Information System Security Engineer Junior TRID001
IC-CAP LLC is a Woman Owned / HUBZone Small Business working in the Department of Defense and Intelligence Community. We are always looking for highly talented, energetic, and dynamic professionals that are interested in protecting the defense of our nation.
Some of the positions are future positions. Please look at the opening line of the job description to determine if this is an open or future position.
Our positions are not remote unless stated in the job description below.
We are looking to fill this position at the following location(s):
- Orlando, FL
Information System Security Engineer Junior:
Supports the technical security assessments of computing environments to identify points of vulnerability, non-compliance with established cybersecurity standards and regulations and recommends mitigation strategies. Maintains understanding of current DoD cybersecurity policy, procedures and requirements. Supports implementation and maintenance of software and hardware solutions that enable compliance with cybersecurity requirements. Supports the development of documentation and supports the customer and third party evaluators in support of system accreditation.
Perform security analysis to determine gap, compensating/mitigating controls, and residual risk.
Identify security risks through the security impact analysis, system risk assessments and technology security risk reports.
Apply knowledge of security principles, policy, and regulations.
Conduct security compliance evaluations on IT products to create secure configuration guidelines and baselines.
Analyze security evaluation tools results from Tenable Nessus, Nmap, Wireshark and Metasploit.
Develop secure configuration guidelines and perform security compliant evaluations on various IT product types: Operating Systems, Network Devices, Databases, Cloud Applications, etc..
Organize, develop, and present security briefings, written summaries, and written reports incorporating narrative, tabular and/or graphic elements on security assessments, whitepapers relating to computer and network security technologies and tools.
Effectively and efficiently communicate and collaborate with external and internal customers of any hardware and software configuration changes that adversely affect any current system security and their configurations or violates policy.
Implement the Cyber Security requirements of IT systems and applications documenting them in formal security engineering documents using Risk Management Framework and supporting artifacts associated with risk assessments..
Implement IT security solutions and assures successful implementation.
Education and Experience:
High School or GED equivalent.
1 year relevant experience.
Training and Certifications: