Information Assurance Specialist

  • Chantilly, VA
  • Posted 60+ days ago | Updated 1 hour ago

Overview

On Site
Full Time

Skills

Intelligence collection
Integrated circuit
IC
Internal communications
DoD
Vulnerability assessment
IMPACT
Information assurance
NISP
ICD
NIST SP 800 Series
Authorization
System security
Risk assessment
Traceability matrix
Policies
Security controls
Reporting
ISSM
Strategy
Data
Microsoft Windows
Operating systems
Active Directory
Network
System administration
NIST 800-53
Risk management framework
RMF
SCAP
Regulatory Compliance
STIG
Information systems
CISSP
Security clearance
Law

Job Details

Title:

Information Assurance Specialist

KBR is seeking a highly qualified Information Assurance Specialist to support to the National Reconnaissance Office (NRO) Ground Enterprise Directorate (GED). GED delivers mission-critical capabilities that enable the NRO to plan and execute intelligence-gathering missions from NRO overhead systems and process the resulting collected data into useful information distributed to IC and DoD users.

Responsibilities:

  • Experience and expertise implementing Information Assurance strategy & guidance to include the Risk Management Framework (RMF) process, and vulnerability assessment and remediation.
  • Coordinate with internal and external organizations, agencies, and activities to support resolution of security issues, accreditation and waiver requests that impact the ability to obtain connection approval.
  • Recommend connection approval, disapproval or modification based on security risks and system vulnerabilities.
  • Provide systems administration and information assurance support for various classified systems.
  • Configure and validate information system compliance using DISA STIGs, SCAP Compliance Checker (SCC) and STIG Viewer.
  • Initiate and follow through to completion, Risk Management Framework (RMF) packages for enterprise architectures in accordance with NISPOM/DAAPM, ICD 503/CNSSI 1253, JSIG, NIST 800-53 and NIST 800-171 requirements.
  • Create and maintain Assessment and Authorization (A&A) packages, System Security Plans (SSPs), Risk Assessment Reports (RARs), Security Controls Traceability Matrices (SCTMs) and Plans of Action & Milestones (POA&Ms) for all classified systems.
  • Establish and administer appropriate security systems, policies, standards, and procedures in compliance with applicable government and corporate directives, guidelines, and contractual obligations.
  • Conduct analysis and assessment of the security control assessment guidance, procedures, and templates to ensure correct and uniform implementation of the new RMF assessment processes.
  • Identify, contain, investigate, and report data spills to the Government Security ISSM through preliminary written reports. Coordinate the containment and device sanitization with staff at the affected locations. Provide an assessment/mitigation strategy addressing the data spill in the approved response plan.
  • Provide technical oversight for classified system compliance and conduct self-assessments.


Required Skills:

  • Must have 5 years of relevant experience as an IT systems administrator.
  • Experience with Windows operating systems and Active Directory is required.
  • Experience with network systems administration is required.
  • Experience with NIST 800-53 and Risk Management Framework (RMF) accreditations.
  • Experience with DISA Security Technical Implementation Guides (STIGs), SCAP Compliance Checker (SCC) and STIG Viewer is required.
  • DoDD 8140 (8570.1-M) IAT Level 2 certification
  • Bachelor's degree


Desired Skills

  • Certified Information Systems Security Professional (CISSP).


Clearance: TS/SCI clearance with a polygraph

KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.