IBM Information System Security Engineer TS/SCI 

United States, Virginia 

956828953

Your Role and Responsibilities
As an Information Systems Security Engineer (TO1), you will be joining the team that is deploying and delivering a cloud-based, multi-domain Common Data Fabric (CDF), which provides data sharing services to the entire DoD Intelligence Community (IC). The CDF connects all IC data providers and consumers. It uses fully automated policy-based access controls to create a machine-to-machine data brokerage service, which is enabling the transition away from legacy point-to-point solutions across the IC enterprise.

• Plan, design, and implement security controls and measures to protect the organization’s information systems and networks
• Evaluate and assess security risks and vulnerabilities, and develop strategies to mitigate them
• Develop and implement security policies, procedures, and guidelines to ensure compliance with organizational policies and regulatory requirements
• Work with engineering team to identify and document security solutions, including firewalls, intrusion detection/prevention systems, antivirus, and data encryption systems as required by parent organization.
• Conduct security assessments and audits of information systems and networks, and recommend improvements to security controls and measures
• Stay up to date with emerging trends and technologies in information security, and recommend improvements to the organization’s security posture
• Provide technical guidance and support to IT teams on security-related issues
• Ensure that information systems and networks are compliant with organizational policies and procedures, as well as any applicable regulatory requirements

Required Technical and Professional Expertise

• Experience in information security, with experience in designing and implementing security controls and measures for information systems and networks.
• Experience designing and implementing security controls and measures for information systems and networks
• Familiarity with security standards and regulations, such as NIST SP 800-53 and DOD RMF
• DoD 8570 IAT Level II Certification (e.g. Security+) or the ability to obtain the certification within 90 days
• Clearance : Active TS/SCI w/ ability to obtain CI Poly

Preferred Technical and Professional Expertise

• Experience with cloud computing platforms such as AWS or Azure
• Experience with security-related tools such as vulnerability scanners, SIEMs, and endpoint protection systems
• Knowledge of network protocols and technologies, such as TCP/IP, DNS, and VPNs
• Scripting experience in Bash, Python, or Perl