Info Assurance Engineer Job Description
Info Assurance Engineer Duties & Responsibilities
To write an effective info assurance engineer job description, begin by listing detailed duties, responsibilities and expectations. We have included info assurance engineer job description templates that you can modify and use.
Sample responsibilities for this position include:
Info Assurance Engineer Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Info Assurance Engineer
List any licenses or certifications required by the position: CISSP, CISM, CEH, CSSLP, MCTS, MCSA, MTA, GIAC, CASP
Education for Info Assurance Engineer
Typically a job would require a certain level of education.
Employers hiring for the info assurance engineer job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Engineering, Education, Information Technology, Technical, Computer, Science, Electrical Engineering, Administration, Systems Engineering
Skills for Info Assurance Engineer
Desired skills for info assurance engineer include:
Desired experience for info assurance engineer includes:
Info Assurance Engineer Examples
Info Assurance Engineer Job Description
- Performing security evaluations of AWS services to understand the capabilities of the services and hence the security controls that may be required and/or recommended for secure use of the service
- Assesses and mitigates endpoint system security threats/risks throughout the program life cycle
- Work as part of an integrated team to architect, implement, and assess Risk Management Framework (RMF) cybersecurity requirements of networks and systems within the space domain, , across ground, communications, and space segments
- Utilize a combination of automated tools and manual methods to audit and monitor systems, identify potential vulnerabilities and assist in determining mitigation actions
- Contribute to the preparation and maintenance of RMF body of evidence documentation
- Create and track requests for hardware/software components and conduct security impact assessments of planned tech solutions
- Participate in configuration control boards to assess and communicate potential security impacts of proposed technical, procedural or operational changes
- Conduct system vulnerability scanning, patch management and flaw remediation activities on Windows and Linux operating systems and various hardware and software components, including those in virtualized environments
- Work closely with system administrators to validate system patches and security relevant configuration changes are implemented correctly and functioning as intended
- Perform information system continuous monitoring using established plans and checklists
- Hands on experience working with of the
- Demonstrated understanding of LAN and WAN concepts
- Additional experience may substitute for degree.•Experience CERT/CND, network, and system security policies and procedures
- Must be able to maintain Risk Management Framework accreditation packages and work within DISA sponsored tools such as eMASS and STIG Viewer
- Some experience with TEMPEST enforcement
- The engineer is required to have a TS/SCI clearance
Info Assurance Engineer Job Description
- Prepare and execute security control assessment procedures to verify conformance with Department of Defense (DoD), Intelligence Community, Special Access Program, and US Space Force security control requirements
- Experience with production deployments various mechanisms used to deploy software and policies
- Analyze similarities and differences of an existing system and customer needs to identify protection needs for information system(s) and network(s)
- Determine appropriate levels of system availability based on critical system functions
- Must be able to execute processes to evaluate and address IA related problems, providing
- TS SCI clearance -5+ years of experience with providing COMSEC support including key management, key renewal, and reporting
- General understanding of TCP/IP and related protocols (HTTP, ssh, smtp)
- Demonstrated experience leveraging intelligence information to plan and conduct technical cyber testing
- Experience performing security compliance scans across a WAN (ACAS preferred)• Strong HBSS background to include configuration, troubleshooting, and deployment• Ability to train on the use of tools in understandable terms • Ability to work as part of an integrated network operations and support team• Familiarity with DoD CERT/CND guiding security policies and procedures, to include experience with vulnerability assessment tools
- The candidate should have experience conducting and coordinating security control reviews
- Working knowledge in of the security assessment tools used by DOJ
- Experience with CyberArk’s Enterprise Password Vault (and Privileged Session Management solutions
Info Assurance Engineer Job Description
- Knowledge of and facility with the Department of Defense Information Assurance Certification and Accreditation Process (DIACAP)/Risk Management Framework (RMF)
- Knowledge of Federal and DoD Guidance (DoDD 8500.1, DoDI 8500.2, DoDI 8510.01, DoDI 8570), DITSCAP, DIACAP, NIACAP, NIST, and DoD Certification & Accreditation processes
- Security Technical ImplementGuide(STIGS)
- 2-4 years of experience supporting technology implementation projects in the Department of Defense sector from an information assurance perspective
- Knowledge of efforts required to certify/accredit an IT system in a DoD-regulated IT environment that resulted in the achievement of an Authority To Operate (ATO)
- Experience addressing and documenting vulnerabilities found during scans of applications/servers using ACAS, HBSS, Fortify, and other vulnerability scanning tools
- Uses basic data gathering skills to document design specifications and user needs
- Security+ or the pursuit thereof is a plus
- Security+ or CISSP certification or the pursuit thereof is a plus
- Candidate must hold an active DoD 8570 IA Workforce Improvement Program IAT Level II Technical Level Certification/s
- Candidate must hold an active DoD 8570 IA Workforce Improvement Program IAT Level III Technical Level Certification/s
- Basic understanding of network concepts (eg
Info Assurance Engineer Job Description
- Experience with system monitoring tools such as Splunk, HBSS
- Must have a minimum DoD Secret security clearance with SSBI
- Must have a Security+ certification or equivalent certification for DoD 8570 compliance
- Interface effectively with customers on a daily basis
- Experience managing Amazon Web Services (AWS) cloud systems and deployments
- Experience writing Linux scripts including PERL
- Must currently hold or be able to acquire Secret Clearance
- Experience with multiple programming languages and environments, Java, .Net, C/C++, C#, Javascript, PERL, Python, AJAX, Flash, Silverlight, ABAP
- Experience using Fuzz testing software (Peach, BeStorm, FX Cop, MiniFuzz)
- Experience with the Vulnerability Management process from scanning to remediation
- Knowledge and experience with Operating Systems (Windows Server 2008, 2012, Linux)
- Knowledge of RMF process and experience with managing assessments
Info Assurance Engineer Job Description
- Familiarity with USPS digital environments (USPS enterprise IT environment and USPS mail processing environment)
- Experience with OS/system vulnerability assessment/scanning tools like MacAfee vulnerability manager, Nessus, Retina
- Data analysis skills demonstrated by related work experience or school work
- Experience in a project coordinator role
- Experience collaborating with technical and management staff to understand strategic and tactical business, application, or service requirements, then translate those into Continuity Standards
- Expert in Business Continuity, ideally in the Information Technology or Information Security sector
- Previous hands-on experience with CERT-RMM
- Having completed 2-day “CERT-RMM Lead Appraisal Book Camp” training course
- Previous hands-on experience with CMMI
- CERT-RMM and/or CMMI appraisal experience
- Being a SEI-certified CERT-RMM Lead Appraiser
- Being a SEI-certified CMMI Lead Appraiser