Info Assurance Engineer Job Description
Info assurance engineer
provides security consulting on medium projects for internal clients to ensure conformity with corporate information security policy, and standards.
Info Assurance Engineer Duties & Responsibilities
To write an effective info assurance engineer job description, begin by listing detailed duties, responsibilities and expectations. We have included info assurance engineer job description templates that you can modify and use.
Sample responsibilities for this position include:
Manage knowledge objects
Perform architecture reviews, develop and/or review security designs, perform threat modeling, controls assessments, and risk analysis
Support proposal and presentation of concepts for new or changing services to leadership peers
Strategic planning, risk assessment, continuous monitoring duties involving information security awareness, vulnerability assessment, identifying security issues and deficiencies, evaluating risk and remediation, and incident response, working with the management and technical SMEs to implement mitigation planning and strategies
Provide security lead Change Control Board support, participate in weekly system change technical review meetings
Partnering with programs and business areas to deliver security design and architecture solutions
Providing technical guidance for architecture decisions involving Cloud security and client system integration including IoT style devices
Development of scripts, web services, and web applications to support service needs
Development of documentation to install and configure enterprise service components
Troubleshooting and developing resolutions for complex issues in a myriad of systems in a fast-paced environment
Info Assurance Engineer Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Info Assurance Engineer
List any licenses or certifications required by the position: CISSP, CISM, CEH, CSSLP, MCTS, MCSA, MTA, GIAC, CASP
Education for Info Assurance Engineer
Typically a job would require a certain level of education.
Employers hiring for the info assurance engineer job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Engineering, Education, Information Technology, Technical, Computer, Science, Electrical Engineering, Administration, Systems Engineering
Skills for Info Assurance Engineer
Desired skills for info assurance engineer include:
Lockheed Martin Information Security policies
Security policy and compliance
Git
Jenkins
Puppet
Cloud technologies
Architectural standards and controls requirements
With Amazon Web Services being
Latest industry trends and developments in enterprise IA solutions
LM Corporate security policies
Desired experience for info assurance engineer includes:
Experience organizing, contributing to, the Assessment and Authorization (A&A) of information systems under a NIST compliant Risk Management Framework (RMF)
Familiarity with security/identity protocols such as OpenAM, OpenIG, SAML
In-depth experience with vulnerability analysis assessments
Current/active TS/SCI clearance with the ability to obtain a poly is required
Auditing, Certification and Accreditation (C&A) process, Principles of IA
Managing SPLUNK knowledge objects
Info Assurance Engineer Examples
1
Info Assurance Engineer Job Description
Job Description Example
Our company is looking for an info assurance engineer. If you are looking for an exciting place to work, please take a look at the list of qualifications below.
Responsibilities for info assurance engineer
- Performing security evaluations of AWS services to understand the capabilities of the services and hence the security controls that may be required and/or recommended for secure use of the service
- Assesses and mitigates endpoint system security threats/risks throughout the program life cycle
- Work as part of an integrated team to architect, implement, and assess Risk Management Framework (RMF) cybersecurity requirements of networks and systems within the space domain, , across ground, communications, and space segments
- Utilize a combination of automated tools and manual methods to audit and monitor systems, identify potential vulnerabilities and assist in determining mitigation actions
- Contribute to the preparation and maintenance of RMF body of evidence documentation
- Create and track requests for hardware/software components and conduct security impact assessments of planned tech solutions
- Participate in configuration control boards to assess and communicate potential security impacts of proposed technical, procedural or operational changes
- Conduct system vulnerability scanning, patch management and flaw remediation activities on Windows and Linux operating systems and various hardware and software components, including those in virtualized environments
- Work closely with system administrators to validate system patches and security relevant configuration changes are implemented correctly and functioning as intended
- Perform information system continuous monitoring using established plans and checklists
Qualifications for info assurance engineer
- Hands on experience working with of the
- Demonstrated understanding of LAN and WAN concepts
- Additional experience may substitute for degree.•Experience CERT/CND, network, and system security policies and procedures
- Must be able to maintain Risk Management Framework accreditation packages and work within DISA sponsored tools such as eMASS and STIG Viewer
- Some experience with TEMPEST enforcement
- The engineer is required to have a TS/SCI clearance
2
Info Assurance Engineer Job Description
Job Description Example
Our company is growing rapidly and is looking to fill the role of info assurance engineer. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for info assurance engineer
- Prepare and execute security control assessment procedures to verify conformance with Department of Defense (DoD), Intelligence Community, Special Access Program, and US Space Force security control requirements
- Experience with production deployments various mechanisms used to deploy software and policies
- Analyze similarities and differences of an existing system and customer needs to identify protection needs for information system(s) and network(s)
- Determine appropriate levels of system availability based on critical system functions
- Must be able to execute processes to evaluate and address IA related problems, providing
- TS SCI clearance -5+ years of experience with providing COMSEC support including key management, key renewal, and reporting
Qualifications for info assurance engineer
- General understanding of TCP/IP and related protocols (HTTP, ssh, smtp)
- Demonstrated experience leveraging intelligence information to plan and conduct technical cyber testing
- Experience performing security compliance scans across a WAN (ACAS preferred)• Strong HBSS background to include configuration, troubleshooting, and deployment• Ability to train on the use of tools in understandable terms • Ability to work as part of an integrated network operations and support team• Familiarity with DoD CERT/CND guiding security policies and procedures, to include experience with vulnerability assessment tools
- The candidate should have experience conducting and coordinating security control reviews
- Working knowledge in of the security assessment tools used by DOJ
- Experience with CyberArk’s Enterprise Password Vault (and Privileged Session Management solutions
3
Info Assurance Engineer Job Description
Job Description Example
Our growing company is searching for experienced candidates for the position of info assurance engineer. If you are looking for an exciting place to work, please take a look at the list of qualifications below.
