Job Title: Systems Engineer
Posted by: TiSTA Science and Technology on Sep 24, 2020
Location:
Remote , 0Job Description:
Overview
TISTA Science and Technology Corporation, a CMMI Maturity Level 3 company, focuses on delivering information technology and professional services to Federal and State agencies. TISTA is recognized in 2019 by Inc. 5000 as one of the fastest-growing private companies in the US. TISTA is also a recipient of 2019 Top Veteran-Owned Companies by the Washington Business Journal. TISTA also received a 2018 Moxie Award in the GovCon category.
Veterans are strongly encouraged to apply!
TISTA Science and Technology is seeking a Systems Engineer to join our growing team supporting the Department of Veteran's Affairs.
*Note that we are unable to sponsor work visas (including H1 transfer or F1 Visa) for this role.
Responsibilities
Work as part of cross-functional Agile and SDLC project teams or support individual product Provide technical support in system architecture, system design, security requirements, integration and technical management Provide requirements analysis and prepare systems assurance reviews Advise customer in capacity planning operations and performance monitoring and management Assist with determination and document of the baseline IT Security requirements for IT Systems, identifying and documenting system boundaries, determining information categories, and assisting with FIPS-199 Assist with coordination and management of security vulnerability and penetration assessments (network, web, application) to identify control weaknesses, assess the effectiveness of existing controls and provide meaningful recommendations Conduct security assessments and provide recommendations to improve security related processes and procedure Monitor progress, manage risk, and ensure key stakeholders are kept informed about progress and expected outcomes, and propose and take corrective action as appropriate Assist in Federal Information Processing Standard (FIPS) categorization of applications/systems Participate in periodic risk assessments, vulnerability scans and penetration testing of new and existing systems to identify, investigate and document security weaknesses Implement security controls based on IT System FIPS categorization Documenting security control implementation in the system's Security Plan Support the development of a detailed project schedule, including SA&A/SCA task and milestones, task dependencies, and personnel resources Support SA&A activities and tasks and obtain Authorization to Operate (ATO) in line with NIST and client guidance and directives Participate in the review and generate input of SA&A and required supporting system documentation as needed: Security Assessment Reports (SARs), Privacy Assessments, Privacy Threshold Assessment (PTA), Privacy Impact Assessments (PIA), Disaster Recovery Plan (DRP), Information System Contingency Plan (Standard Operating Procedures (SOPs) and Plans of Action and Milestones (POAMS) Assist with meeting eMASS' VA requirements in support of project entry, including identification of required security controls and supporting evidence Support and report Plan of Action and Milestone (POAMs) to system owners at a detail level, and manage and monitor for corrective actions Provide input and guidance on systems engineering and security requirements for systems hosted in cloud (including FedRAMP) versus on-premise Research and stay up-to-date on industry standards and any new vulnerabilities and risks Assess systems to analyze risk and report weaknesses findings Work with developers and DBAs in addressing findings Assess and review current technology infrastructure to identify key risk areas, and ensure adequate levels of controls are in place to address those risks Participate in and support internal and external compliance initiatives including audit requests, table top exercises, security reviews and other tasks associated with improving the company's security posture
Qualifications
A minimum of five (5) years of demonstrated relevant work experience Understanding of Information Security (Cybersecurity or Information Assurance) requirements Experience with developing and managing POA&M's and SA&A packages is preferred Displays technical experience with conducting research and providing review recommendations on software and technologies for vulnerabilities Technical experience with reviewing vulnerability scans and providing mitigation techniques Possess experience in participating in SCA's Experience writing security related policies and procedures is preferred Experience with conducting audit log reviews Knowledge of and experience with Federal security regulations, standards, and processes including FISMA and NIST Experience with NIST Special Publications and guidance Strong problem solving and analysis skills, self-motivated, and able to work and communicate in a team environment Strong written and oral communication skills DevSecOps experience a plus Veteran's Affairs Experience preferred
Education:
Bachelor's Degree in related field of study
Clearance:
Ability to obtain an MBI clearance
Location:
Remote
Here at TISTA Science and Technology, we value Veterans and encourage all to apply!#thinktista #tistacares #tistavaluesvetsEmployment Transparency:TISTA is an Equal Opportunity/Affirmative Action Employer and embraces diversity in our employee population. It is the policy of TISTA to provide equal opportunity to all qualified applicants and employees without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, or genetic information. TISTA will refrain from discharging, or otherwise discriminating against, employees or applicants who inquire about, discuss, or disclose their compensation or the compensation of other employees or applicants.The EEO is the Law poster is available here, and the poster supplement is available here.The Pay Transparency Policy is available here.Tista is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation due to a disability for any part of the employment process, please send an e-mail to recruiting@tistatech.com or call (301) 968-3420 and let us know the nature of your request and your contact information.
TISTA Science and Technology Corporation, a CMMI Maturity Level 3 company, focuses on delivering information technology and professional services to Federal and State agencies. TISTA is recognized in 2019 by Inc. 5000 as one of the fastest-growing private companies in the US. TISTA is also a recipient of 2019 Top Veteran-Owned Companies by the Washington Business Journal. TISTA also received a 2018 Moxie Award in the GovCon category.
Veterans are strongly encouraged to apply!
TISTA Science and Technology is seeking a Systems Engineer to join our growing team supporting the Department of Veteran's Affairs.
