IAM Operations Specialist

IT Security Specialist / Information Assurance/Security Engineer IV (100% Remote)

This role involves solving significant, complex problems related to agency-wide IT solutions, operations, and maintenance, focusing on securing infrastructure, systems, and information. Location is listed as Rosslyn, VA, but the position is 100% Remote.

Core Responsibilities

Security System Administration and Operations:

• Manage and administer a wide range of security systems and tools, including cloud-based security tools.
• Administer Azure Security Center (Sentinel, Log Analytics, Azure WAF, Defender for Identity, Privileged Identity Manager).
• Administer Microsoft 365 Security Suite (Defender, Advanced Threat Protection, Cloud Application Security, Protection Portal).
• Manage Microsoft Security and Compliance Center and Microsoft Endpoint Manager (Intune).
• Manage multi-factor authentication (MFA), web content filtering, and secure document sharing solutions.
• Responsible for management of IT Security systems, including patch management, upgrades, integration engineering, and reporting.
• Execute security-related operational activities, including managing security incident detection, response, and remediation.
• Conduct cyber threat and vulnerability analysis and remediation.
• Develop security metrics and manage reporting and compliance.
• Serve as an Incident Response Team member.
• Support operational implementation of FISMA/NIST standards and industry best practices.

Security Engineering and Architecture:

• Identify security risks and recommend risk mitigation strategies.
• Review new and existing systems to ensure baseline security requirements are met and recommend security enhancements.
• Develop security architecture and technical solutions for security products.
• Collaborate with staff to develop security controls and solutions for complex business systems and applications.
• Develop and execute project plans to engineer, construct, deploy, and monitor/manage IT Security infrastructure solutions.
• Demonstrate in-depth understanding of security requirements associated with cloud-hosted environments, services, and solutions.
• Evaluate, recommend, and implement security controls for cloud-hosted environments and mobile device solutions.

Compliance and Application Security:

• Establish, implement, and interpret requirements for agency compliance with cybersecurity protection policy directives.
• Perform thorough Security Operations Center analysis of potentially malicious or suspicious threats.
• Administer and sustain enterprise-level application security scanning tools for COTS, GOTS, Web Applications, and internally developed cloud-based applications.
• Conduct risk and vulnerability assessments of planned and installed information systems applications.
• Conduct systems security evaluations, audits, and reviews.
• Develop cybersecurity plans, processes, and procedures.
• Participate in network and system design to ensure appropriate cybersecurity policies are implemented regarding application security.
• Facilitate the gathering, analysis, and preservation of evidence used in the prosecution of cybercrimes.
• Monitor agency compliance with application cybersecurity protection requirements across IT programs.

Training and Support:

• Manage the IT Security awareness training program, including developing and delivering training modules.
• Manage the Password Management system in coordination with the Service Desk.
• Respond to IT Security trouble tickets generated by customers and IT staff, ensuring SLA adherence.

Required Skills and Experience

• Expert technical advice, guidance, and recommendations on critical IT security issues.
• Ability to assess risk factors and advise on vulnerability to attack and protection procedures.
• Knowledge and skill in implementing FISMA, NIST, OMB guidelines, and other Federal regulations.
• Experience interpreting and implementing FISMA/NIST requirements focused on operational implementation and documentation.
• Knowledge of security controls for cloud-hosted environments, applications, and services.
• Experience developing System Security Plans, Security Assessment Reports, Continuous Monitoring Plans, and Plans of Action & Milestones.
• Ability to plan, organize, manage tasks independently, and work effectively in a team.

Primary Requirements: Application Security Expertise

• Hands-on experience with Static and Dynamic Application Security Testing (SAST/DAST) using tools like HP Fortify, HP WebInspect, HCL Appscan, Snyk, Checkmarx, Synopsys, and Veracode.
• Specialized experience in Continuous Integration (CI) and Continuous Deployment (CD) practices.
• Specialized experience in manual code review to identify potential vulnerabilities and best coding practices.
• Specialized experience in application vulnerability and security assessments using tools like Burp Suite Pro, OWASP Zap Proxy, DirBuster, Kali Linux, Metasploit Pro, Accunetix, Insight AppSec, GitLab, Coverity, Fortify, and GitHub Enterprise.
• Specialized experience implementing and deploying an organization-wide Application Security program (DAST and SAST) at the enterprise level.
• Knowledge of coding languages such as Java, .NET, Python, PHP, C++, C#.
• Extensive experience preparing Test Plans, writing Test Cases, test execution, and follow-up remediation efforts.

Education and Certifications

A Bachelor's Degree in Cybersecurity/Information Technology Security or a related field from an accredited college or university is required, along with at least 5 years of specialized experience in hands-on application security assessments, Secure SDLC, and Source Code Analysis (Manual & Tools) on Web-based Applications. An advanced degree is desired.

Industry Certifications (one or more, or equivalent) are highly valued:

• Certified Secure Software Lifcycle Professional (CSSLP)
• Certified Cloud Security Professional (CCSP)
• Offensive Security Certified Professional (OSCP)
• EC-Council Certified Application Security Engineer (CASE)
• GIAC Certified Web Application Defender (GWEB)
• Azure Developer Associate
• Microsoft 365 Certified Security Administrator Associate
• Microsoft Certified Azure Security Engineer Associate

For applications and inquiries, contact: [email protected]