IA Engineer with Security Clearance
Telos Corporation
2024-11-06 10:39:59
San Antonio, Texas, United States
Job type: fulltime
Job industry: I.T. & Communications
Job description
The most security-conscious organizations trust Telos Corporation to protect their vital IT assets. The reputation of our company rests on the quality of our solutions and the integrity of our people. Explore what you can bring to our solutions in the areas of cyber, cloud and enterprise security. Be a part of the Telos culture and see what sets us apart! Telos offers an excellent compensation package with benefits that include generous paid time off, medical, dental, vision, tuition reimbursement, and 401k. Our employees enjoy more than just a great work environment! This position will be based at Lackland AFB, TX and is Contingent upon award. Responsibilities: Learn and become familiar with the Xacta 360, Xacta.io, and Enterprise Mission Assurance Support Service (eMASS) tools. Responsible for entering security aspects of systems, software, applications, DevSecOps and associated RMF A&A data consistent with RMF ISSM responsibilities The candidate will be required to conduct "walkthroughs" of enterprise systems, applications, and DevSecOps projects to collect required artifacts in support of the initial NIST RMF A&A and subsequent continuous monitoring activities The candidate will be responsible for the performance of security control assessment planning and execution in compliance with client policies and procedures with minimal supervision The candidate will have had prior experience working with a wide variety of technologies, be well versed in the current state of information security and be able to interpret requirements of relevant governing bodies (e.g., NIST, OMB, GAO, etc.) The candidate will utilize Xacta 360 and eMASS to produce Body of Evidence (e.g., System Security Plan (SSP), Risk Assessment Report (RAR), specific POA&M portions, vulnerability reports, etc.) that meets local requirements while maintaining compliance with higher-level governance (e.g., NIST, FISMA, etc.) Develop and manage multiple RMF projects in the Air Force RMF tools such as Xacta 360, Xacta.io and/or eMASS Work with the customer to gather FedRAMP artifacts that will be used to support AF and AF IC AO risk decisions Perform system auditing, vulnerability risk assessments, hardware/software configuration management, and investigations on cybersecurity related security violations/incidents Develop system documentation for information system authorization, security management, and continuous monitoring for assigned systems Assist with providing cybersecurity education and training for all system users on appropriate risk mitigation strategies Interface with internal/external customers to identify requirements and provide problem resolution. Perform other administrative and support functions as needed Job Requirements Qualifications: Current TS Clearance with Sensitive Compartmented Information (SCI) IT/Computer Science/Cyber Security Bachelor's Degree, or the equivalent combination of education, professional training or work experience (12 years) IAM Level III - IAW DoD 8570 Baseline Certifications 3 years of experience at the Senior or SME level for Information System Security Engineer, Information Systems Security Manager, Information Systems Security Officer; or 5 years' experience with RMF, NIST, FISMA, and POA&Ms from a theoretical, practical, and best practice perspective Experience with Cloud environments and cybersecurity requirements Experience using a combination of IA and IT related skills. For this position knowledge and practical experience for the IT/RMF side versus IT/Systems Integration is weighed equally. Experience in a role within or implementation of the RMF Assessment and Authorize (A&A) process is a must Experience developing, executing, reviewing, and documenting security control test plans and implementation statements Experience investigating and documenting system topology in OV-1 or similar diagrams, to include: Internal/External Ports, Protocols, Internal/External interfaces, Hardware, Software, Cryptography Experience with security hardening requirements in accordance with DoD and vendor guidance Experience in vulnerability analysis and patch remediation Knowledge and experience applying security requirements related to applicable control overlays (e.g., Privacy, Classified, Cross Domain Solutions, etc.) Strong written and verbal communications skills and the ability to interact with people at all levels are required. A professional attitude regarding attention to detail and customer service and excellent organizational skills are required Ability to pay strict attention to detail with an emphasis on high quality of deliverables Demonstrated ability to work tasks autonomously Desired skills: Experience using the Air Force RMF mandated Xacta and eMASS tools Understand the policies related to RMF (NIST SP 800-53, CNSSI 1253) Knowledge of DoD and Air Force policies related to RMF Experience with DISA Security Technical Implementation Guidance (STIG) and Security Requirements Guides (SRG) Experience with vulnerability management tools (i.e. ACAS) to validate compliance with security and patch management requirements Experience with SCAP tools and scanning to validate compliance with security requirements Operating systems such as Linux (primary) Windows (secondary) Amazon Web Services Solutions experience and/or certification Understanding of Agile development or similar frameworks Experience in troubleshooting and root cause analysis of complex technical issues Understanding of application security in Microservice architecture Account management, Auditing, Configuration Management, Cryptography and Certificate Management, Vulnerability Management, and IT systems administration Experience securing containers technologies (Docker, Podman, etc.,) Experience securing containers orchestration systems (Kubernetes, Swarm, AKS, EKS, etc.,) Experience with CI/CD tools (e.g. Jenkins, GitLab, GitHub) Querying Database Management Systems such as Oracle, PostgreSQL, or MSSQL Scripting languages such as JavaScript, PHP, Python, or Apache Velocity Experience in diagraming and developing workflows through Business Process Engineering Prior SAP Experience The successful candidate must meet eligibility requirements to access sensitive information, which requires US citizenship. Telos maintains a drug-free workplace and will conduct drug testing on all applicants who have accepted an offer of employment Telos Corporation participates in the E-Verify program. Therefore, any employment with Telos will also be contingent upon confirmation from the Social Security Administration ("SSA") and/or the Department of Homeland Security ("DHS") of your authorization to work in the United States. Telos offers excellent compensation packages including salary commensurate with experience and benefits to meet your needs for today and the future. Telos Corporation and its subsidiaries are committed to equal opportunity for all, without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identity, age, veteran status, disability, genetic information, or any other protected characteristic. Telos Corporation will make reasonable accommodations for known physical or mental limitations of otherwise qualified employees and applicants with disabilities unless the accommodation would impose an undue hardship on the operation of our business. If you are interested in applying for an employment opportunity and feel you need a reasonable accommodation pursuant to the ADA, please contact us at 1-. If you require relay service assistance, please click on the following link to review information on your state's relay service: Telos Corporation is an EEO/AA employer. Job Type Full-Time Location San Antonio, TX US (Primary) Telos offers an excellent compensation packages including salary commensurate with experience and benefits to meet your needs for today and the future. Telos and its subsidiaries are an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.