Address
Form of workJob Description
POSITION SUMMARY:
TDI Technologies, Inc. is seeking candidates for an Cyber Security Systems Administrator position. The position’s main responsibility will be to assist with lab and shipboard computer system Cyber Security. This position will be on-site support for our Navy customers at NSWCPD.
PRINCIPAL DUTIES/RESPONSIBILITIES:
1. Implement Cyber Security System Administration tasks per risks identified to the system while ensuring operational requirements are met through system architectural and technical design guidance.
2. Ensure Cyber Security guidelines are incorporated into design, test, and life cycle support of Navy Control System. This may include individual stand-alone applications, major systems, or system-of-systems. Mitigate risks and evaluate security trade-offs and impacts to system(s) performance and availability.
3. Work with Program Managers and engineers to ensure Cyber Security needs are incorporated into schedules, implemented in accordance with Risk Management Framework (RMF) and Information Assurance (IA) guidance.
4. Work with cross functional teams to ensure system engineers and Information System Security Engineers (ISSE) collaborate to derive, define, allocate and document Cyber Security functional, performance, design, test, and evaluation requirements in accordance with Federal, DoD, and DoN guidance to include but not limited to: NIST 800-37, DODI 8500.1, DOD 8510.01, NIST SP 800-53, CNSSI 1253, NAVSEA 9400.2-M, FIPS-199, and US Navy Cross-SYSCOM IA standards.
5. Maintain the Cyber Security resources, schedule, and action plans for the defined Cyber Security requirements, supported by system engineers and ISSEs.
6. Provide focused Cyber Security plans, processes, guidance and risk assessments to program managers, system engineers, and ISSEs.
7. Develop and perform Cyber Security testing procedures on the systems to ascertain risk, such as Table Top scripted exercises, and live penetration test exercises.
8. Lead systems and labs through the RMF process steps.
9. Track and report on system(s) Accreditation and Authorization (A&A) status, identify and resolve issues.
10. Experience with eMASS and DISA Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs)
EDUCATION AND EXPERIENCE REQUIREMENTS:
1. Bachelor of Science Degree in any engineering discipline or Computer Science is preferred.
2. 3 or more years of experience in Risk Management Framework (RMF) or DoD IA Certification and Accreditation (DIACAP) experience required, DoD certification package development preferred.
3. 5 or more years of experience with Cyber Security vulnerability assessment and risk mitigation, including patching and implementing DoD Security Technical Implementation Guidelines (STIGs).
4. Experience with industrial or marine machinery control system and automation is preferred.
5. Knowledge of US Navy programs, organizations, functions, and responsibilities is preferred.
SPECIAL REQUIREMENTS:
1. Active federal SECRET Security Clearance or eligible for to acquire a SECRET Security Clearance upon position acceptance
2. Security Certifications: CompTIA Security+ at minimum, CISSP or CEH Certificates preferred
SKILLS AND ABILITIES:
Essential Skills:
1. Proficient in collaborating within a team environment, tracking tasking and completion dates and ensuring targets are met and risks are conveyed to the team
2. Results-oriented and motivated to provide solutions with measurable benefit to our customers
3. Ability to communicate complex analysis with clarity and precision
4. Proficiency in Windows & Microsoft Office applications
5. Strong written and verbal communication skills
Travel:
This position may require up to 10% travel.
Location:
Philadelphia, PA
Clearance Level:
Secret
Type:
Full-Time
Equal Opportunity Policy:
TDI Technologies, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layout, recall, transfer, leaves of absence, compensation and training.
