Base-2 Solutions is seeking a Senior Information Systems Security Officer responsible for safeguarding computer networks and systems to ensure data security, integrity, and confidentiality at the highest standards.
- Designs, develops, implements and/or integrates IA and security systems and system components including those for networking, computing, and enclave environments with multiple enclaves and differing data protection/classification requirements.
- Analyzes architecture and system functionality for multiple technologies.
- Contributes to the development and evaluation of attack scenarios.
- Prepares and delivers technical reports and briefings.
- Has a complete understanding of Risk Management Framework and implements the process on program systems/networks.
- Performs or reviews technical security assessments of computing environments to identify vulnerabilities, non-compliance with IA standards and regulations, and recommends mitigation strategies.
- Validates and verifies system security requirements definitions and analysis and establishes system security designs.
- Assists architects and systems developers in identifying and implementing appropriate information security functionality to ensure uniform application security policy and enterprise solutions.
- Supports building security architectures and enforces trusted relations among external systems and architectures.
- Assesses and mitigates system security threats/risks throughout the program life cycle.
- Contributes to security planning, assessment, risk analysis, risk management, certification, and awareness activities for system and networking operations.
- Reviews certification and accreditation (C&A) documentation, providing feedback on completeness and compliance.
- Performs system installation, configuration, maintenance, account maintenance, signature maintenance, patch management, and troubleshooting of operational IA and CND systems.
- Performs limited penetration testing and routine exploit analysis.
- Performs system or network designs encompassing multiple enclaves with differing data protection/classification requirements.
- Recommends system-level solutions to resolve security requirements.
- Supports enforcement of design and implementation of trusted relationships among external systems and architectures.
- Works with application leads, sysadmins, DBAs, developers, and testers to ensure assigned systems are security compliant and achieve/maintain ATO.
- Loads artifacts such as STIG checklists and ACAS scans.
- Helps implement STIG checklists and mitigate scan findings.
- Supports security assessment events and responds to questions from PAT team, ISSMs, and SCA.
- Experience loading artifacts such as STIG checklists and ACAS scans.
- Experience helping to implement STIG checklists and mitigate scan findings.
- Experience supporting security assessment events and responding to questions from PAT team, ISSMs, and SCA.
- Experience working with application leads, sysadmins, DBAs, developers, and testers to ensure systems are security compliant and achieve/maintain ATO.
- Experience working with Xacta.
- Not specified.
- Bachelor's degree with 14+ years of experience.
- Master's degree with 12+ years of experience.
- PhD with 10+ years of experience.
- Active Top Secret/SCI with CI Polygraph