Information Assurance / Network Security Engineer

Abacus Solutions Group is a Service Disabled, Veteran Owned Small Business (SDVOSB) that provides technology services and solutions to the federal government. We are currently looking for a Information Assurance/Network Security Engineer to work on our team at the United States Medical Information Technology Center (USAMITC).Summary: The Senior Engineer works as a technical member of the Information Assurance Validation Team, supporting DoD Information Assurance Certification and Accreditation Process (DIACAP) information assurance (IA) controls verification and validation activities as described in policy from DoD, Army and the Medical Command (MEDCOM) for various information systems. This position is involved in the control selection, verifying its implementation, preparation steps prior to validating the control, and the actual validation using one or more of the evaluation methods (Interview, Document Review, Observation, or Testing). The engineer must know how to establish and/or confirm that IA controls are implemented correctly and are effective in their application. An advanced understanding of DIACAP and experience in the field is required. The individual should have exceptional organizational skills and the ability to create and consistently improve upon workflow and plans.Tasks: Function as a member of a team providing DIACAP validation services to MEDCOM organizations, tasks will consist of one or more of the following activities:Coordinate validation activities with customer system points of contact (IAM, IASO, DAAR, DOIM, etc.)Create preliminary schedule of events for on- and off-site activitiesRequest system documentation, to include SIP, DIP, and artifactsIdentify tools and resources required to support validation effortMeet with customer site/system point of contact to discuss schedule of events and required supportParticipate in initial brief (DAA or DAAR, Internal IA staff, Operations Staff)Conduct system analysis and compliance validation activitiesConduct interviewsAnalyze collected data and provide reportsParticipate in out briefBrief leadership on preliminary validation activity resultsComplete analysis of collected data and produce reportsPrepare DIACAP ScorecardConduct peer review of findingsParticipate in conference with customer to discuss the findings and final report contentsParticipate in development of project plans and schedules/milestones/deadlines for validation activitiesMonitor, audit, and coordinate with other members of the validation team to ensure consistencyManage tasks and workflow related to validation activitiesRequirements:Education: Bachelor's degree in computer science or related field or 8+ years experience in systems administration of servers and related infrastructure in a single-site LAN/WAN environment with 2000 clients or more. Experience: 4+ years experience engineering, developing, and administering servers and information systems in a large (2000+ clients), complex multi-user environment is required. Advanced knowledge of system analysis, troubleshooting and security configuration is required. Significant experience in conducting system audits and configuration management processes is necessary.  Advanced knowledge of DoD information system security policies, practices and their application required. Knowledge of Army and MEDCOM information system security policies, practices and their application is desired. Other: U.S citizenship and a Secret security clearance is required. Skills: The following certifications are preferred: Microsoft Certified Systems Engineer: Security; Security +One of the following certifications are preferred: CISSP, CISM, or GSLCAdvanced knowledge of Public Key Information (PKI) systems, applications and security products, web technologies and related functionalities Advanced technical knowledge PKI, certificate structure, certificate revocation/key management and Virtual Private Network (VPN) technologiesAdvanced skill in setup and operation of automated vulnerability scanners. (AppScan, STAT, DISA Gold Disk, SRR, Retina, ect.)Advanced knowledge of network and system architectureExpertise in MS Operating systems (server and workstation)Advanced knowledge of Log analysisEnvironment: The U.S. Army Medical Command currently encompasses over 50 medical treatment facilities (MTFs) worldwide with a 65,000+ user community. This position will work closely with members of various information assurance specialists supporting new systems, developmental systems and systems in the production environment. Individual will perform validation support activities for MEDCOM activities in support of systems in development and in production. Works from a central office location in San Antonio, TX, with travel worldwide with team members to provide certification, accreditation and validation services as required.