Responsibilities for info assurance engineer
- Knowledge of and facility with the Department of Defense Information Assurance Certification and Accreditation Process (DIACAP)/Risk Management Framework (RMF)
- Knowledge of Federal and DoD Guidance (DoDD 8500.1, DoDI 8500.2, DoDI 8510.01, DoDI 8570), DITSCAP, DIACAP, NIACAP, NIST, and DoD Certification & Accreditation processes
- Security Technical ImplementGuide(STIGS)
- 2-4 years of experience supporting technology implementation projects in the Department of Defense sector from an information assurance perspective
- Knowledge of efforts required to certify/accredit an IT system in a DoD-regulated IT environment that resulted in the achievement of an Authority To Operate (ATO)
- Experience addressing and documenting vulnerabilities found during scans of applications/servers using ACAS, HBSS, Fortify, and other vulnerability scanning tools
Qualifications for info assurance engineer
- Uses basic data gathering skills to document design specifications and user needs
- Security+ or the pursuit thereof is a plus
- Security+ or CISSP certification or the pursuit thereof is a plus
- Candidate must hold an active DoD 8570 IA Workforce Improvement Program IAT Level II Technical Level Certification/s
- Candidate must hold an active DoD 8570 IA Workforce Improvement Program IAT Level III Technical Level Certification/s
- Basic understanding of network concepts (eg
4
Info Assurance Engineer Job Description
Job Description Example
Our innovative and growing company is looking for an info assurance engineer. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for info assurance engineer
- Experience with system monitoring tools such as Splunk, HBSS
- Must have a minimum DoD Secret security clearance with SSBI
- Must have a Security+ certification or equivalent certification for DoD 8570 compliance
- Interface effectively with customers on a daily basis
- Experience managing Amazon Web Services (AWS) cloud systems and deployments
- Experience writing Linux scripts including PERL
Qualifications for info assurance engineer
- Must currently hold or be able to acquire Secret Clearance
- Experience with multiple programming languages and environments, Java, .Net, C/C++, C#, Javascript, PERL, Python, AJAX, Flash, Silverlight, ABAP
- Experience using Fuzz testing software (Peach, BeStorm, FX Cop, MiniFuzz)
- Experience with the Vulnerability Management process from scanning to remediation
- Knowledge and experience with Operating Systems (Windows Server 2008, 2012, Linux)
- Knowledge of RMF process and experience with managing assessments
5
Info Assurance Engineer Job Description
Job Description Example
Our company is growing rapidly and is looking to fill the role of info assurance engineer. Thank you in advance for taking a look at the list of responsibilities and qualifications. We look forward to reviewing your resume.
Responsibilities for info assurance engineer
- Familiarity with USPS digital environments (USPS enterprise IT environment and USPS mail processing environment)
- Experience with OS/system vulnerability assessment/scanning tools like MacAfee vulnerability manager, Nessus, Retina
- Data analysis skills demonstrated by related work experience or school work
- Experience in a project coordinator role
- Experience collaborating with technical and management staff to understand strategic and tactical business, application, or service requirements, then translate those into Continuity Standards
- Expert in Business Continuity, ideally in the Information Technology or Information Security sector
Qualifications for info assurance engineer
- Previous hands-on experience with CERT-RMM
- Having completed 2-day “CERT-RMM Lead Appraisal Book Camp” training course
- Previous hands-on experience with CMMI
- CERT-RMM and/or CMMI appraisal experience
- Being a SEI-certified CERT-RMM Lead Appraiser
- Being a SEI-certified CMMI Lead Appraiser