Abacus Technology is seeking a Cyber Security Engineer to support the overall security posture for the HQ Air Mobility Command Surgeon General Medical IT Services program at Scott AFB. This is a full-time position.
Provide information assurance/information protection for the availability, integrity, authentication, confidentiality and non-repudiation of a secure IT infrastructure and information systems, and provide for restoration through protection, detection, and reaction capabilities. Maintain compliance with all computer and information security guidelines and directives, including those defined by the Privacy Act, HIPAA, The Joint Commission, and applicable DoD and AF guidance. Ensure desktop hardware and software used by the contractor meet information systems security requirements as defined by the current regulations and policies. Prepare and maintain Certification and Accreditation (C&A) packages in accordance with Risk Management Framework (RMF) for Air Force Information Technology (IT) to confirm that information systems added to the network comply with the DoD system security policy and are properly certified and accredited. Restrict access to privileged program files, utilities, and security relevant programs/data files to authorized personnel as designated by the organizational security manager or Information Assurance Officer (IAO). Analyze network characteristics (e.g., traffic, connect time, transmission speeds, packet sizes, and throughput) and recommend procurement, removals and modifications to network components; design and optimize network topologies and site configurations; plan installations, transition and cut-overs of network components and capabilities; and coordinate requirements with users and suppliers. Track, report, work collaboratively with base, AF and DoD agencies to identify and resolve all detected malicious logic and network intrusions incidents/attacks and security breaches, possible intrusions and unsafe security practices. Comply with and track all AF advisory alerts. Provide in-depth planning and implementation of security software, hardware, and security measures. Perform/update System Security Authorization Agreement (SSAA) when required or as instructed by the COR. Maintain availability of remote and local network access (NIPRNET and SIPRNET). Advise groups requiring technical assistance in the resolution and planning stages for all communication and network related issues. Perform Medical Information Security Readiness and HIPAA Security tasks. Assist with maintaining and updating the Continuity of Operations Plan as requirements change, and as dictated by the COR. Submit Defense Health Agency (DHA) Risk Management Framework (RMF) categorization approval memorandum and all supporting documentation. Register all systems and assign roles in Enterprise Mission Assurance Support Service (eMASS) or DoD designated information assurance program management system. Review Security Authorization Package and submit for Authorization to Operate (ATO).
3+ years experience in a cyber security or information assurance role. Bachelor’s degree in a related field. Must be Security+ certified. Network+ and/or CISSP certifications desired. Experience managing publicly accessible data. Knowledge of data privacy laws and policies including HIPAA. Must have experience supporting Federal government programs. Must be detail oriented and possess the ability to work in a multi-disciplined environment with an adaptive personality. Excellent communication skills, both oral and written. Analytical skills to troubleshoot IA issues. Must be able to apply intensive and diverse knowledge to problems and make independent decisions. Must be a team player able to work professionally and collaboratively with the government customer and other contract members of the project team. Excellent written and verbal communication skills and a client focus. Must be a US Citizen and hold a current Secret clearance.
Applicants selected will be subject to a U.S. government security investigation and must meet eligibility requirements for access to classified information.