneous documentation and coordination across multiple customers.
Essential Job Functions:
Analyze complex network and IA systems in unclassified and classified environments for compliance with DoD and industry best practices security configuration requirements
Must have expert-level understanding of RMF requirements and NIST 800-53 Rev. 4 security controls
Draft and review documentation for all phases of the security authorization process, for Certification and Accreditation (C&A), required for program initiatives to receive Authorization(s) To Operate (ATO)s, Interim ATOs (IATO)s, Interim Authority To Test (IATT), and Certificates of Networthiness (CON) fro systems that reside on NIPRNET and SIPRNET.
Knowledge and experience in the certification and accreditation processes that require the knowledge of DoD Guidance, Army Best Business Practices (BBP) and information assurance and auditing.
Performance of C&A workflow in accordance with RMF requirements, preparation of system-related RMF artifacts, system security engineering, preparation of security test plans and their execution, remediation of system vulnerabilities, and preparation of IA documentation including PPS matrix, POA&M and system security plans.
Writing Standard Operation Procedures (SOP), COOP, Configurations, and other documentation in support of RMF as required
Provide technical evaluation of proposed system(s) and application approaches
Strong verbal and written communication skills as well as the ability to work independently as required.
Validation of Information Assurance (IA) Controls
Maintain an awareness of trends within the Technology Industry
Experience with STIG Tools.
Minimum Position Requirements:
Three to five years of progressively responsible IT security consulting experience including recent experience with RMF. Candidates should have technical experience in all of the following areas: network infrastructure (Cisco), Microsoft Windows Server 2012 R2, UNIX/Linux (SUN/Redhat) or database (Oracle/MS SQL 2012). Individual must have high degree of skills with the MS Office toolsets.
Applicant must possess refined critical thinking skills, should be a self-starter, may direct the activities of other team members, diplomatic, multi-task capable, adaptive to a dynamic environment, dependable and reliable. Prior experience in a government consulting services environment is required.
CISSP or CASP
Must have and maintain an active DoD Secret security clearance.
SMS is an Equal Opportunity Employer.
SMS is a veteran-owned network integrator established in 1976. With an employee retention rate averaging over 5 years, our ability to hire quality people and retain them in a rapidly evolving IT market proves why we are a world-class information technology company. At SMS, we place a high value on quality of service, customer satisfaction, and best-of-breed policies and practices. As a result, SMS is proud to be ISO 9001:2008 Registered and a CMMI Level 3 certified company, ensuring that we continue to meet and exceed the expectations of our customers, partners and employees.
Experience Level: Senior
8140 (Formerly 8570) Compliance: IAT 3
External Company Name: SMS Data Products Group, Inc.
External Company URL: www.sms.com