Essential Functions:

• Plan, design, and implement security controls and measures to protect the organization's information systems and networks

• Evaluate and assess security risks and vulnerabilities, and develop strategies to mitigate them

• Develop and implement security policies, procedures, and guidelines to ensure compliance with organizational policies and regulatory requirements

• Work with engineering team to identify and document security solutions, including firewalls, intrusion detection/prevention systems, antivirus, and data encryption systems as required by parent organization.

• Conduct security assessments and audits of information systems and networks, and recommend improvements to security controls and measures

• Stay up to date with emerging trends and technologies in information security, and recommend improvements to the organization's security posture

• Provide technical guidance and support to IT teams on security-related issues

• Ensure that information systems and networks are compliant with organizational policies and procedures, as well as any applicable regulatory requirements

Physical Demands:

Physical demands of this position include ability to:

• Be independently mobile.

• Communicate effectively with co-workers and customers.

• Withstand prolonged periods of sitting at a desk and computer use.

Reasonable accommodation will be made to enable individuals with disabilities to perform the essential functions.

Required Experience:

• Strong understanding of information security principles and methodologies

• Experience designing and implementing security controls and measures for information systems and networks

• Familiarity with security standards and regulations, such as NIST SP 800-53 and DOD RMF

• Experience conducting security assessments and audits, and recommending improvements to security controls and measures

• Experience with security solutions such as firewalls, intrusion detection/prevention systems, and data encryption systems

• Excellent communication and interpersonal skills, with the ability to work effectively with users and stakeholders at all levels

• Strong analytical and problem-solving skills, with the ability to identify security risks and vulnerabilities, and develop strategies to mitigate them

• Experience with security training and awareness programs

• DoD 8570 IAT Level II Certification (e.g. Security+) or the ability to obtain the certification within 90 days

• Years of Experience: 10+ years of experience in information security, with experience in designing and implementing security controls and measures for information systems and networks. Experience with security assessments and audits is also preferred.

• Desired Education: Bachelor's degree in Computer Science or a related field (preferred).

• Location: Chantilly, VA (On-site)

• Clearance: Active TS/SCI w/ ability to obtain CI Poly

   

Desired Skills:

• Experience with cloud computing platforms such as AWS or Azure

• Experience with security-related tools such as vulnerability scanners, SIEMs, and endpoint protection systems

• Knowledge of network protocols and technologies, such as TCP/IP, DNS, and VPNs

• Scripting experience in Bash, Python, or Perl

   

EEO Minority/Disabled/Veteran/Female