Responsibilities:

• Provide support to architecture definition, test and certification of system aspects and conduct security threat analysis and requirements capture. This role will involve the review and creation of security documentation in accordance with appropriate standards.
• Communicate with external organizations to evaluate and determine certification and accreditation strategies which will include contact with vendors/suppliers to gather and evaluate evidence of security data.
• Provide support in obtaining and maintaining accreditation of the Business Systems via certification testing of the respective element(s) (UDN, CDN, JWICS).
• Assist the Government in the implementation of the Defense Information Assurance Certification and Accreditation Process (DIACAP).
• Provide, on a monthly basis, the results of the required vulnerability analysis tests using the e-Eye Retina tool (or other tool(s) as defined by the Government).
• Detect vulnerabilities that could preclude/alter the status of the accreditation. Work with network administrators to implement human procedures, software configuration parameters, system changes, or combinations thereof to mitigate the risks associated with each vulnerability.
• Test the adequacy of the required protective features using DISA tools such as STIGs via SRRs or checklists on a reoccurring basis using the appropriate tool (or other tool(s) as defined by the government).
• Provide the results to the systems'/networks'/enclaves' IAO no later than (NLT) the 10 days after execution of the test.
• Report compliancy on all IAVA, Frago, CTO, CAM, SCCVI, and provide reporting metrics to the information system owner (ISO) and OCIO staff.
• Report directly to the Chief Information Officer (CIO) for agency information assurance related duties. Must be able to complete deliverables on-time and give prompt resolution for IA issues.
• Perform Computer Network Defense (CND) activities, and must be able to create a mitigation plan for potential exploit upon acknowledgement of the attack. Coordinate with SA, SE, NE Team Leads to develop the plan for approval by the DAA.
• Create SAP packages for new systems and network devices baselines. Member will be responsible for the addition of the of system/network assets. This task is critical for the agency DRP/BCP and CM.
• Create project plans for existing accreditation projects to ensure timely completion.
• Provide input for the weekly and monthly war report; and provide scan stats to management to show our vulnerability status, HBSS upgrades, CCRI updates, ATO progression, and other IA duties.
• Provide training to all NDC staff members to assist with information assurance and regulatory compliancy.

Qualifications:

• BS Computer Science or equivalent
• TS clearance a must.
• Experience working as a System Engineer on complex IT related programs with significant exposure to INFOSEC/IA concepts, technologies and processes.
• Good understanding of Systems Engineering principals and knowledge of the DIACAP Certification & Accreditation process for crypto devices, firewalls etc.
• DIACAP experience - POAM, Mitigation, SSP, CONOPS, and etc. Member must be able to update and create required documentation.
• VMS experience -must have first knowledge of importing and updating SCCVI data, acknowledge and report compliance with JTF GNO / Cybercom directives, generate and distribute reports to SA's, PM's, and Gov't Staff for 6510.01 monthly reporting, and other required Infocon Tasks.
• Strong working knowledge of SCCVI tools such as: Eye Retina, Patchlink, SRR, Gold Disk, Websense, HBSS, and other IA related tools. Member may be called upon to assist the SA, SE, and NE with remediation and POAM generation for assets with the classified and unclassified data networks.

To apply for open positions with Sevatec, Inc., please click here for an application form. You can also e-mail your resume and cover letter to ngulati@sevatec.com and reference the job title in the subject line of your e-mail. In your cover letter, please indicate how your qualifications match the requirements of the position for which you are applying. We can also be contacted by fax at (571) 766-1301.