This site uses cookies. To find out more, see our Cookies Policy

Systems Security Engineer (SSE) - Information Systems Security Manager (ISSM) in Hurlburt Field at General Dynamics Information Technology

Date Posted: 3/6/2019

Job Snapshot

  • Employee Type:
  • Job Type:
  • Experience:
    Not Specified
  • Date Posted:
  • Job ID:

Job Description

The Systems Security Engineer (SSE) - Information Systems Security Manager (ISSM), work under general supervision to ensure all related Cybersecurity and Assessment & Authorization (A&A) activities for all AFSOF C2MS occur in accordance with DoD 8500 series publications, CJCSI 6510.01, Security Technical Implementation Guides (STIGs), and other applicable governing publications. The SSE shall work as a member of a Cybersecurity Compliance Team to evaluate C2MS configurations, create System Security Plans, Disaster Recovery Plan, Incident Response Plans and other artifacts as required to facilitate the certification and accreditation of AFSOF systems. The SSE shall assist system engineers and system administrators comply with the vulnerability management program and secure systems, networks and applications.  The SSE shall conduct vulnerability scans, analyze scan findings and provide recommended fix actions to systems personnel. The SSE as part of the Cybersecurity team shall prepare, submit, and coordinate DoD Risk Management Framework (RMF) packages for all AFSOF C2MS systems.  The SSE shall be able to evaluate new and existing system designs and recommend technical changes to improve security. Designs, deploys, operates, and maintains Splunk and Security Information and Event Management (SIEM) systems for new or existing computer systems, including cloud computing.

Knowledge, Skills and Abilities

  • 3-5 years of systems security/information assurance related experience.
  • 3-4 years of technical experience in systems/network administration or software development
  • Demonstrated Windows and/or Linux Operating System System Administration/Engineering
  • Experience with eMASS, EITDR or Xacta accreditation workflow systems is preferred
  • RMF/NIST SP 800-53A knowledge preferred
  • Moderate to high-level familiarity with and Cybersecurity tools such as ACAS, SCAP, STIG Viewer, Vulnerator, SCCM, Splunk, HBSS and Solarwinds
  • Ability to develop Compliance (Credentialed Scans, CVSS10, OS, HBSS, PKI, AV) and Continuous Monitoring (RMF Controls) reporting metrics and dashboards
  • Demonstrated experience in Splunk engineering and administration, including Splunk Enterprise Security.
  • Software Code Scanning / Application Security Testing / Penetration Testing is highly desirable
  • Incident Response or Computer Network Defense experience is highly desirable
  • ITIL v3 Foundation certification preferred
  • EMSEC knowledge preferred
  • Excellent technical writing skills a must
  • Must have good communication skills and be detail oriented
  • Self-motivated, shows initiative, and works with minimal direction
  • Must be able to manage multiple tasks and projects simultaneously
  • Strong analytical and problem-solving skills and proactive thinking skills
  • Basic level familiarity with DoD, USAF, USSOCOM, and other Cyber Security Regulatory Compliance bodies
  • Provide technical support to system and technology owners to propose mitigation and remediation solutions
  • Assist with routine compliance and audit functions to ensure regulatory scanning requirements are satisfied
  • Document and report on processes and procedures
  • Stay current on security industry trends, attack techniques, mitigation techniques, security technologies and new and evolving threats to the organization by attending conferences, networking with peers and other education opportunities
  • Sense of urgency to address new technologies being deployed: Continuous development of infrastructure and cloud security expertise to function as subject matter expert in multiple technical disciplines
  • A Cyber Security Team team-player contributing to policy development, RMF package accreditations, and Tempest (EMSEC) requirements

Job Requirements

  • 5+ years combined IT Systems and ISSM experience
  • Must have a Secret Clearance to begin work and the ability to obtain a Top Secret-SCI clearance
  • The work is performed in an office and lab environment
  • Must be able to obtain a passport for OCONUS travel, if required
  • Lift over 35 LBS

For more than 50 years, General Dynamics Information Technology has served as a trusted provider of information technology, systems engineering, training and professional services to customers across federal, state, and local governments, and in the commercial sector. Over 40,000 GDIT professionals deliver enterprise solutions, manage mission-critical IT programs and provide mission support services worldwide. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.