Job ID 2019-4208
Job Locations
US-MD-Fort Meade
Category
IT: Information Assurance / Quality / Cyber Security
Type
Regular Full-Time

Overview

NCI is a leading provider of enterprise solutions and services to U.S. defense, intelligence, health and civilian government agencies. NCI's AI solution, Shai(tm), scales humans with artificial intelligence by empowering the workforce to meet their mission by using best in class AI solutions coupled with our exceptional service offerings. Working with strategic partners, NCI is committed to bringing commercial innovation to missions of national importance. NCI is a mid-tier systems integrator headquartered in Reston, VA, and operates at locations across the globe.

 

NCI has been designated a 2020 Military Friendly Employer by MilitaryFriendly.com  

 

 

Responsibilities

NCI: As an Information Assurance Engineer you will support the ARCYBER command in providing Cybersecurity Analyst Support to technical and programmatic IA support for network and information security systems. You will be part of a team that: Designs, develops and implements security requirements; Prepares documentation from information obtained using accepted guidelines (e.g., DITSCAP, RMF, etc.); Prepares Security Test and Evaluation plans and provides C&A support; Analyzes policies and procedures against established laws and regulations and provides recommendations for closing gaps; Develops and completes system security and contingency plans; Develops, tests, and integrates security tools; Conducts security program audits and develops solutions to lessen identified risks; Evaluates, develops and enhances security requirements, policy and tools; Performs vulnerability assessments including development of risk mitigation strategies; and Mentors mid-level and junior staff.

 

Highlights:

 

Provide situational awareness and management of Army networks in support of HBSS, Assured Compliance Assessment Solution (ACAS), Information Assurance Vulnerability Management (IAVM), Cyber Scorecard, Vulnerability Disclosure Program, Commander’s Critical Incident Requirements CCIR, and Department of Defense Information Network (DODIN) incidents. This includes real-time management and surveillance of the Army’s portion of the DODIN. Contractor support shall include, but is not limited to, the following tasks:

  • Perform vulnerability management and maintain cohesive coordination with USCYBERCOM, JFHQ-DODIN, DISA, ARCYBER, Army Network Enterprise Technology Command (NETCOM), Command Duty Officer (CDO), RCCs, other agencies, and higher reporting echelons within the established timelines as established within the CCIR/Friendly Force Information Requirements (FFIR) reporting guide.
  • Implement the IAVM and prepare weekly reports to assess progress.
  • Experience with one or all of the following capabilities: Juniper, Cisco, Mellanox switches, RedHat.
  • Track OPORDs (and other directives/requirements) issued by ARCYBER in order to improve compliance across the Army.
  • Prepare and provide DODIN operational briefings to the Army Cyber Operations Integration Center (ACOIC) and provide input and subject matter expertise as required. Maintains expert knowledge on a wide range of systems and network management, DoD connection approval process, transport technology, satellite, voice, data, video, applications, information assurance, Internet Protocol (IP), and multiservice provisioning platform (edge interface) systems technology such as systems analysis and design, data base management, network integration, software and hardware analysis, software and hardware installation, connectivity, and interoperability.
  • Monitor, coordinate, and report network system and security incidents for the Army network infrastructure.
  • Create and receive telephone and computer-generated reports from Army IS, network elements, and users pertaining to status and operation of worldwide systems and facilities, both military and commercial, and identify and investigate the nature of technical difficulties involved.
  • Coordinate with Theater Signal Commands, RCCs and other Cyber Operations Centers on outages and matters that require escalation to resolve technical deficiencies.
  • Validate ACAS, CA Spectrum, and other web application reporting tools.
  • Perform endpoint management and security scans using applicable tools (i.e., currently Tanium) to identify vulnerabilities across the DODIN.
  • Review, analyze, track, and document incidents and outages and recommend de-confliction resolution and corrective measures. Prepare detailed briefs for senior leadership. Coordinate with the RCCs on Unauthorized Disclosures of Classified Information (UDCI) and other NetOps related issues to ensure adherence to proper procedures and guidelines.
  • Analyzes and interprets statistical data and recommends corrective measures. May be required to articulate the requirements of the ACOIC G33 DoDIN Branch (from the network management point of view) while participating in upcoming network management platforms and technological advances.
  • Serves as technical expert and recognized authority on assigned “special projects” related to network management by the ACOIC G33 DoDIN Branch. To execute the full range of DODIN responsibilities, ARCYBER requires additional support.
  • Support the ACOIC at meetings, conferences, and working groups from Army Cyber Command, HQDA, U.S. Cyber Command and JFHQ-DODIN to formulate program plans and policies, coordinate implementing actions, and facilities meetings to resolve complex issues/problems affecting ACOIC G33 DoDIN mission accomplishment.
  • Maintains program and administrative reference materials, project files, and relevant background documents; maintains current knowledge of procedures, policies, directives, etc.; prepares reports and maintains records of work accomplishments and administrative information; coordinates the preparation, presentation, and communication of work-related information to the supervisor.

Qualifications

Requirements:

  • Must comply with DOD 8570.01M CSSP Analyst expertise (CEH, CFR, CySA+, GCIA, GCIH, GICSP, SCYBER)
  • Must comply with DOD 8570.01M IAM Level III expertise (CISM, CISSP, GSLC, CCISO)
  • S 11+ Years or BA/BA 5+ Years or MA/MS 3+ Years.
  • Top Secret SCI, CI Poly

Preferred requirements:

  • Experience with one or all of the following capabilities: Juniper, Cisco, Mellanox switches, RedHat.
  • Experience designing, developing, implementing, and enforcing security requirements.
  • Expertise preparing Security Test and Evaluation plans.
  • Has provided certification and accreditation support. 
  • Experience developing security plans and contingency plans.
  • Familiar with developing, testing, and integrating security tools as well as configuring and installing the tools.
  • Skilled in conducting security audits and developing mitigations to identified risks.
  • Has conducted vulnerability assessments.

 

PHYSICAL REQUIREMENTS:

 

This position requires the ability to perform the below essential functions:

  • Sitting for long periods
  • Standing for long periods
  • Ambulate throughout an office
  • Ambulate between several buildings
  • Travel by land or air transportation 25%

It is the policy of NCI to provide equal opportunity in recruiting, hiring, training, and promoting individuals in all job categories without regard to race, color, religion, national origin, gender, age, disability, genetic information, veteran status, sexual orientation, gender identity, or any other protected class or category as may be defined by federal, state, or local laws or regulations. In addition, we affirm that all compensation, benefits, company-sponsored training, educational assistance, social, and recreational programs are administered without regard to race, color, religion, national origin, gender, age, disability, genetic information, veteran status, sexual orientation, or gender identity. It is our firm intent to support equal employment opportunity and affirmative action in keeping with applicable federal, state, and local laws and regulations. NCI is a VEVRAA Federal Contractor.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Need help finding the right job?

We can recommend jobs specifically for you! Click here to get started.