Job: Network Security Engineer

Jobing Description

Network Security Engineer

Location: Honolulu, HI

Description

The ideal candidate will possess the following ISSO CAPABILITIES and KNOWLEDGE:

-Knowledge of DIACAP,and IAVA/STIG implementation and remdiation process

-Establish and manage information technology (IT) systems in accordance with (IAW) government guidelines

-Assist in Implementation of IT security policy and provide guidance for security compliance

-assist in Implementation of IT security plans for computing systems IAW government and company policy

-Coordinate IT security approvals to ensure compliance

-Assist in network/system analysis and vulnerability studies in coordination with network management staff and systems administrators

-Knowledge (basic to extensive) of networking protocols and management, security auditing, virus technology, software platforms and customer computer security requirements

-Work well with other staff, including proficient written, verbal, leadeship and people skills

JOB DESCRIPTION: Assists with network security systems for LAN/WAN, telecommunications, and voice systems. Reports to Manager of network security administration staff. Includes information assurance responsibilities. Candidate will ensure to implement security requirements for IT systems throughout their life cycle, from the requirements definition phase through disposal, including any disaster recovery. This will include ensuring that the systems and data being processed are not only properly protected but are also available to the user community when needed on essentially a 24/7 basis IAW the NISPOM. The candidate will coordinate all IT security matters with the security chain of command of the Contractor Program Security Officer and subsequently the Contractor Program Security Manager. ISSO responsibilities (listed above and in the NISPOM) include preparing Systems Security Plans (SSPs) for certification and accreditation, security input in the configuration management of the networks, staying abreast of new technologies and methodologies as it relates to information security, and meeting contract deliverables, such as PMRs, 24/7 availability, on-call, etc. Concentrates on the network design and security, particularly troubleshooting and/or debugging network/security-related problems. Ability to analyze alert data from a variety of products and help the Government develop a strategy on how to address these threats. Able to monitor and analyze data from a variety of network devices and provide security analyst support for a complex, global, wide area network, including firewalls, routers, switches, out-of-band management appliances, network analyzer appliances, virtual private network (VPN) appliances, intrusion detection systems (IDS) and communications circuits. Backbone and WAN support consist of Internet connections and point-to-point, frame-relay and MPLS networks. Must be familiar with DOD STIG Requirements. Able to analyze DoD operations of firewalls, recommend firewall rule changes, and recommend changes to router access-lists according to STIGs and Checklists. Must be able to run scripts and command line checks on all types of Unix and Solaris Servers. Must have experience with UNIX kernels system administration. To meet DOD requirements, must have a minimum Security+ certification. Must have Solaris System Administration experience and knowledge. Familiar with Linux and all the Open Source types of Unix systems. Familiarization of Cisco IOS a plus. Programming language for scripting unix shells a must to include Perl and C++ at a minimum. Working knowledge of network and security tools for proper troubleshooting to include Wireshark, Ethereal, Snort etc. Knowledge of Database and database security a plus. Must be familiar with the IAVA management process and the Vulnerabiltiy Management System (VMS) used by Government. agencies to comply with security requirements. Familiar with Remedy trouble ticket system a must. Hardware and software experience on all types of Unix Open Source systems. TCP/IP knowledge and firewall administration a must. Handles web and network security exploits, intrusion prevention, network traffic analysis, cryptography and encryption.

SECURITY REQUIREMENTS: The candidate must be a US citizen and possess a Secret security clearance.

EDUCATION and/or EXPERIENCE:A Bachelors Degree in Network Engineering or equivalent years of experience, five (5) plus years experience in integration and configuration of secure network facilities and proficiency with computer based applications is preferred.

Requisition Number: 1146990
apply or