Location: Northern Virginia

Salary: $160,000

Clearance Required: TS/SCI with Polygraph 

 

Responsibilities:

• Implements and maintains information security controls associated with development, delivery, and continuous monitoring of complex, high performance, mission critical information technology systems. 
• Support the program’s Lead ISSE in achieving Risk Management Framework milestones leading to Authority to Operate. 
• Identify project security requirements, based on RMF or as the result of security issues that put the customer’s systems at risk.
• Review and analyze new system hardware and software and provide recommendations concerning system security.
• Participate in network design reviews and security testing for the customer’s networks.
• Coordinate with system development teams to ensure network security standards are followed and implemented correctly.
• Support the program ISSE in coordinating activities between engineers, program representatives, DAOs, ISSO, and other stakeholders involved in accreditation and authority to operate/connect processes.
• Review applicable document/artifacts, such as Security Requirements Traceability Matrixes (SRTMs), System Security Plans (SSPs), Disaster Recovery (DR) and other IA documentation for completeness. Provide recommendations to improve.
• Monitor and coordinate Continuous Monitoring (ConMon) activities for weekly, monthly, quarterly and annual controls
• Provide guidance and support to projects requiring ICD 503 A&A, including deployments to both standard NRO networks and containerized (Kubernetes) IC Cloud environments.
• Work closely with Computer and Facility Security Offices to ensure NISPOM Chapter 8 and ICD 503 requirements are compliant across multiple network platforms.
• Support all phases of the A&A System Security Engineering life cycle to include Software assessments / approvals, system hardening, creation of system CONOPs, test plans, and development of System Security plans.
• Prepare security documentation including RMMs, SCL, SSP and CTPs.
• Assist engineers and development team with securing solutions to STIGs and other standards.
• Optimize security documentation and visibility using tools such as NESSUS, HBSS, Net Witness and others.

Skills:

• Maintain Government-provisioned Communications Security (COMSEC).
• Knowledge in Security-related design
• Experience with support, implementation, and system integration

 

About PGTEK:
PGTEK is a true consulting organization dedicated to helping clients achieve their business and technology objectives utilizing our decades of experience and business relationships. PGTEK invests in the educational advancement of our staff by providing the necessary resources to complete Professional and Business Certifications. Our company is our people, and we treat them like family. EOE, including disability/veterans.

Our comprehensive benefits package for full-time salaried employees is effective immediately upon the start date. Benefits include comprehensive PPO medical coverage with access to a Health Savings Account (HSA) option, a vision plan, and dental insurance with the base dental plan option paid for by PGTEK. Life Insurance, Short and Long-Term disability, and Critical Illness insurance have premiums covered. Additionally, PGTEK offers a matching 401(k) plan and a discount on pet insurance through ASPCA Pet Insurance. An Employee Assistance Program is available at no cost to all employees. We offer a generous amount of PTO and Holidays, and an Education Assistance Program is available after 12 months of employment.