*Note that we are unable to sponsor work visas (including H1 transfer or F1 Visa) for this role.
Responsibilities
Work as part of cross-functional Agile and SDLC project teams or support individual product Provide technical support in system architecture, system design, security requirements, integration and technical management Provide requirements analysis and prepare systems assurance reviews Advise customer in capacity planning operations and performance monitoring and management Assist with determination and document of the baseline IT Security requirements for IT Systems, identifying and documenting system boundaries, determining information categories, and assisting with FIPS-199 Assist with coordination and management of security vulnerability and penetration assessments (network, web, application) to identify control weaknesses, assess the effectiveness of existing controls and provide meaningful recommendations Conduct security assessments and provide recommendations to improve security related processes and procedure Monitor progress, manage risk, and ensure key stakeholders are kept informed about progress and expected outcomes, and propose and take corrective action as appropriate Assist in Federal Information Processing Standard (FIPS) categorization of applications/systems Participate in periodic risk assessments, vulnerability scans and penetration testing of new and existing systems to identify, investigate and document security weaknesses Implement security controls based on IT System FIPS categorization Documenting security control implementation in the system's Security Plan Support the development of a detailed project schedule, including SA&A/SCA task and milestones, task dependencies, and personnel resources Support SA&A activities and tasks and obtain Authorization to Operate (ATO) in line with NIST and client guidance and directives Participate in the review and generate input of SA&A and required supporting system documentation as needed: Security Assessment Reports (SARs), Privacy Assessments, Privacy Threshold Assessment (PTA), Privacy Impact Assessments (PIA), Disaster Recovery Plan (DRP), Information System Contingency Plan (Standard Operating Procedures (SOPs) and Plans of Action and Milestones (POAMS) Assist with meeting eMASS' VA requirements in support of project entry, including identification of required security controls and supporting evidence Support and report Plan of Action and Milestone (POAMs) to system owners at a detail level, and manage and monitor for corrective actions Provide input and guidance on systems engineering and security requirements for systems hosted in cloud (including FedRAMP) versus on-premise Research and stay up-to-date on industry standards and any new vulnerabilities and risks Assess systems to analyze risk and report weaknesses findings Work with developers and DBAs in addressing findings Assess and review current technology infrastructure to identify key risk areas, and ensure adequate levels of controls are in place to address those risks Participate in and support internal and external compliance initiatives including audit requests, table top exercises, security reviews and other tasks associated with improving the company's security posture
Qualifications
A minimum of five (5) years of demonstrated relevant work experience Understanding of Information Security (Cybersecurity or Information Assurance) requirements Experience with developing and managing POA&M's and SA&A packages is preferred Displays technical experience with conducting research and providing review recommendations on software and technologies for vulnerabilities Technical experience with reviewing vulnerability scans and providing mitigation techniques Possess experience in participating in SCA's Experience writing security related policies and procedures is preferred Experience with conducting audit log reviews Knowledge of and experience with Federal security regulations, standards, and processes including FISMA and NIST Experience with NIST Special Publications and guidance Strong problem solving and analysis skills, self-motivated, and able to work and communicate in a team environment Strong written and oral communication skills DevSecOps experience a plus Veteran's Affairs Experience preferred
Education:
Bachelor's Degree in related field of study
Clearance:
Ability to obtain an MBI clearance
Location:
Remote
Here at TISTA Science and Technology, we value Veterans and encourage all to apply!#thinktista #tistacares #tistavaluesvetsEmployment Transparency:TISTA is an Equal Opportunity/Affirmative Action Employer and embraces diversity in our employee population. It is the policy of TISTA to provide equal opportunity to all qualified applicants and employees without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, or genetic information. TISTA will refrain from discharging, or otherwise discriminating against, employees or applicants who inquire about, discuss, or disclose their compensation or the compensation of other employees or applicants.The EEO is the Law poster is available here, and the poster supplement is available here.The Pay Transparency Policy is available here.Tista is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation due to a disability for any part of the employment process, please send an e-mail to recruiting@tistatech.com or call (301) 968-3420 and let us know the nature of your request and your contact information.
Pay Rate:
Unspecified
HR. Website URL:
https://careers-tistatech.icims.com/jobs/search
Sign Up to Apply to this position
(if you already have a CGO account, just press the button below)
About TISTA Science & Technology Corporation
TISTA Science and Technology Corporation, a CMMI Maturity Level 3 company, focuses on delivering information technology (IT) and professional services to Federal and State agencies. TISTA is an Inc.500 company, a recipient of the 2010 Top 100 Service-Disabled Veteran-Owned Businesses from Diversity Business, recognized in Washington Technology’s FAST 50 list of the fastest growing small businesses in government contracting in 2012 & 2013, recognized as the Top 25 Fastest Growing Small Technology companies by the Washington Business Journal in 2014 & 2015, and selected as the Veteran Owned Company of the Year in 2014 by the Montgomery County MD Dept. of Economic Development. We offer expertise in cyber security, software and database development, engineering support, network and critical infrastructure protection, IT operations and maintenance, information assurance, identity and access management, certification & accreditation, enterprise security, disaster recovery planning, continuity of operations (COOP), risk management, IT architecture, IT Security Training Services and Program Management.
Please visit this employer's Public Profile to see more jobs offered by TISTA Science & Technology Corporation