Cybersecurity Engineer

For over 20 years iGov's products and services reflect a commitment to our mission to deliver innovative, mission-centric IT solutions to our government customers. We are a highly focused engineering and management services company, and our capabilities help our customers meet their mission-critical program needs.

iGov is seeking a highly skilled and experienced Cybersecurity Engineer to performs a variety of routine project tasks applied to specialized Cybersecurity problems. Tasks involve integration of electronic processes or methodologies to resolve total system problems, or technology problems as they relate to cybersecurity requirements. Analyzes information security requirements. Applies analytical and systematic approaches in the resolution of problems of workflow, organization, and planning. Provides security engineering support for planning, design, development, testing, demonstration, integration of information systems.

At iGov our team members are the cornerstone of our success. We prioritize creating an inspiring and diverse work environment. We are committed to continuously investing in professional development and growth of our team, ensuring our expertise, skills and performance are always exceptional.

If this sounds like you, please apply!

This position is contingent upon award

Essential Responsibilities:

• Performs a variety of routine project tasks applied to specialized Cybersecurity problems.


• Tasks involve integration of electronic processes or methodologies to resolve total system problems, or technology problems as they relate to cybersecurity requirements.


• Analyzes information security requirements.


• Applies analytical and systematic approaches in the resolution of problems of workflow, organization, and planning.


• Provides security engineering support for planning, design, development, testing, demonstration, integration of information systems.


• Assess proposed changes to the information system for cybersecurity and authorization impact prior to implementation.


• Help ensure that newly-acquired cybersecurity and cybersecurity-enabled products for which configuration and implementation security guidance is not available have been configured according to the following standards, in descending order of preference:
  
  
  
  • (1) Commercially accepted practices (e.g., System Administration, Networking, and Security Institute - SANS)
  
  
  • (2) Independent testing results (e.g. International Computer Security Association - ICSA)
  
  
  • (3) Vendor literature
  
  
  
  


• Help evaluate or validate all cybersecurity and cybersecurity-enabled COTS IT products implemented in the system through one of the following sources:
  
  
  
  • International Common Criteria (CC) for Information Security Technology Evaluation Mutual Recognition Arrangement
  
  
  • National Information Assurance Partnership (NIAP) Evaluation and Validation Program
  
  
  • FIPS validation program
  
  
  
  


• Help ensure all OSS and COTS software versions are current and compliant with cybersecurity requirements (e.g., STIGs)


• Help provide a Licensing Status Report listing all software in use by the e-Commerce system with current version numbers and any expiration dates.


• Help prepare any impact assessment associated with system upgrades that are deployed to address defects or vulnerabilities.


• Help prepare supporting POAMs and/or AORAs as needed. Perform security scans and analyses on source code and remediate findings. Draft a Plan of Action & Milestones (POA&M) and/or Authorizing Official Risk Acceptance (AORA) when Severity 1 and Severity 2 fixes cannot be implemented immediately. Implement fixes for Severity 3 and Severity 4 defects


• Help review end of life for all software and plan for update/upgrades at least quarterly.


• Help ensure DLA's STORES adheres to all NIST Risk Management Framework guidance and the DOD Cybersecurity implementation requirements outlined by DOD 8500 series for information assurance and risk management processes, procedures, and guidance.


• Help ensure DLA's information system complies with all applicable Laws, Regulations, and Policies, to include the RMF Process for NIPRNET, commensurate with the system's security categorization for Confidentiality, Integrity, and Availability (C-I-A)


• Subscribe to vulnerability alert channels and review notices of current security weaknesses, to maintain situational awareness with respect to products being used by the information system.


• Review quarterly STIG updates as issued by DISA and provide completed STIG checklist annually.


• Deliver in DLA format the following: Automated Information Systems Inventory Spreadsheet (AISIS), Firewall Rules, Listing of Ports, Protocols, and Services

Essential Required Experience & Skills:

• Seven (7) years of relevant IT experience


• DOD Secret Clearance. Additionally, any team member assigned duties as DLA CERT Analyst shall possess a DOD TOP SECRET Clearance and be eligible for an IT-1.


• Must be eligible for IT II


• Relevant certification meeting DOD 8570.01 IAM level III (for non-CERT personnel).


• Relevant certification meeting DOD 8570.01 IAT level III for CERT personnel. Additionally, any team member assigned duty at DLA CERT will maintain CNDSP-IR certification.


• Computing Environment: ACAS, ArcSight Enterprise Security Manager (ESM) 5.0 Security Analyst; ArcSight Logger 5.0 Administration and Operations; HBSS Administrator; HBSS Advanced; McAfee Network Security Platform Administration

Educational Requirements:

BS or BA or four (4) additional years of related experience.

Clearance Statement:

Applicants selected for this position will be subject to a government security investigation and must meet eligibility requirements for access to classified information.

• DOD Secret Clearance. Additionally, any team member assigned duties as DLA CERT Analyst shall possess a DOD TOP SECRET Clearance and be eligible for an IT-1.


• Must be eligible for IT II

Travel: Minimal travel planned but may be required.

iGov is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identify, political affiliation, or Veteran Status. If you have a disability or special need that requires accommodation during the hiring process, please let us know by emailing our HR department at HR@igov.com.

EEO: M/F/D/V