Information Assurance Engineer
NACON is seeking a full-time, mid-level IA Engineer to join our team as IA lead and supervisor, managing security compliance and providing security design and implementation strategies for federal contracts. The ideal candidate will be self-motivated and detail- oriented, with knowledge of the DoD RMF (Risk Management Framework) process and analyzing the risk and remediation of security issues based on security assessments, vulnerability assessment scanners, patch management tools and emerging threat information.
Key experience needed includes strong familiarity with the RMF and/or DIACAP process, a working knowledge of STIG security hardening, and constructing and submitting POA&Ms (Plan of Action & Milestones).
Responsibilities: The IA lead will orchestrate the A&A (Assessment & Authorization) process, formerly C&A (Certification & Accreditation) process, from inception to ATO (Authority to Operate), maintaining ATO. Develops system administration efforts and responds to IAVAs (Information Assurance Vulnerability Alerts).
As a key member of NACON's Change Control Board, the IA lead participates in weekly discussions/decisions about software and architectural or system component changes that impact IA. Works directly with senior management, the development team and customers.
- 5+ years of experience with DoD Information Assurance
- Active Secret Clearance
- BA or BS degree (preferably IT related). Will consider an AS degree and additional years of direct work experience on a case-by-case basis.
Beneficial Skills/Knowledge include: developing and uploading artifacts into eMASS; using HBSS (Host Based Security System) software applications; using ACAS (Assured Compliance Assessment Solution) for automated vulnerability scanning; familiarity with Linux Network Security and Linux operating systems administration; Bash Shell Scripting; and experience with Python.
The work is to be done onsite at NACON's offices in Annapolis, MD. Minimal travel is required.
NACON is a veteran-owned IT company, specializing in the development, integration and installation of innovative training products and solutions for the Federal Government. Our solutions include training and distance learning products, as well as Information Assurance, Information Technology, and Computer Network Defense offerings. We offer competitive salaries and a superb team environment. NACON is a government contractor dedicated to equal employment opportunity: disability/veteran.