JobsEQ by Chmura Logo

IT Security Administrator

CAE
Location: Tampa, Florida
Type: Full-Time, Permanent, Non-Remote
Posted on: September 9, 2020
This job is no longer available from the source.
Role and Responsibilities
Summary
Implement and monitor security processes relative to IT Policy, Procedure, and Compliance with respect to NISPOM and Department of Defense (DoD) Information Security requirements. Audit information system security plans and procedures to comply with DoD and separate service regulations, directives and procedures. Function as Information Technology Security Administrator, coordinate and oversee compliance of multiple IT Security and Audit requirements in coordination with Security, IT Management, Audit, and Compliance. Provide input and assistance as an IT team member.
Essential Duties and Responsibilities
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
• Responsible for defining IT Policy and Procedure based on security frameworks and guidance from CMMC, NIST, and ISO 2700.
• Assists in writing and maintaining IT Security policies, procedures, and documentation.
• Performs comparisons between existing standards and practices and work instructions, creating or correcting practice documents when needed.
• Establishes proactive reporting system for non-compliance, intrusion or abuse of information security procedures within classified areas and investigate and recommend corrective actions for violations to the IT Management and FSO.
• Responsible for recurring tasks on systems as assigned: Conduct scheduled inspections of systems/facilities that process information; Maintain and audit all logs and records associated with operation procedures; Audit security logs, reports, daily system audits, security logs and authentication features to assure security-relevant actions are properly implemented and executed; Create security reporting as required by ongoing business needs and audit requirements; Identify new security platforms/tools to improve overall infrastructure security; Review current and upcoming security requirements/threats and create the necessary actions to mitigate any risks to the organization.
• Responsible for implementation, and management of the following IT platforms:  Web Application Security such as Web Application Firewalls; Vulnerability Assessment suite(s); Antivirus/Antimalware suite(s); Intrusion Detection Systems/Intrusion Prevention Systems; Enterprise SIEM suite(s).
• Expertise in securing desktop and server Operating Systems (Microsoft Windows, CentOS, and RedHat Enterprise Linux) with best practices and adherence to NIST STIG and hardening baselines.
• Evaluate enterprise business system proposed changes, updates, or patches and advise IT Management, Change Management Board, and ISSM of relevance.
• Provide security best practice guidance and expertise to project manager(s) and BSA to define requirements for applications, installations, and program architecture for information systems.
• Provide assistance to IT team members, BPO, and Security staff to insure compliance with applicable IT Security policies, DoD/Service specific regulations and contractual security requirements.
• Perform and document annual risk assessment to determine if additional countermeasures are required.
• Change Management Board member acting as SME for Security and Compliance.
• Perform as a member of the IT Incident Response Team for threats and security risks to the organization.  This includes interfacing with the underlying teams/individuals to formulate and apply remediation action.
• Build and maintain cloud components specific to security, identity, and governance in multiple cloud providers.
• Develop and document cloud security best practices and security guidelines for cloud technologies.
Qualifications and Education Requirements
• 6 years of direct Information Security roles.
• At least one DoD 8570 baseline certification required.
• Thorough understanding of Interconnected Systems Management, LAN/WAN security architecture design and operational support.
• Ability to establish and participate in Integrated Product Teams and provide IS security considerations and planning to program management and engineering.
• Knowledge and practical experience of computer security components ( i.e. topology, switches, routers, firewalls)
• Understanding of current information security threat analysis, identification, mitigation and investigation techniques.
• Must be eligible for a DOD Personnel Security Clearance and any special access requirements.
Preferred Skills
• Bachelor’s degree in related disciplines preferred.
• CISSP, ISP or NISPOM Ch 8 certification.
• Military career specialty in Information Assurance and/or Security is desired.
• Must be detail oriented; work with minimal supervision; Strong analytical and problem solving capabilities.
• Prior experience with IT Audit procedures and documentation preferred.
• Current Secret clearance is preferred.
• Extensive experience with hardware/software platforms to include MS Windows, Linux preferred.
• Military service, military environment familiarity, customs and protocol experience preferred.
• Other professional certifications highly desirable. Incumbent will be expected to attain certifications if not previously qualified.
Security Responsibilities
Must comply with all company security and data protection / usage policies and procedures.  Personally responsible for proper marking and handling of all information and materials, in any form. Shall not divulge any information, or afford access, to other employees not having a need-to-know. Shall not divulge information outside company without management approval.  All government and proprietary information will be accessed and stored electronically on company provided resources.
Work Environment
• Ability to work in a regular office/classroom environment, as well as in and around electronic equipment, hydraulic equipment and confined spaces.
Physical Demands
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.
• Ability to operate a personal computer and communicate via e-mail/telephone
Other Duties
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for their job. Duties, responsibilities, and activities may change at any time with or without notice.
CAE USA Inc. is an EOE/AA employer and gives consideration for employment to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. If you’d like more information about your EEO rights as an applicant under the law, please click here EEO is the Law poster .
PAY TRANSPARENCY NONDISCRIMINATION PROVISION The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information.
Position Type
Regular
CAE thanks all applicants for their interest. However, only those whose background and experience match the requirements of the role will be contacted.
Equal Employment Opportunity
At CAE, everyone is welcome to contribute to our success. With no exception.
As captured in our overarching value "One CAE", we’re proud to work as one passionate, boundaryless and inclusive team.
At CAE, all employees are welcome regardless of race, nationality, colour, religion, sex, gender identity or expression, sexual orientation, disability or age.
The masculine form may be used in this job description solely for ease of reading, but refers to men, women and the gender diverse.
Job Type: Full time