Essential Job Functions

Identifies security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives.
Develops, tests and operates firewalls, intrusion detection systems, enterprise anti-virus systems and software deployment tools.
Provides complex engineering analysis and support for firewalls, routers, networks and operating systems.
Performs and evaluates vulnerability scans within a multi-platform, large enterprise environment.
Reacts to and initiates corrective action regarding security violations, attempts to gain unauthorized access, virus infections that may affect the network or other event affecting security.
Oversees user access process to ensure operational integrity of the system.
Enforces the information security configuration and maintains system for issuing, protecting, changing and revoking passwords.
Develops technical and programmatic assessments, evaluates engineering and integration initiatives and provides technical support to assess security policies, standards and guidelines.
Develops, implements, enforces and communicates security policies and/or plans for data, software applications, hardware and telecommunications.
Performs complex product evaluations, recommends and implements products/services for network security.
Validates and tests complex security architecture and design solutions to produce detailed engineering specifications with recommended vendor technologies.
Reviews, recommends and oversees the installation, modification or replacement of hardware or software components and any configuration change(s) that affects security.
Provides complex technical oversight and enforcement of security directives, orders, standards, plans and procedures at server sites.
Ensures system support personnel receive/maintain security awareness and training.
Assesses the impact on the business unit/customer caused by theft, destruction, alteration or denial of access to information and reports to senior management.
Develops certification and accreditation packages
Provides leadership and work guidance to less experienced personnel.

Basic Qualifications

Bachelor's degree or equivalent combination of education and experience
Bachelor's degree in computer science or related field preferred
Seven or more years of experience in network, host, data and/or application security in multiple operating system environments
Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic mail and access-lists
Experience working with internet, web, application and network security techniques
Experience working with relevant operating system security (Windows, Solaris, Linux, etc.)
Experience working with leading firewall, network scanning and intrusion detection products and authentication technologies
Experience working with federal regulations related to information security (FISMA, Computer security Act, etc.)
Experience working with NIST Special Publications and C & A process methodology
Possess security certifications (CISSP, CCNA, etc)

Other Qualifications

Good communication skills
Strong analytical and problem solving skills to troubleshoot and resolve network/operating system security issues
Ability to perform and interpret vulnerability assessments
Ability to administer the operations of a security infrastructure
Ability to balance and prioritize work
CISSP preferred
Perform security monitoring and analysis of system, network and security logs for the Intelink systems and services to report on possible risks to or violations of security.
Research activity detected to determine its source and nature and probable cause, and assess to determine actual or potential events of interest.
Coordinate, document and report on investigations of possible security events or violations.
Conduct continuous monitoring, to include periodic security vulnerability testing, security configuration review, evaluation, and mitigation, to determine potential impact for security risk.


Job Title:	Information Security Engineer Leader
Job ID #:	IS000003
Clearance:	Yes
Travel:	No
Job Type:	Full-time
Description:	Essential Job Functions Identifies security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives. Develops, tests and operates firewalls, intrusion detection systems, enterprise anti-virus systems and software deployment tools. Provides complex engineering analysis and support for firewalls, routers, networks and operating systems. Performs and evaluates vulnerability scans within a multi-platform, large enterprise environment. Reacts to and initiates corrective action regarding security violations, attempts to gain unauthorized access, virus infections that may affect the network or other event affecting security. Oversees user access process to ensure operational integrity of the system. Enforces the information security configuration and maintains system for issuing, protecting, changing and revoking passwords. Develops technical and programmatic assessments, evaluates engineering and integration initiatives and provides technical support to assess security policies, standards and guidelines. Develops, implements, enforces and communicates security policies and/or plans for data, software applications, hardware and telecommunications. Performs complex product evaluations, recommends and implements products/services for network security. Validates and tests complex security architecture and design solutions to produce detailed engineering specifications with recommended vendor technologies. Reviews, recommends and oversees the installation, modification or replacement of hardware or software components and any configuration change(s) that affects security. Provides complex technical oversight and enforcement of security directives, orders, standards, plans and procedures at server sites. Ensures system support personnel receive/maintain security awareness and training. Assesses the impact on the business unit/customer caused by theft, destruction, alteration or denial of access to information and reports to senior management. Develops certification and accreditation packages Provides leadership and work guidance to less experienced personnel. Basic Qualifications Bachelor's degree or equivalent combination of education and experience Bachelor's degree in computer science or related field preferred Seven or more years of experience in network, host, data and/or application security in multiple operating system environments Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic mail and access-lists Experience working with internet, web, application and network security techniques Experience working with relevant operating system security (Windows, Solaris, Linux, etc.) Experience working with leading firewall, network scanning and intrusion detection products and authentication technologies Experience working with federal regulations related to information security (FISMA, Computer security Act, etc.) Experience working with NIST Special Publications and C & A process methodology Possess security certifications (CISSP, CCNA, etc) Other Qualifications Good communication skills Strong analytical and problem solving skills to troubleshoot and resolve network/operating system security issues Ability to perform and interpret vulnerability assessments Ability to administer the operations of a security infrastructure Ability to balance and prioritize work CISSP preferred Perform security monitoring and analysis of system, network and security logs for the Intelink systems and services to report on possible risks to or violations of security. Research activity detected to determine its source and nature and probable cause, and assess to determine actual or potential events of interest. Coordinate, document and report on investigations of possible security events or violations. Conduct continuous monitoring, to include periodic security vulnerability testing, security configuration review, evaluation, and mitigation, to determine potential impact for security risk.

Apply for this Job