Jr. Information Security Engineer

ManTech International Corporation
Job LocationUS
Job TagFull Time

Description:

Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech International Corporation, you’ll help protect our national security while working on innovative projects that offer opportunities for advancement.

Currently, ManTech is seeking a motivated, career and customer-oriented Jr. Information System Security Engineer to join our team in Colorado Springs, CO.

Responsibilities:

  • Apply entry-level knowledge of information security principles and practices. Manage and maintain the security integrity of all IT systems and network architectures. Ensure systems are securely operated, maintained, and disposed of in accordance with security policies and practices defined by the customer (federal government agency) and outlined in the security plan. Ensure all system users have the correct authorizations and privileges to perform their jobs and are aware of their security responsibilities while accessing the system.
  • Provide training to system users on preferred security practices. Author risk assessments and support certification and accreditation activities. Participate in system reviews, to include custom, COTS and GOTS software and hardware, and in-house software development, and provide recommendations for securing the systems and software.
  • Other facets of the IT Security Engineer responsibilities include the following:
    • Perform access management duties to ensure proper documentation and tracking of individual access to info systems.
    • Provide daily, ongoing security oversight of assigned systems, to include the security impact of proposed modifications, additions, and technology refresh evolutions
    • Advise users of the security features and procedures used in their ISs
    • Understand system security vulnerabilities and associated threats and assess the overall security risks to the system.
    • Provide mitigation recommendations to reduce identified security risks
    • Work directly with internal IT staff and customer to establish and enforce IT security best practices, protection objectives, process improvements and effective IT security controls
    • Perform system vulnerability scanning using approved software tools
    • Demonstrate understanding of software installations, systems monitoring and troubleshooting, account management, and overall efforts to minimize system downtime
    • Understand the administration of critical server infrastructure, including stand-alone and virtual servers, Containerization, server backup and recovery, and platforms such as file servers and web servers
  • Provide support to the administration staff for security-relevant applications, such as IDS/IPS and log manager, and associated accounts. Assist in IT security incident response and documentation. Perform regularly scheduled security reviews (e.g., technology, operations and personnel).
  • Serve as an interface to government compliance and policy teams to ensure the system consistently meets the requirements for certification and accreditation. Participate in designing and managing IT Security strategy including both infrastructure and applications. Assist with security and compliance-based projects. Consult with users to determine requirements and provide security solutions to meet needs. Coordinate projects involving database and security issues and requirements.

Qualifications:

  • 0-3 years’ Information Security experience as a Security Engineer supporting development, test, and production environments.
  • Fundamental knowledge implementing and enforcing security directives, policies, publications, and regulations
  • Fundamental knowledge with System Security Plan content and requirements
  • Experience in IT security certifications (CISSP, CompTIA Security +, CPP)
  • Possess clear understanding of security protocols and standards and have experience with software and security architectures.
  • Ability to design and implement security tests in accordance with stated criteria
  • Fundamental knowledge with security practices of Intranet and Extranet
  • Experience with Linux/UNIX and Windows Operating Systems
  • Fundamental knowledge of protocols and standards, such as, SSL/TLS, CIFS, HTTP/S, DHCP, SMTP, LDAP/S and Microsoft DNS
  • Fundamental knowledge of networking concepts and services, such as, VPNs, IPSec, PKI and TCP/IP
  • Fundamental knowledge of accreditation processes, such as Risk Management Framework (RMF), with knowledge of NIST 800.53 standards.
  • Preferred Qualifications:
    • Bachelor’s degree in Computer Science, Information Systems Management, Information Technology, or other related discipline
    • 1+ years of experience in IT security field
    • Familiar with security controls for Federal Information Systems
    • Ability to integrate and function as a Security professional team member
    • Ability to work with minimal direction on a variety of requirements utilizing Work Instructions and Procedures.
    • Strong communication skills, both oral and written
    • Organized, responsive and highly thorough problem solver
    • Familiar with security controls of Federal Information Systems
  • Security Clearance Requirements:
    • Due to the nature of this government contract an Active DOD Secret clearance is required along with the ability to obtain an agency suitability clearance
  • Physical Requirements:
    • Must be able to remain stationary up to 75% of the time in an office environment.
    • Must be able to traverse between one work location to another to accomplish work duties.
    • Must be able to operate IT equipment such as a computer, copier, fax machine, etc.
    • Must be able to communicate effectively with management and co-workers to exchange information accurately.
    • Must be able to read, review and effectively respond to electronic as well as verbal communications.
    • This position supports an IT operations environment. Candidates may need to support work on nights and weekends and may be included in an on-call rotation for after-hours support.
    • Currently, the contract work location requirement is to work in the office at the customer’s site once weekly at a minimum. This is subject to change.

Cybersecurity: Industry Professionals Share Tips and Tidbits

Two industry professionals from the Cybersecurity industry joined us for a webinar on Determining Which Cybersecurity Work Environment is Right for You. Read along as we highlight some key takeaways from that conversation where they discuss their work environments, workflows, and cultural impact.

Related Industries: Cybersecurity
Hand typing on keyboard.

In Case You Missed It: Event Highlights

Check out some of our recent events that provided learners and job seekers with opportunities to learn from industry experts.

Related Industries: Cybersecurity, Product Management, Project Management, Social Work
Recent Events Recap: Tips & Tidbits

STEM: Industry Professionals Share Tips and Tidbits

On International Women’s Day, a few of the ladies from Nike joined us for a discussion on women in STEM. Learn more about some of the key takeaways from breakout room sessions on Overcoming Barriers and International Work as a Woman in STEM.

Related Industries: Coding, Cybersecurity, Data, FinTech, Product Management, Project Management
A woman stands in a lab coat.