KEYW Corporation

  • Assessment and Authorization Engineer - Assured Compliance Assessment Solution (ACAS)

    Job Locations 2 months ago(4/17/2018 5:33 PM)
    ID
    2018-17586
    # of Openings
    1
    Posted Date
    Information Assurance
    Default: Location : Location
    US-AZ-Sierra Vista
    Default: Location : Location
    US-AZ-Sierra Vista
  • Overview

    Join our assessment and authorization engineering team.  We are responsible for the implementation of the DoD RMF (Risk Management Framework) that supports development, integration, test, and cyber security of the DCGS-A family of systems and products. The assessment and authorization engineering team identifies, researches, and implements a full documented RMF approach and performs ACAS security scanning within an environment both for physical and virtual infrastructure.  Our goal is to enhance the building, infrastructure, and system security while not impeding performance of the services that support our organization. 

    Qualifications

     

     

     

    Responsibilities 

    As an assessment and authorization engineer, you will be part of a team that provides RMF support to the Software Engineering Center (SEC) Intelligence Support Division (ISD). To include evaluating system security requirements to ensure all infrastructure and development systems can be accredited for processing at appropriate classification levels in compliance with applicable policies, regulations, and guidelines.  Specifically, you will: 

    Plan for accreditation

    • Support and advise on Information Assurance issues/concerns
    • Identify security risk analysis, mitigation, evaluation, and reporting in support of IA A&A processes
    • Develop draft ACAS sustainment support documentation for updating and utilization of current and future architectures, change control, configuration management, and operations procedures
    • Configure ACAS Security Center (ie., build repositories, accounts, credentials, scan zones, etc) based on DISA guidelines

    Define system boundaries

    • Perform assessments to identify active devices on the network by OS
    • Map the network and identify assets and if there is segmentation
    • If possible provide graphic of network design to specified audience as directed (ie, Management and technicians).

    Determine the vulnerabilities

    • Build assets lists of discovered assets and segregate by OS
    • Build custom scan policies when needed using latest DISA/Vendor Benchmarks and DISA STIGs
    • Build scans using custom and latest Army policy
    • Schedule scans

    Report

    • Develop and prepare technical reports and related documentation for Certification and Accreditation (C&A)packages
    • Provides detailed system test and scan reports as well as the Plan of Action and Methods (POA&M) document for all tested systems/networks
    • Build custom report templates specific to audience with degree of granularity specific to audience (Technical/Managerial)
    • Create remediation report specific to audience with degree of granularity specific to audience (Technical/Managerial)

    Remediate

    • Research and analyze DoD and Department of the Army (DA) policies to mitigate implementation problems that may impact the ACAS implementation
    • Coordinate with the IT Infrastructure to implement Security Technical Implementation Guide (STIG) changes that apply to the infrastructure baselines

    About the Organization

    KeyW is a pure-play national security solutions provider for the Intelligence, Cyber and Counterterrorism Communities' toughest challenges. We support the collection, processing, analysis and dissemination of information across the full spectrum of their missions. We employ and challenge more than 2,000 of the most talented professionals in the industry with solving such complex problems as preventing cyber threats, transforming data into intelligence and combating global terrorism.

     

    KeyW, together with its direct and indirect subsidiaries, encourages and actively supports a policy of Equal Employment Opportunity and commits to provide equal opportunity to each individual, regardless of race, color, religion, gender, sexual orientation, age, national origin or ancestry, marital status, veteran status, disability or any other classifications protected by Federal, State or local law. In fact, we foster an environment that promotes diversity, balance and fun—because we believe in the importance of having a workplace as unique as the challenges we solve.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share to your network!