Vista Innovative Solutions (VIS) is seeking an Information Security Engineer.
Duties Include: Verify that all ICS are certified and accredited as required by DoD and Army regulations and policy. Provides direction to ensure all ICS and related products are managed within Army management/oversight databases to provide accurate depiction of the systems or products.
ESSENTIAL FUNCTIONS: The following duties ARE NOT intended to serve as a comprehensive list of all duties performed by all employees in this classification. Shown are duties intended to provide a representative summary of the major duties and responsibilities. Incumbent(s) may not be required to perform all duties listed and may be required to perform additional, position-specific duties.
WORK LOCATION: Personnel employed directly or indirectly on contract regardless of work site or company must follow changes in worksite directives.
Company policy does not overrule/supersede any contract worksite directives for those employees working under a federal contract.
REPRESENTATIVE DUTIES:
Verifies that all ICS are certified and accredited as required by DoD and Army regulations and policy. Provides direction to ensure all ICS and related products are managed within Army management/oversight databases to provide accurate depiction of the systems or products.
Participate in strategic planning for the deployment of information security technologies and program enhancements in the OT ICS environment
Work and communicate with operations, engineering, facilities engineers, public works, and IT departments to ensure adequate security controls are in place for systems
Conducts and facilitates inquiries into all security issues and incidents involving ICS and provides findings and recommendations to the ISSM.
Identify and evaluate complex technology risks and remediation methods to mitigate risks
Assesses and evaluates vulnerabilities and/or adversary activity in ICS enclaves. Detects, characterizes, and resolves insecurities in ICS networks. Reviews and analyzes ICS network traffic, configurations, and operating procedures and provides recommendations to improve system security posture.
Establishes and ensures that appropriate security controls over software and hardware are always maintained. Analyzes software and hardware requirements. Patches devices in accordance with IAVAs and reports on compliancy.
Develops, manages and communicates organizational security policies and standards to protect company systems and assets. Research emerging threats and recommends software and hardware solutions and procedures that neutralize those threats.
Designs, establishes and executes company security strategy.
Documents, reviews, maintains and edits security best practices and policies. Communicates and collaborates with IT team to maintain equipment and optimize security of system architecture
Performs other duties as assigned or required.
KNOWLEDGE and SKILLS:
Thorough knowledge of network systems design, development, testing, installation, operating, management, documenting, and maintenance concepts and methods to provide and protect network services.
Extensive knowledge of information technology methods and information protection techniques and procedures. This includes hardware, software, and operating systems; systems configuration and integration; maintenance, upgrades, and modifications, network operations functions, mapping and documenting architecture, firewalls, packet switching communications protocols, and diagnostic tools to analyze difficult and complex system problems and provide resolutions.
Technical experience with or understanding of operational technologies to include programmable logic controllers (PLCs), remote terminal units (RTUs), and supervisory control and data acquisition (SCADA) systems.
At least 3 years of security-related Information Technologies experience with at least 1 year networking with ports and protocols, with an understanding of securing ICS environments. Other experience (including any of the following but not limited to): Internet of Things (IOT) security, network administration, network security, server administration, system security, endpoint security, vulnerability, patch management, desktop security
In-depth knowledge of ICS/Operational technology (OT) Security standards and guidelines (NIST SP 800-82r2, ISA/IEC-62443).
Demonstrate problem solving, critical thinking and logical structuring skills. Strategic thinker with strong communication skills. Must be a self-starter, capable of working with minimal direction and as part of a team. Knowledge of project management principles and methods sufficient to balance workload with travel.
MINIMUM QUALIFICATIONS:
Must be able to obtain Secret clearance.
Bachelor’s Degree or currently working in related field of study (including any of the following but not limited to): Information Systems, Network Engineering or Information Security
Certifications in related field (including any of the following but not limited to): Security +, Network +, CISSP, CCNA Security, CCIE, MCSE, MCITP, SANS GICSP, CISM.
Strong awareness of the security landscape, emerging threats, operational impacts, and vulnerabilities.
One of the following DoD baseline certifications is required prior to start:
- CISA (Certified Information Systems Auditor through ISACA)
- CISSP (Certified Information Systems Security Professional through ISC2)
- SecurityX (previously CASP-CompTIA Advanced Security Practitioner Continuing Education through CompTIA)
- GCIH (GIAC Certified Incident Handler through GIAC)
- GCED (GIAC Certified Enterprise Defender through GIAC)
MINIMUM PHYSICAL REQUIREMENTS:
Position may require travel up to 75% of time (CONUS only) to the following list of locations:
Anniston Munitions Center (ANMC)
Blue Grass Army Depot (BGAD)
Crane Army Ammo Activity (CAAA)
Defense Ammo Center (DAC)
Hawthorne Army Depot (HWAD)
Holston Army Ammo Plant (HSAAP)
Iowa Army Ammo Plant (IAAP)
Lake City Army Ammo Plant (LCCAP)
Letterkenny Munitions Center (LEMC)
McAlester Army Ammo Plant (MCAAP)
Milan Army Ammo Plant (MLAAP)
Pine Bluff Arsenal (PBA)
Pueblo Chemical Depot
Radford Army Ammo Plant (RFAAP)
Scranton Army Ammo Plant (SCAAP)
Tooele Army Depot (TEAD)
Position may require extensive walking of production lines. Candidate may need to walk 3+ miles per day to cover extensive production lines while TDY.
VIS offers a competitive benefits package to include: paid holidays, paid time off including sick and vacation leave, medical, dental and vision insurance, flexible spending accounts, short and long term disability, company paid life insurance, 401(k) with a company match and discretionary profit sharing and tuition reimbursement.
VIS is an Equal Opportunity Employer. Employment decisions are made without regard to any protected category. Hiring preference will be given to BBNC shareholders, their spouses and descendants and Alaska Natives in accordance with Public Law 93-638.