Network Security Engineer

Location: Fort Belvoir, VA, USA

Apply

Requisition Number: 2022-6134

Position Title:

External Description: Summary

The United States Army (USA), 7th Signal Command requires a Network Security Engineer with at least three (3) years' Network Engineering experience and one (1) years' experience employing the Risk Management Framework (RMF). The successful candidate will have a minimum of two (2) years' experience working in the areas and performing the types of actions listed in the following "Essential Functions" and "Competencies" discussions. The customer is seeking a Network Security Engineer to employ their Network Engineering experience and skills as Cyber Security Analyst developing and implementing plans in support of government efforts to protect information systems by detecting threats to those systems, developing responses to detected threats, and responding to actual cyber-attacks. Responsibilities include supporting government efforts to ensure compliance with the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) while maintaining the RNEC-NCR network infrastructure (including the Installation Campus Area Network (ICAN). The successful candidate will have a SECRET security clearance, and a bachelor's degree in computer science or Engineering or its equivalent with excellent communication skills (oral and written). Must have a minimum of three (3) years' relevant experience including experience with DoD security hardening, collection and assessment tools (STIGs, Assured Compliance Assessment Solution, (ACAS), Security Content Automation Protocol (SCAP), Nessus, etc.) and experience with security architectures, firewalls and network access. Must be a certified Information Assurance Technician-I (IAT-III) (for Enclave) (See DoD 8570 IAT Certification and Requirements). Preferred certifications are: CompTIA IT Fundamentals, CompTIA Cloud Essentials, CompTIA A+, Linux Essentials, Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Solutions Expert (MCSE), Cisco Certified Entry Networking Technician (CCENT), Cisco Certified Network Associate (CCNA) - Routing and Switching, Cisco Certified Network Professional Level (CCNP) - Routing and Switching and VMware Certified Professional. (See "Competencies" for more detailed listing)

Essential Functions

  • Assists the Government with cybersecurity functional support for assessments, authorizations, and documentation of fielded systems managed by the RNEC-NCR (includes providing support for the independent assessment of the compliance of RNEC-NCR information systems with DoD RMF standards using DoDI 8510.01)
  • Assists the Government Capability Manager/Information System Owner (ISO) in ensuring that the information systems are configured in accordance with DISA Security Technical Implementation Guides (STIGs), applicable patches and other cybersecurity requirements.
  • Supports the Government's ability to follow DoD cybersecurity policy requirements set forth in DoDI 8500.01, "Cybersecurity," and DoDI 8510.01, "Risk Management Framework (RMF) for DoD Information Technology (IT)" and their successors.
  • Demonstrates extensive experience in cybersecurity documentation and system authorization artifacts (System Security Plan, lifecycle documentation, continuous monitoring plan, Security Assessment Plan, Security Assessment Report, Risk Assessment, etc.).
  • Demonstrates extensive knowledge of the Risk Management Framework (RMF). Ensuring currency by regularly reviewing the RMF Knowledge Service - https://rmfks.osd.mil/rmf/Pages/default.aspx which is the DoD's official site for enterprise RMF policy and implementation guidelines.
  • Reviews and ensures all RNEC-NCR RMF related activities adhere to the operational Tactics, Techniques and Procedures (TTPs) and Operations Orders that are hosted on the US Army Component Workspace Operations tab of the RMF Knowledge Service. The TTPs provide amplifying guidance and process implementation for US Army organizations regarding RMF.
  • Supports RNEC-NCR compliance with Risk Management Framework (RMF) processes. These efforts include utilizing the Enterprise Mission Assurance Support Service (eMASS) to record RMF activities such as control implementation of all applicable Security Controls as identified through information system security categorization in accordance with NIST SP 800-53, CNSSI 1253, and DoDI 8510.01.
  • Uses eMASS to ensure all RMF related artifacts and documents are current, accurate, and relevant.
  • Provides technical inputs regarding Certificate of Noteworthiness (CoN) and/or RMF Assess Only submissions.
  • Ensures compliance with AR 25-1 and AR 25-2 by supporting workflow planning and implementations which preclude the ability to install or connect non-Government-owned computing systems or devices to Government networks without the COR's coordination and obtaining proper authorization from the appropriate Information System Security Manager (ISSM), ensuring that all software employed by the RNEC-NCR has a Government Certificate of Networthiness or has been authorized under the Risk Management Framework (RMF) Assess Only process.
  • Supports the Government by performing a variety of broad network engineering tasks focused on the design, implementation, testing, and troubleshooting of the RNEC-NCR intricate network infrastructure (including the Installation Campus Area Network (ICAN).
  • Uses Remedy ticket submissions/results for research and analysis.
  • Interprets and implements Senior Network Engineer's guidance.
Competencies
  • Must obtain and maintain a SECRET security clearance and bachelor's degree in computer science or Engineering or its equivalent with excellent communication skills (oral and written) to provide meaningful inputs during Network Engineering efforts, interactions with the government customer and to accommodate possible interactions with senior government officials.
  • Must have at least one (1) years' experience employing the Risk Management Framework (RMF) and a minimum of three (3) years' relevant experience including experience with DoD security hardening, collection and assessment tools (STIGs, Assured Compliance Assessment Solution, (ACAS), Security Content Automation Protocol (SCAP), Nessus, etc.) and experience with security architectures, firewalls and network access.
  • Must be a certified Information Assurance Technician-I (IAT-III) (for Enclave) (See DoD 8570 IAT Certification and Requirements)
  • Customer prefers candidates who demonstrate an in-depth knowledge of the communications networks and systems employed by the customer.
  • Preferred certifications are: CompTIA IT Fundamentals, CompTIA Cloud Essentials, CompTIA A+, Linux Essentials, Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Solutions Expert (MCSE), Cisco Certified Entry Networking Technician (CCENT), Cisco Certified Network Associate (CCNA) - Routing and Switching, Cisco Certified Network Professional Level (CCNP) - Routing and Switching and VMware Certified Professional.
Supervisory Responsibility

