Information Assurance/Security Engineer- TS/SCI

Peraton is seeking an Information Assurance Technician in support of our Corporate IT Operations team.

Responsibilities:

• Comply with the System Administrator and/or ISSE Roles and Responsibilities as laid out in DAAPM 2.2, JSIG Rev 4, ICD-503, and other applicable documentation.
• Maintain the Security Authorization or Assessment and Accreditation (A&A) of their assigned system(s) via technical continuous monitoring requirements.
• Track and coordinate with the ISSM/ISSO, Regional Information Assurance Director, and the Peraton Information Assurance Director the Security Authorization of their assigned system(s).
• Deliver all required documentation related to the architecture and configuration of the system(s) using the current customer approved templates, forms, regulations, and methods.
• Continuously update technical documentation as required by the customer and in accordance with applicable governing guidance.
• Provide advisement to stakeholders on vulnerabilities and configuration solutions affecting the system(s) to assign resources and establish timelines to ensure the security and compliance of a system.
• Assist the ISSM with the documentation of all relevant governing authority Security Controls and/or applicable departmental policies for each information system.
• Perform any technical/configuration modifications throughout the lifecycle of the information system in accordance with governing guidance and approved Control Configuration Board changes.
• Work closely with the key stakeholders to identify any additional controls that are applicable to the system(s) to maintain a favorable security posture.
• Perform an annual self-inspection and inventory in accordance with applicable governing authority.
• Provide oversight and advisement on all proposed change requests on the accredited Information System(s) as they pertain to the potential change to the existing Controls Assessment.
• Ensure all software is tested and approved prior to introduction to the production environment.
• Track the deployment of software to the environment.
• Manage and monitor all vulnerabilities with their assigned information systems.
• Assist in updating and providing solutions for Plan of Actions & Milestones (POA&Ms) for each non-compliant control for each accredited Information System. Proper documentation shall be filed and updated as required.
• Support the Incident Response Team in the remediation, documentation, and reporting of all incidents for the accredited system(s) under ISSM purview.
• Perform applicable patching for each accredited information system at the properly defined interval.
• Participate in project discussions in support of the key stakeholders.
• Work closely with Office of the Chief Information Security Officer (CISO), the Information Assurance Director (IAD), and the onsite ISSM to provide guidance and oversight for all requested initiatives.
• Provide timely and detailed responses to all data calls.
• Implement and provide guidance regarding requests to modify technical policies such as firewall rules, ports, protocols, etc. for each information system.
• Continuously maintain a thorough understanding of all configurations, architecture, installed software, accounts (both Operating System and Application), data flows, ports, protocols, and other relevant data for each Information System.

Qualifications:

• Bachelor's degree or equivalent experience
• 8-10 years applicable professional experience
• Experience with Authority to Operate (ATO) process, continuous monitoring, POA&Ms, Security Authorizations (SA), NIST 800-37, NIST 800-53 Rev4/ Rev5, working with System Owners (SO)
• Experience with the A&A process
• Works well with team members
• CISSP, CISA or equivalent certifications (DoD 8570 IAT 2 equivalent)
• System Admin, ISSE, or other technical background
• Experience with Ongoing Authorizations
• Experience with eMASS
• Experience with System Compliance Check and Security Technical Implementation Guidance
• Experience with ACAS, Nessus, and/or other vulnerability scanners
• Active TS/SCI clearance

Preferred Qualifications:

• Experience with Linux
• Experience with Cisco
• Experience with Windows Server
• Experience with Windows 10
• Experience with ESXi

Peraton drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted and highly differentiated national security solutions and technologies that keep people safe and secure. Peraton serves as a valued partner to essential government agencies across the intelligence, space, cyber, defense, civilian, health, and state and local markets. Every day, our employees do the can’t be done, solving the most daunting challenges facing our customers.