Job Description

Join GDIT and own your career as an IT Security Systems Analyst / Engineer supporting the Office of Inspector General (OIG) for the United States Postal Service (USPS).

The IT Security Office is responsible for OIG information security policies, procedures, andservices to protect the confidentiality, integrity, and availability of the information within the informationtechnology infrastructure. The OIG's information resources are sensitive assets and are critical in the performance of its mission; therefore, information security services help safeguard the informationresources entrusted to the OIG.

Responsibilities and Duties:
* Implements and interprets the requirements for agency compliance with policy directives governingIT infrastructure protection
* Administers Security Tools & Systems including Firewall, Advanced Malware Protection,Security Incident and EvenManagement, Vulnerability Identification and Analysis, securitylogging, Anti-malware, 2 factor authentication, password protection and secure documentsharing and collaboration solutions. (Microsoft/Fortinet WebApplication Firewalls/Palo Alto Firewall, Microsoft Exchangeonline protection, Microsoft Sentinel SIEM, RAPID 7and Nessus scanners, Vulnerability management and analysis,Microsoft Defender Advance Threat Protection anti-malware, LastPass password management, e-Share secure filesharing & Collaboration)
* Responsible for primary or alternate management of all IT Security systems includingpatch management, upgrades, integration engineering, reporting.
* Executes USPSOIG security policy and compliance management program , mo nitors agency compliance with infrastructure protection requirements across ITprograms
* Identifies current and potential IT security risks and recommends mitigation strategies
* Participates in the development of security policies
* Participates in the certification and accreditation of OIG systems
* Executes security related operational activities
* Manages security incident detection, response, remediation using the NIST cybersecurity RiskManagementFramework
* Configures and monitors security using Microsoft enterprise solutions (windows client OS, ActiveDirectory, Group Policy management);assessing and remediating Microsoftenterprise vulnerabilities
* Develops security metrics and manages reporting and compliance
* Serves as CIRT/CERT member
* Supports operational implementation of FISMA/NIST standards
* Conducts Computer Security Forensics
* Operates Security Tools, monitoring, response, and reporting including Microsoft/Fortinet Web Application Firewalls,Firewall, Advanced Malware Protection, Security Incident and Even Management, VulnerabilityIdentification and Analysis, security logging, Anti-malware, multi-factor authentication,password protection and secure document sharing and collaboration solutions. (Microsoft/Fortinet Web ApplicationFirewalls/Palo Alto Firewall, Microsoft Exchange online protection, Microsoft Sentinel SIEM, RAPID 7 and Nessusscanners, Vulnerabilitymanagement and analysis, Microsoft Defender Advance Threat Protection anti-malware,LastPasspassword management, e-Share secure file sharing & Collaboration)
* Manages IT Security awareness training program in cooperation with LearningManagement team including developing and delivering IT Security awareness trainingmodules.
* Manages Password Management system in coordination with Service Desk
* Responds to IT Security trouble tickets generated by customers and IT staff. Identifiessolutions, works with customer and OCIO team to execute solutions and manages ticketinput, update, and resolution in OCIO ticketing system to maintain service levelagreements.
* Supports Security Engineering and tech solution support and expertise
* Actively executes, supports, and maintain application security scanning tools for all major OIG agency applications
* Effectively monitors all OIG network and systems activity for potential suspicious or malicious events to confirm abreach incident via the Security Operations Center tools and collaboration
* Participates in the certification and accreditation of OIG systems
* Reviews new and existing systems to address technical solutions to provide enhancedsecurity and ensure baseline security requirements are met
* Collaborates with members of CIO and Business units to develop security architecture andsolutions for IT and business systems and security products and integrates
* Develops and executes project plan to engineer, construct, deploy and monitor/manage ITSecurity infrastructure solutions.
* Understanding of security requirements associated with cloud-hosted environments andservices
* Evaluates security requirements associated with cloud-hosted environments and services
* Evaluates security requirements associated with mobile applications

Primary Requirements:
* Skill & Ability to administer and manage Windows and Linux-based systems running securitysystems applications (as indicated above)
* Knowledge of information security principles, concepts, practices, systems software, databasesoftware, and immediate access storage technology to carry out activities relating to securitycertification and accreditation
* Knowledge & Skill in implementing FISMA, NIST, OMB guidelines, and other Federal regulationsand guidance. Experience interpreting and implementing FISMA/NIST requirements focused onthe operational implementation and documentation of those requirements
* Skill and Ability in executing Security Operations including incident detection, identification,management,response, and reporting. Must have experience in incident management
* Skill in making recommendations that significantly influence OIG's information security policies orprograms Experience building policies and preparing briefings to explain security programs andrequirements to senior executives
* Skill & Ability to provide expert technical advice, guidance, and recommendations to managementand other technical specialists on critical information technology security issues
* Skill & Ability to assess risk factors and advise on vulnerability to attack from a variety of sourcesand procedures for protection of systems and applications
* Knowledge of security requirements for cloud-hosted environments and services and mobileapplication development and deployment
* Ability to ensure coordination and/or collaboration on security activities
* Ability to effectively communicate both orally and in writing with management and other technicalspecialists
* Ability to plan, organize and manage tasks on time with minimal supervision

Certification Requirements
* Degree in cybersecurity, Information Systems, Computer Science, or related field
* GIAC, CISSP certification(s) (or equivalent); CISCO/Microsoft Security Certifications; DHS Security Certification; CEH,isc2-CCSP, CCSK,Certified Application Security Engineer (CASE), Certified Secure Software LifecycleProfessional(CSSLP), GIAC Certified Web Application Defender (GWEB)
* Current MS Windows Server and Linux operating system certification (desired)
* ITIL v3 Foundation certification (desired)
* Top Secret Security Clearance (or ability to obtain TS clearance) (for Security Operations andengineering work)

Section III: Experience

Candidate will possess at least 7 years of specialized IT experience with at least 5 years in IT operations (cloud focusedapplication services, virtualhostsand infrastructure security a priority)

Scheduled Weekly Hours:
40

Travel Required:
None

T elecommuting Options:
Telecommuting Not Allowed

Work Location:
USA VA Arlington

Additional Work Locations:

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.nnGDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

PI128660262