Information Assurance Engineer III
Company: KaiHonua
Location: Austin
Posted on: September 2, 2024
Job Description:
Information Assurance Engineer III Location: Austin, TX Salary
Range: $75,000-$110,000 Job Summary KaiHonua, LLC has an immediate
opening for an Information Assurance (IA) Engineer to join our
rapidly growing team. IA Engineer applies IT security principles,
methods, and security products to protect and maintain the
availability, integrity, confidentiality, and accountability of
information system resources and processed information; plans,
implements, and manages a Defense In Depth for the total network
and/or enclaves within the network; identifies and analyzes threats
and vulnerabilities to the information systems to maintain
protection, accomplish risk analysis, security testing, and
certification due to modifications or changes, completes computer
security plans, and enforces mandatory access control techniques;
manages a network security program, reporting all incidents
promptly and providing corrective action to prevent further
incidents; implements guidance to ensure the protection of Internet
information, reduces the risks associated with automated processing
of information and data, and trains all personnel in IT security
awareness, as required. Essential Duties and Responsibilities (Not
listed in order of importance; other duties may be assigned) and
must be able to perform the following with minimal guidance:
- Work with system owners to close IAVMs/ICVMs and open Plan of
Action and Milestones (POA&Ms) in a rapid fashion, in
accordance with DoD instructions/directives. Review all POA&MS
with the Program Manager on at least a quarterly basis and update
the POA&Ms accordingly.
- Provide Defense in Depth principles and technology in security
engineering designs and implementation
- Analyze existing and future systems, reviewing security
architectures, and developing engineering solutions that integrate
information security requirements to proactively manage information
protection
- Apply security risk assessment methodology to system
development, including assessing and auditing network penetration
testing, antivirus deployment, risk analysis
- Conduct Computer Incident Response Team (CIRT) activities,
including forensic analysis
- Plan, implement, and manage a Defense In Depth for the total
network and/or enclaves within the network to include such items
as: scanning, remediation, host and network intrusion
detection/prevention, firewalls, proxy servers, web cache, virus
programs, vulnerability scanning, content filtering, remote dial in
protection, Host Based Security Services, Directory Services, and
Certification and Accreditation, DoD Instruction 5200.40,
accreditation guidance and advice IAW AR 25-2 and IA Best Business
Practices (BBPs). Plan, respond, investigate, and report
undisclosed classified incident remediation.
- Provide support for the Department of Defense (DoD) Public Key
Infrastructure (PKI) service.
- Responsible for requesting, receiving, installation, and
accountability of system (server) PKI certificates and providing
technical support for PKI.
- Provide communications security (COMSEC) rekeying support
within normal business hours or on-call, as required. Prepare and
maintain secure communications devices and crypto keys. Provide
Certification and Accreditation, as well as provide Automated
Information System Accreditation support
- Provide Security Risk Assessment. Perform risk analysis of
resources, controls, vulnerabilities, impact of losing systems'
capabilities and threats to the mission objective; provide analysis
to facilitate decisions to implement security countermeasures or
mitigate risk; implement countermeasures; periodically review
program. Recognize possible threats and review evaluations for
compliance and non-compliance.Qualifications To perform this job
successfully, an individual must be able to perform each essential
duty satisfactorily. The requirements listed below are
representative of the knowledge, skill and ability required.
Reasonable accommodations may be made to enable individuals with
disabilities to perform the essential functions. Education /
Experience / Certifications
- Bachelor's Degree in Computer Science, Cybersecurity, Computer
Engineering, or related discipline. Comparable experience in lieu
of degree may be considered.
- 5+ years of experience performing Information Assurance
functions and using RMF IT security controls and policies
preferred
- Must possess and maintain an IT I level certification IAW AR
25-2 and IAT-II certification IAW DoD 8570.01-MKnowledge
- A track record of progressively responsible information
assurance experience in one or more of the following information
security areas: certification and accreditation, IA system
evaluations, system security penetration testing, and IA security
operations/network monitoring, Intrusion Detection Systems,
Intrusion Prevention Systems, Security Information
Management/Security Event Management, network mapping,
vulnerability scanners, firewalls, routers and other security
tools
- Candidate must have at least 3 years of experience in the IT
industry, and be familiar with the applicable NIST Special
Publications 800-37 Revision 1, 800-53 Revision 3 or 4, and 800-53A
Revision 1.
- Experience and basic knowledge of networking components and
various operating systems in a cloud environment, including UNIX
and Microsoft is a plus.
- Expertise in other Security Frameworks (ISO, NIST, COBIT,
HIPAA/HITECH, etc.) and regulatory requirements is a plus
- Working knowledge of public key infrastructure and encryption
systems
- Experience working on an information security incident response
team
- Familiarity with Security Technical Implementation Guides
(STIG) and system security processes.
- Experience working in CMMI Level 3 (or higher) environments is
a plusPhysical Requirements Work may involve sitting or standing
for extended periods of time. Position may require typing and
reading from a computer screen. Must have sufficient mobility,
including but not limited to bending, reaching, and kneeling to
complete daily duties in a timely and efficient manner. May include
lifting weigh up to thirty (30) pounds as necessary. Benefits
- Medical, dental, vision, disability, and life insurance
- Flexible Spending Accounts
- 401(k)
- PTO
- Paid paternal leave
- Tuition reimbursement
- Paid federal holidaysSecurity Clearance: Position requires a
Secret security clearance. Must be a US citizen. KaiHonua, LLC
reserves the right to change or modify job duties and assignments
at any time. The above job description is not all encompassing.
Positions functions and qualifications may vary depending on
business needs. KaiHonua, LLC is an equal opportunity employer and
does not discriminate against applicants based on race, color,
creed, religion, medical condition, legally protected genetic
information, national origin, sex (including pregnancy, childbirth
or related medical condition), sexual orientation, gender identity
and expression, age, disability, or Vietnam era, or other eligible
veteran status or legally protected characteristics.
Keywords: KaiHonua, Austin , Information Assurance Engineer III, Engineering , Austin, Texas
Didn't find what you're looking for? Search again!
Loading more jobs...