Current Opportunities
SE3/SISSE/SME2 (Labor Category Flexible)
Description of Position
Position Description:
Candidate will support IAD Program
Office for Secure Configuration Management (SCM). Overall SCM efforts are
strategic in nature but this position would be mostly focused on the tactical
engagements throughout the DoD involving "Patching the GIG".
Candidate will take a holistic approach to gaining situational awareness on all
the efforts underway to secure the current GIG infrastructure. Candidate
will then advise Government personnel on recommendations and approaches.
Candidate would track incremental progress and provide situational reporting
and milestone updates.
Qualifications:
In addition to the required system
engineering skills, the candidate must have recent experience in Global
Information Grid (GIG) Information Assurance (IA) and a solid background in the
major IA security service disciplines. The candidate must have overall
Enterprise Security Management and architecture experience defined as those
systems, processes, and personnel required to order, create, disseminate,
modify, suspend, and terminate management controls to provision and operate IA
services, processes, and devices across an enterprise. The candidate must
be familiar with defense in depth concepts as well as IA strategic
planning. The candidate needs to have strong mentoring skills as well as
the ability to write detailed IA configuration management documents such as
technical strategies and concepts of operation, and have the ability to lead a
broad IA community in a single technical direction. Required recent
experience must include the following as related to Configuration Management; Configuration
Management best practices (Device, Network, Service, Architectures), Computer
Network Defense, DoD software patch and vulnerability management, and any other
security and network configuration management concepts, including but not
limited to Host Base Security System (HBSS), Secure Content Automation Protocol
(SCAP), Federal Desktop Core Configurations (FDCC), DoD Vulnerability
Management System (VMS), National Vulnerability Database (NVD), Passive and
Active network scanners, and GIG IA architecture.
Specific Duties:
Position will require involvement in
some/all of the following specific SCM related activities:
1. “Patch the GIG”
strategy and tracking
2. US Cyber Command
meetings
3. DISA meetings
4. NetOps
Requirements Working Group (NRWG) support:
a. Version and
Configuration Management (VCM)
b. Capability
Analysis Teams (CAT)
5. Enterprise
Solutions Steering Group (ESSG) support:
a. Asset
Configuration Compliance Module (ACCM) TAG
b. Remediation TAG
6. CND Architecture
Working Group (CAWG) support
7. Asset Discovery
& Detection Thread Lead
8. Configuration Risk
Mitigation Thread Lead
9. IA Campaign Plan
support and input
10. Support to US Cyber Command on CTO oversight and
generation
11. Support and input to SCM Proof of Concept efforts
12. Support to asset visibility efforts with DoD orgs/agencies
and CND Service Providers
|
|
Additional Requirements
Security Clearance: Top Secret with Lifestyle Polygraph
Location: MD, Laurel/Ft Meade area
Salary: Salary commensurate with experience.