Information Assurance Engineer
Apply on
Job title: Information Assurance Engineer
Job Location: Warren, MI Hybrid (2 days on site and 3 days from home.)
Secret clearance needed for this job.
Salary will depend on candidate experience.
Contract duration: 5 years renewable
Job title: Information Assurance Engineer
The contractor shall establish and satisfies complex system-wide information security
requirements based upon the analysis of user, policy, regulatory, and resource demands.
The contractor shall support customers in the development and implementation of doctrine
and policies. The Contractor shall apply security engineering to government and
commercial common user systems, as well as to dedicated special purpose systems
requiring specialized security features and procedures.
The contractor shall provide Information Assurance Engineering as the primary security engineering representative on engineering teams for the design, development, implementation,
evaluation, and/or integration of secure networking, computing, and enclave environments.
The contractor shall act as the primary security engineering representative on engineering
teams for the design, development, implementation, evaluation, and/or integration of cyber
architectures, systems, or system components. The contractor shall support the Government in
the enforcement of the design and implementation of trusted relationships among external
systems and architectures. The contractor shall apply knowledge of cyber policy, procedures,
and workforce structure to design, develop, and implement secure networking, computing, and
enclave environments. The contractor shall support security planning, assessment, risk
analysis, and risk management. The contractor shall interact with the customer and other
project team members. The contractor shall also perform the following:
- Ensure all acquisitions, procurements, and outsourcing efforts address information
security requirements consistent with the Army and DoD
- Ensure security improvement actions are evaluated, validated, and implemented as
required
- Evaluate the effectiveness of procurement function in addressing information security
requirements and supply chain risks through procurement activities, and recommend
improvements
- Identify alternative information security strategies to address security objective
- Identify IT security program implications of new technologies or technology upgrades
- Interpret and/or recommend security requirements relative to the capabilities of new
information technologies
- Interpret patterns of noncompliance to determine their impact on levels of risk and/or
overall effectiveness of the enterprise
- Monitor and evaluate the effectiveness of cybersecurity safeguards to ensure they provide
the intended level of protection
- Participate in the Risk Governance process to address security risks, mitigations, and
input on other technical risk
- Promote awareness of security issues among management and ensure sound security
principles are implemented
- Provide input to the Risk Management Framework process activities and related
documentation (e.g., system life-cycle support plans, concept of operations, operational
procedures, and maintenance training materials)
- Assist with the selection of cost-effective security controls to mitigate risk (e.g.,
protection of information, systems, and processes)