Information System Security Specialist III with Security Clearance

Location: US IN-Crane Employee Type: Full-Time/ Not-Exempt Travel Required: Yes/ up to10% Approximate Start Date: Upon Suitable Candidate Selection Posting Close: Upon Suitable Candidate Selection Work is performed in a Secret Room for the entire working period. Position Description: The Information System Security Specialist is responsible for supporting all aspects of a Program Information Assurance (IA) processes tailored to include minimum qualification standards, fundamental awareness and familiarity to demonstrated competency with specific experience in Cyber Security, Engineering, Test & Evaluation, (T&E) and/or Security Control Assessor (SCA) under a Certification & Accreditation (C&A) and/or Assessment & Authorization (A&A) process. The specialist should demonstrate a working knowledge of the Risk Management Framework (RMF) process and/or include prior experience with the Defense Information Assurance & Certification Accreditation Process (DIACAP). Familiarity with security policies & guidance documents to assist with the preparation and maintenance of process artifacts, traceability documents purposed for compliance with Authority to Operate (ATO) requirements. The specialist is expected to evaluate security solutions to ensure they meet security requirements for processing up to classified information and supervise and/or maintain the operational security posture for an information system or program. Position Responsibilities: Run ERB Scan
• Patch Remediation
• Run Nessus Scan
• Patch Management
• Download patches for previous month
• Create stigs checklist
• Run STIGS, Dats and Plug-ins Security Architecture: Collaborate with the CISO and other stakeholders to design and implement robust security architecture and infrastructure that protects the organization's information systems. Security Policies and Procedures: Develop and enforce security policies, procedures, and standards in alignment with industry best practices and compliance requirements. Risk Assessment: Conduct regular risk assessments and vulnerability scans to identify and mitigate security threats and vulnerabilities. Incident Response: Lead and coordinate incident response efforts in the event of a security breach or incident, ensuring timely resolution and compliance with legal requirements. Security Awareness: Provide training and awareness programs to educate employees about security best practices and ensure a security-conscious culture within the organization. Compliance: Monitor and maintain compliance with relevant regulatory requirements (e.g., GDPR, HIPAA, ISO 27001) and industry standards. Security Tools: Evaluate, select, and implement security tools, technologies, and solutions to enhance the organization's security posture. Security Audits: Perform security audits, assessments, and penetration testing to identify weaknesses and recommend corrective actions. Documentation: Maintain comprehensive documentation of security policies, procedures, incident reports, and security configurations. Collaboration: Work closely with IT teams, system administrators, and third-party vendors to ensure security measures are integrated into all systems and applications. Position Requirements: 6+ Years of practical experience in a Cybersecurity, Engineering, T&E or A&A (formerly C&A) related field. Knowledge and experience working with Risk Management Framework, NIST 800-53 Experience with security controls Windows 10 and RedHat Enterprise Linux knowledge within Cybersecurity Experience writing technical and cyber related documentation Ability to communicate technical and security related concepts to a broad range of technical and non-technical people MUST be a US Citizen Must have active Secret Clearance or the ability to obtain one Education and Certification: B.S. or M.S in Computer Science, Computer Engineering, or related technical field Security+ Certification (IAT level 2 or higher) Desired certifications: Cisco Certified Network Associate (CCNA), CCNA Routing & Switching, CCNA Security, Cisco Certified Entry Network Technician (CCENT), CompTIA Network+, COMPTIA Linux Network Professional (CLNP), CompTIA Cyber Security Analyst (CySA+), CompTIA Security+, CompTIA Security Analytics Professional (CSAP), CompTIA Linux+, Linux Professional Institute Certification Level 1 (LPIC-1), CompTIA Project+ WARRANT TECHNOLOGIES is an Equal Opportunity Employer with a commitment to diversity. All individuals, regardless of personal characteristics, are encouraged to apply. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, disability, or veteran status.