WE SOLVE THE WORLD'S BIGGEST PROBLEMS
Whether we're enabling space exploration, protecting our homeland, or serving our veterans, our projects combine science, technology, and strategy to create big solutions for the world's most difficult challenges.
Geocent offers exciting and challenging opportunities in technology and engineering fields. As part of the Geocent team, you have the chance to work with state-of-the-art technologies and methodologies while expanding your skillset and advancing your career. Consistently named as a Best Place to Work, we are known for fostering a rich, employee-centric company culture with a focus on personal growth, professional development, and community outreach.
Benefits & Perks
We offer a comprehensive package of benefits and perks aimed at assisting and supporting our employees professionally and personally: Health & Wellness + Life & Income Protection + Paid Time Off (PTO) & Leave + 401(K) Enrollment & Company Match + Profit Sharing
Help us hire. Get paid.
Geocent provides incentives when you refer your friends and family to us. We look for the best talent and our external referral program is designed to reward you when you share our open positions with your network.
Information Security Engineer / IV&V Specialist
Kansas City, MO
Direct-Hire, Full Time Employee, Fully Funded Position (NOT considering C2C or Consultants)
- US Citizenship is Required due to federal clearance requirement
- Active DoD Secret Clearance is preferred; ability to attain is a requirement
- Valid CompTIA Security+ certification required for Information Security compliance (IATII)
Within Cloud Environments, support the development and documentation of risk assessment results and recommendations using identified threats, applicable vulnerabilities, and likelihood of occurrence within context of risk tolerances; providing recommendations for corrective actions and mitigation strategies.
Provide automated and manual validations of Information Assurance Controls (IACs) and Validation Procedures (VPs) in accordance with the DoD Guidelines, CNSSI 1253 and/or NIST 800 Publications.
Produce documentation about Inherited IA Controls for application development, team support, and guidance on IA Control mitigation.
Perform checks of systems and applications for IA vulnerabilities using approved automated IA tools (Nessus ACAS, SCAP, DISA STIG Viewer, Vulnerator, HBSS, etc.), custom scripts and manually (Security Technical Implementation Guides [STIGS]).
Document raw findings in a quick look report, for customer notification. Create and maintain system Plan of Action and Milestones (POA&M).
Perform self-assessments, audits, and Independent Verification & Validation (IV&V) for DoD and other federal agencies.
Develop Security Requirements Traceability Matrix (STRM), aligning security requirements with the individual components of a system.
Produce security risk assessment briefs and reports for delivery to stakeholders and senior management.
Consult on current and upcoming projects covering all levels of IT/Cyber Security.
Bachelor's degree in Computer Science, Engineering, Information Systems, Information Technology, Business, Physical Science, or other technology-related discipline.
Six (6) or more years of professional experience in DoD C5ISR systems, or information technologies to include: applicable security discipline principles and practices, Technology Analysis and Assessment, Design Definition, Development of Systems Specification, Systems Analysis, Systems Architecture, Systems Validation, Data Center Engineering, Network Engineering, Systems/Equipment Integration, and/or Test & Evaluation.
Must possess experience leading multiple Risk Management Framework (RMF) to Authority to Operate (ATO) processes on both IA systems in Development and Production.
Must have experience with Department of Defense (DoD) specific Information Assurance protocols, policies, & procedures.
Experience with the A&A process and with DIACAP/RMF package documentation.
Must be willing to work on-site Monday-Friday in Kansas City, MO
Preferred DoD Certified Validators.
Preferred experience evaluating/assessing systems in Government Cloud environments using DevSecOps principals with Continuous Security.
Preferred experience administering or configuring Window Severs/ VMware EXSI/ Database (SQL, Oracle)/Web (IIS, Apache)/ SharePoint/ Linux/Unix/Solaris/ Cisco Network gear (Switches, Routers, ASA, etc.) F5/Palo Alto/ Brocade Devices /SANS-NAS.
Preferred experience with the Marine Corps Assessment and Authorization Process (MCAAP).
US Citizenship Required
Active DoD Secret Clearance preferred; ability to attain Active DoD Secret Clearance is required
Valid Security+, CISSP, or equivalent certification is preferred; ability to attain certification(s) within 1 month from start date is required (Minimum: DoD 8570.1-M IAT Level II)
Geocent is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.