None

Work Environment

This job operates in a professional office environment within the continental US with occasional travel to offices within the National Capital Region and Georgia. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines.

Physical Demands

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.
  • Must be able to remain in a stationary position 75% of the time.
  • Occasionally moves about inside the office to access file cabinets, office machinery, etc.
  • Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine, and computer printer.
  • Expresses or exchanges ideas by means of the spoken word. Those activities in which they must convey detailed or important spoken instructions to other workers accurately, loudly or quickly.
  • Frequently moves standard office equipment up to 25 pounds.
  • May occasionally require lifts of items which exceed 25 pounds.
  • Must be able to work indoor conditions 90% of the time.

While performing the duties of this job, the employee is regularly required to talk or hear. The employee frequently is required to stand; walk; use hands to finger, handle or feel; and reach with hands and arms.

Position Type/Expected Hours of Work

This is a full-time position. Typical days and hours of work are Monday through Friday, between the core hours of 6:00 a.m. to 6:00 p.m. Evening and weekend hours required, as required by business need.

Travel

Travel is primarily local during the business day, although some out of the area travel and overnight may be expected.

Experience
  • Must have at least one (1) years' experience employing the Risk Management Framework (RMF) and a minimum of three (3) years' relevant experience including experience with DoD security hardening, collection and assessment tools (STIGs, Assured Compliance Assessment Solution, (ACAS), Security Content Automation Protocol (SCAP), Nessus, etc.) and experience with security architectures, firewalls and network access.

Education
  • Bachelor's degree in Computer Science or Engineering or its equivalent.

Additional Eligibility Qualifications
  • Must be a certified Information Assurance Technician-III (IAT-III)
  • Preferred certifications are CompTIA IT Fundamentals, CompTIA Cloud Essentials, CompTIA A+, Linux Essentials, Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Solutions Expert (MCSE), Cisco Certified Entry Networking Technician (CCENT), Cisco Certified Network Associate (CCNA) - Routing and Switching, Cisco Certified Network Professional Level (CCNP) - Routing and Switching and VMware Certified Professional.
Security Clearance

Must possess or be able to obtain/maintain a SECRET security clearance.

Executive Order 14043 COVID-19 Vaccination Requirement
Pursuant to Executive Order 14043, this position may require full vaccination against COVID-19 regardless of work location pending final decisions on the Executive Order.

AAP/EEO Statement

All Native Group is an equal opportunity employer. All applicants are considered without regard to age, sex, race, national origin, religion, marital status or physical disability. However, preference may be extended to persons of Indian descent in accordance with applicable laws.

Other Duties

Not Applicable

#LI-TB1

City: Fort Belvoir

State: Virginia

Community / Marketing Title: Network Security Engineer

Company Profile:

Location_formattedLocationLong: Fort Belvoir, Virginia US

CountryEEOText_Description: US EEO Verbiage

Copyright 2020 © All Native Group

filler