We are looking for an Information Assurance Specialist to support the Chantilly, VA facility. The role is broken down into the following key performance areas:

• Provide systems administration and information assurance support for various classified systems.
• Configure and validate information system compliance using DISA STIGs, SCAP Compliance Checker (SCC) and STIG Viewer.
• Initiate and follow through to completion, Risk Management Framework (RMF) packages for enterprise architectures in accordance with NISPOM/DAAPM, ICD 503/CNSSI 1253, JSIG, NIST 800-53 and NIST 800-171 requirements.
• Create and maintain Assessment and Authorization (A&A) packages, System Security Plans (SSPs), Risk Assessment Reports (RARs), Security Controls Traceability Matrices (SCTMs) and Plans of Action & Milestones (POA&Ms) for all classified systems.
• Establish and administer appropriate security systems, policies, standards, and procedures in compliance with applicable government and corporate directives, guidelines, and contractual obligations.
• Conduct analysis and assessment of the security control assessment guidance, procedures, and templates to ensure correct and uniform implementation of the new RMF assessment processes.
• Identify, contain, investigate, and report data spills to the Government Security ISSM through preliminary written reports. Coordinate the containment and device sanitization with staff at the affected locations. Provide an assessment/mitigation strategy addressing the data spill in the approved response plan.
• Provide technical oversight for classified system compliance and conduct self-assessments.
• Interface directly with Defense Counterintelligence and Security Agency (DCSA) and other system sponsoring clients to conduct security inspections, tests, and reviews.

• Must have 5 years of relevant experience as an IT systems administrator.
• Demonstrated experience as an Information Systems Security Officer (ISSO).
• Must be a U.S. Citizen with the ability to obtain a DOD Top Secret security clearance.
• Experience with Windows operating systems and Active Directory is required.
• Experience with network systems administration is required.
• Experience with NIST 800-53 and Risk Management Framework (RMF) accreditations.
• Experience with DISA Security Technical Implementation Guides (STIGs), SCAP Compliance Checker (SCC) and STIG Viewer is required.
• DoDD 8140 (8570.1-M) IAT Level 2 certification or ability to complete certification within the first 6 months of employment. Ability to travel to attend meetings and training (less than 10 percent of time).

• Military Veteran with relevant IT and computer security experience will be considered a plus.
• Certified Information Systems Security Professional (CISSP) is considered a plus.