|
|
Jun 9, 2020 |
Stafford, VA |
|
|
|
|
SIPR IA Access Engineer
• Role Summary: Service Design team is chartered with developing solutions for a public sector account. We are looking for a qualified Information Assurance (IA) Engineer to develop/update solutions, perform hardware and software testing, create test plans and test cases, assist in certifying new solutions, and troubleshooting complex network/IA problems. Develop deliverables that meet customer’s written requirements as well as security requirements as outlined in DISA STIG’s.
Mandatory Requirements: • Minimum 10 years related IT experience • DOD 8570 IAT Level III (CCNP Security, CASP+ CE, CISA, CISSP, GCED, or GCIH certified) • ITIL v3 certified • US Secret Clearance
Preferred additional experience/skillset: • Technical Bachelor’s degree or equivalent experience • Experience with Agile preferred
Required Experience:
• Experience in DoD Network environment preferred • Experience with Defense Information Security Agency (DISA) Security Technical preferred • Participate as a member of the Project team, provide estimated task requirements, and deliver on commitments with aggressive deadlines • Must be able to interface with other teams to create an overall solution to meet C&A requirements • Experience with DISA NETWORK/IA STIGS • Familiarity with DODAF SE methodology and documentation requirements • Experience with Test Plan/Procedure documentation • Experience with DIACAP • Possessing excellent verbal and written communications skills and solution concept and design. • Experience in Network Design • Must be able to craft design documents and engineering work orders in various formats according to client needs and standards.
Required IT Skills: • Understanding of TCP protocols and OSI layers • Install and troubleshoot Routers and Switches • Comprehensive knowledge of IA solutions including Firewalls, IPSEC and SSL VPNs • Forward and Reverse web proxy configuration • Intrusion Protection installation and configuration • Network Access control • Experience with Application Delivery Controllers • F5 BIG-IP APM/ASM module installation, configuration, and troubleshooting • Experience Web Application Firewall or Database Security Gateway • SSL-offloading, authentication and inspection of web applications • Experience troubleshooting authentication issues by looking at Kerberos and HTTP traffic in packet sniffers (Netmon, Wireshark) • Experience with installations in a DMZ (identifying ports communicating between resources) • Understanding key and client certificate handling certificate operations • Type 1 encryption device configuration and troubleshooting • Experience with virtual infrastructure networking preferred • Understanding of Wireless Local Area Network (WLAN), Wireless Bridging, and Base Area Network (BAN)
|
|
|
|
|
|