IA Engineer Job Description

View IA Engineer jobs

IA Engineer Job Description Template

Our company is looking for a IA Engineer to join our team.

Responsibilities:

  • Maintain awareness and knowledge of evolving security and risk management standards and communicate and apply relevant changes to existing processes;
  • Operational Manuals and review of government established and created Policies and Procedures as needed;
  • Submit weekly reports to DHA leadership regarding system/program status;
  • Produce evidence as necessary to support compliance status of NIST, DoD, and DHA security requirements;
  • Review and provide input on physical, application and networking security policies procedures and practices;
  • Participate in sessions aimed at identifying, planning, and executing strategies in response to emerging cybersecurity/RMF policies;
  • Work with system administrators, engineers, and developers to create or update system/site policies, procedures, and process guides;
  • Update any A&A Standard Operating Procedures (SOP) so that it aligns to DHA policies;
  • Provide documentation support in the form of assisting with the writing and production of SOPs,
  • Conduct risk and vulnerability assessments of information systems to identify vulnerabilities, risks, and protection needs;
  • Serve as Subject Matter Expert (SME) on one or more technologies/skills related to A&A activities;
  • Lead or attend meetings with SDD stakeholders to discuss statuses of efforts;
  • Review Security Design documentation to ensure comprehensive security requirements and compliance with DoD and Federal requirements and guidelines;
  • Document the IA test plan and procedures templates for inclusion in the Test Plan;
  • Analyze vulnerability scans of information systems and assist in remediation tasks.

Requirements:

  • Familiarity with NIST publications;
  • Excellent oral and written communication skills;
  • Excellent customer service and organization skills;
  • Experience in assessing systems using NIST 800-53 and DISA STIGs and SRGs;
  • Demonstrated expert-level experience with Risk Management Framework (experience under DHA a plus).