Overview:
General Dynamics Mission Systems (GDMS) engineers a diverse portfolio of high technology solutions, products and services that enable customers to successfully execute missions across all domains of operation. With a global team of 12,000+ top professionals, we partner with the best in industry to expand the bounds of innovation in the defense and scientific arenas. Given the nature of our work and who we are, we value trust, honesty, alignment and transparency. We offer highly competitive benefits and pride ourselves in being a great place to work with a shared sense of purpose. You will also enjoy a flexible work environment where contributions are recognized and rewarded. If who we are and what we do resonates with you, we invite you to join our high-performance team!
Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans
Responsibilities:
Requires a Bachelor's degree in Engineering, or a related Science or Mathematics field. Also requires 5+ years of job-related experience, or a Master's degree plus 3 years of job-related experience.
CLEARANCE REQUIREMENTS: Department of Defense Top Secret security clearance is required at time of hire. Applicants selected will be subject to a U.S. Government security investigation and must meet eligibility requirements for access to classified information. Due to the nature of work performed within our facilities, U.S. citizenship is required.
Qualifications:
General Dynamics Mission Systems has an immediate opening for an Information Assurance Security Professional. This position provides an opportunity to further advance the cutting-edge technology that supports some of our nation's core defense/intelligence services and systems. General Dynamics Mission Systems employees work closely with esteemed customers to develop solutions that allow them to carry out high-stakes national security missions.
The candidate will be designated as an Information Assurance Professional (IAP) supporting multiple Special Access Programs administering the Information Assurance (IA) Cyber duties for government customers. Components of the IA program include Assessment and Authorization (A&A) activities (i.e., documentation preparation, system configuration/validation, certification testing), security sustainment activities (i.e., hardware change management, software change management, account management, media protection, user interface, file transfers), conducting self-inspections, audit trail review, and delivering information systems security education and awareness. The candidate must be a self-starter capable of multitasking and efficiently managing their time in a dynamic environment while requiring minimal levels of supervision. Additionally, the candidate will possess effective written, speaking, analytical, organizational, and customer service skills that will assist them in identifying solutions to complex compliance and security problems. The IAP will coordinate duties with the System Administrators and/or Information Technology (IT) staff to ensure all configuration requirements are implemented and functional. The IAP will conduct technical and nontechnical reviews and audits as prescribed by the Information Assurance Manager.
REPRESENTATIVE DUTIES AND TASKS: As a member of the Information Assurance Security team the IAP supports system security categorization efforts, security requirements selection/analysis, security control assessments and performs continuous monitoring.
* Executes or supports the execution of A&A activities, including development of required security documentation, including items such as System Security Plans, Security Assessment Reports, SCTM's and POA&Ms in compliance with IA policy
* Perform weekly system audit reviews, media reviews, hardware/software configuration management
* Executes security testing and evaluation to ensure correct implementation of security controls
* Supports the assessment and mitigation of vulnerabilities throughout a systems life cycle
* Conduct IA security education training for all system users on appropriate risk mitigation strategies
* Perform incident response and cleanup actions, when necessary, per company or customer directions
* Ensure systems are operated, maintained, and disposed of in accordance with internal security policies and procedures outlined in the System Security Plan (SSP).
* Assume ISSM responsibilities as assigned by the Region Manager and/or in the absence of the ISSM
KNOWLEDGE SKILLS AND ABILITIES:
Proficient understanding of cyber security specifications such as Risk Management Framework (RMF), JSIG (Joint SAP Implementation Guide), ICD-503, NIST SP 800-53.
* Experience implementing government security requirements to include technical computer/network system auditing
* Trained and proficient in Assured File Transfer (AFT) processes and tools
* Experience with various security assessment/hardening tools - STIGs, SCAP, ACAS, Nessus, etc.
* Systems administration experience is highly desirable
* Very strong writing, speaking, analytical, and customer service skills
* Ability to participate in or lead security work groups
* Must be a self-starter capable of multitasking and efficiently managing your time in a dynamic environment while requiring minimal levels of supervision
* Maintains contact with external customer security professionals
PREFERRED DEGREE TYPES AND EXPERIENCE:
Demonstrated comprehensive knowledge of the NISPOM, JSIG, ICD-503, NIST SP 800-53 and CNSSI 1253
DoD 8140 IAM-II level professional certification (i.e. Security + CE, CAP, GSLC) or ability to obtain within six (6) months of hire.
CLEARANCE REQUIREMENTS: Department of Defense Secret security clearance is required at time of hire. Applicants selected will be subject to a U.S. Government security investigation and must meet eligibility requirements for access to classified information. Due to the nature of work performed within our facilities, U.S. citizenship is required.
Required Skills:
* This role requires a technical background creating POA&Ms, developing corrective action plans, and writing security plans, policies, and procedural documentation (not just reviewing or performing documentation review)
Share this job:
Share this Job
