GHG Corporation
  • ASC
  • Denver, CO, USA
  • DOE
  • Salary
  • Full Time

Yes


Job purpose

The successful candidate will serve as a member on the Information Security (InfoSec) Engineer Team and will be responsible for applying Cybersecurity principles and best practices to proactively protect and maintain the confidentiality, integrity, and availability, of USAP data, information systems, and network.

 

Duties and responsibilities

Provides support for all security-engineering initiatives, such as:

  • IT Security Strategy
  • Developing and validating baseline security configurations and policies
  • Design, implementation, and continuous monitoring of enterprise services
  • Linux Administration
  • Support Incident Response activities to mitigate damage, determine impact, and implement corrective actions.
  • Endpoint vulnerability management
  • Firewall Reviews
  • Web Application penetration testing
  • Drafting Security Requirements for projects
  • The successful candidate will serve as a member on the Information Security (InfoSec) Engineer Team and will work directly with Information Operations and Architecture Teams to ensure secure and continued operational support services to the United States Antarctic Program (USAP).
  • The selected candidate will be responsible for applying Cybersecurity principles and best practices to proactively protect and maintain the confidentiality, integrity, and availability, of the USAP data, information systems, and network. Selected candidate must possess a solid background in secure Cisco networking, UNIX, VMWare and Windows systems administration.
  • The selected candidate will be required to support project security requirements development, design development and analysis, the implementation of Security Technical Implementation Guides (STIGs), and continuous security monitoring activities.
  • The selected candidate will conduct in-depth vulnerability scans utilizing tenable security center, provide risk analysis, and assistant in the development of plans of action & milestones (POA&M).
  • All other duties as assigned.

 

Qualifications

  • Bachelor's degree from an accredited college  in Computer Science, Management Information Systems, or related field., or equivalent experience/combined education, with 9 years of professional experience; or 7 years of professional experience with a related Master's degree.
  • CERTIFICATIONS AND/OR LICENSING REQUIREMENTS:  Current Information Security certification (CISSP, Security+, CCNA Security, CISA, etc.) or other relevant certification required.

 

TRAINING:  REQUIRE AN EXPERIENCED PROFESSIONAL

 

  • Must have experience in system vulnerability assessments and developing security assessment and authorization packages to include: System Security Plans (SSP), Plan of Action & Milestones (POA&M), Security Assessment Reports and Acceptance of Residual Risk documents. 
  • Candidate must have experience with Federal Information Security Management Act (FISMA) requirements and National Institute of Standards and Technology (NIST) Risk Management Framework (RMF).
  • Experience should include security policy development, security, application vulnerability assessments, risk analysis and compliance testing.
  • Knowledge of NIST information security standards, rules and regulations related to information security and data confidentiality and desktop, server, application, database, network security principles for risk identification and analysis.
  • Strong analytical and problem solving skills. Excellent communication (oral, written, presentation), interpersonal and consultative skills.

Desired Skills:

MAC O/S platform experience is a plus

 

Working environment

This job operates in a professional office environment.  This role routinely uses standard office equipment such as computer, phones, photocopiers, filing cabinets and fax machines.

 

Physical requirements

Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions.

This is a largely sedentary role; however, some filing is required, which would require the ability to lift files, open filing cabinets and bend or stand on a stool as necessary.

 

 

 

Position Expectations

This is a full-time position and hours of work are Monday through Friday

November 2017 through September 2018 (~1 year)

No travel is expected for this position.

GHG Corporation
  • Apply Now

  • * Fields Are Required

    What is your full name?

    How can we contact you?

    By clicking the button above, I agree to ApplicantPro's Applicant Information Use Policy.

  • Sign Up For Job Alerts!

  • Share this Page
  • Facebook Twitter LinkedIn Email
.
Logo Employee Intranet Twitter Linked In News Feed Home Engineering Services About Us Products Services News Center