Information Assurance Security Specialist III | Req#3565
Description
ActioNet has an immediate opportunity for an Information Assurance/Security Specialist – Level III in San Antonio, TX. ActioNet is an IT service provider and solutions integrator headquartered in Vienna, VA that works with the Federal Government and Department of Defense.
Join our dynamic team, where you will oversee management and security for designated Sites and supported networks. They will administer DOD security-related guidance, conduct risk assessments for software and hardware deployments, and ensure compliance with government-approved versions for infrastructure components, workstations, and servers. Additionally, they will promptly report security breaches or policy violations and address security incidents within the designated IP space, including neighboring networks.
Responsibilities:
- Perform a Basic Cyber Assessment, see Deliverable 4, using the NIST SP 800-171 DoD Assessment Scoring Template, and enter the results electronically in Supplier Performance Risk System (SPRS) for each covered Contractor information system that is relevant to an offer, contract, task order, or delivery order
- Specialize in the analysis or application of system security practices within an organization/agency
- Assists the system owner and ISSO in varies aspects in designing, developing, and writing certification and accreditation (C&A) documentation packages included in the process of helping an organization/agency obtain an ATO on its systems and/or environment
- Follows National Institute of Standards and Technology (NIST) and/or Department of Defense IA Certification and Accreditation Process standards in performance of job functions
- Provide resources to administer the Government Mission Assurance Category (MAC) Three (MAC3) and Government MAC Two (MAC2); Sensitive but Unclassified office automation environment security features, including but not limited to, access control, malicious code protection, vulnerability and patch management, audit logs and records management, attack sensing and warning for all supporting network, computing, and information components
- Provide resources to administer and support DOD, MHS, and DHA IA security compliance reviews including ad-hoc, annual, and quarterly scans, security information requests and certification and accreditation activities
- Provide resources to administer and support security reviews of all new or modified systems, devices, and configurations to ensure a consistent security posture
- Provide resources to administer all security related documentation and databases including System Security Authorization Agreements (SSAA), recording mitigation strategies, waivers, approvals, ports and protocol registration, and user rights tracking
- Provide resources to assist in the detailed investigation and documentation of security incidents as required
- Support the Government’s directive to maintain and sustain all aspects of CAC login and PKI technology and/or other Government authorized or required two factor identification protocol or system
- Maintain application approval databases and user rights forms
- Provide expertise in Government scanning tools, such as Retina, AppDetective, and ACAS and or government provided security protocols, including forensics analysis and Intrusion Prevention System
- Assist Information Systems Security Manager (ISSM) in meeting their duties and responsibilities
- Implement and enforce all DoD IS and PIT system cybersecurity policies and procedures, as defined by cybersecurity-related documentation
- Ensure that all users have the requisite security clearances and access authorization, and are aware of their cybersecurity responsibilities for DoD IS and PIT systems under their purview before being granted access to those systems
- Coordinate with the ISSM to initiate protective or corrective measures when a cybersecurity incident or vulnerability is discovered and ensure that a process is in place for authorized users to report all cybersecurity-related events and potential threats and vulnerabilities to the ISSO.
- Ensure that all DoD IS cybersecurity-related documentation is current and accessible to properly authorized individuals.
Requirements:
- Secret Clearance
ActioNet is a CMMI-DEV Level 4, CMMI-SVC Level 4, ISO 20000, ISO 27001, ISO 9001, HDI-certified, woman-owned IT Solutions Provider with strong qualifications and expertise in Agile Software Engineering, Cloud Solutions, Cyber Security and IT Managed Services. With 24+ years of stellar past performance, ActioNet is the premier Trusted Innogrator!
Why ActioNet?
At ActioNet, our Passion for Quality is at the heart of everything we do:
- We are committed to make ActioNet a great place to work and continue to invest in our ActioNeters
- We are committed to our customers by driving and sustaining Service Delivery Excellence
- We are committed to give back to our Community, help others and make the world a better place for our next generation
ActioNet is proud to be named as a Top Workplace for the ninth year in a row (2014 - 2022). We have 98% of Customer retention rate. We are passionate about the inspirational missions of our customers and we entrust our employees and teams to deliver exceptional performance to enable the safety, security, health and well-being of our nation.
What's in It For You?
As an ActioNeter, you get to be part of exceptional team and a corporate culture that nurtures mutual success for our customers, employees and our communities. We give you the tools to be successful; all you need to do is bring your best ideas, your energy and a desire to develop your skills, experience and career. Are you ready to make a difference?
ActioNet is an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
********Direct Applicants, only. No Agencies, No third-party recruiters, please********