Senior IA Engineer with Security Clearance

---

Job description

Marathon TS is seeking an Information Assurance Engineer II to support our federal client. Primary Duties and Responsibilities for this position include: Perform the duties of an Information System Security Officer (ISSO) as defined in AR 25-2, DA 25-2-14, and the NIST SP 800-53 security controls when the organizationally-defined personnel includes the ISSO. Actively manages the organization's eMASS records which includes but is not limited to: Validates security controls including associated artifacts • Assesses security scan results and STIGs as required. Performs POA&M updates, tracking, and resolution. Leads the continuous monitoring activities of the organization. Collaborates with the O-ISSM on all assessment and authorization activities to ensure the information systems maintain an authority to operate (ATO) on all applicable DoD/IC networks. Maintain up-to-date status on all assigned systems and communicate status to the Government leads. Maintain complete records of communications, submit written status reports as required, perform peer-review as directed, and attend weekly meetings. Coordinate with the Security Control Assessor (SCA) to perform analysis of the overall risk level the system poses to enterprise networks and to mission data. Provides guidance in the creation and maintenance of Standard Operating Procedures (SOPs); Tactics, Techniques, and Procedures (TTPs); and other similar documentation. Minimum Basic Requirements for Skills, Experience, and Credentials include: Master's degree in an area of Science, Technology, Engineering or Mathematics with at least 10 years' experience as a cybersecurity professional OR a Bachelor's degree in an area of Science, Technology, Engineering or Mathematics with at least 12 years' experience as a cybersecurity professional . Active TS security clearance and eligible for SCI and NATO read-on prior to starting work. Meet the DoD requirements for a privileged user on a TS/SCI information system prior to starting work - DoD 8140 / 8570.01-m requirements. 10 years' experience validating system security controls. 10 years' experience with vulnerability management . 10 years' experience with DISA Security Technical Implementation Guides (STIGs), DISA Security Requirements Guide (SRG), and vendor-specific security guides. 8 years' experience with RMF and eMASS. 5 years' experience with POA&M tracking and resolution. 3 years' experience performing the continuous monitoring of system security controls. Marathon TS is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Marathon TS will be based on merit, qualifications, and abilities. Marathon TS does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age or any other characteristic protected by law (referred to as "protected status").

<!– job description page –>