Site Inspection Security Support

Location: Rosslyn, VA
Date Posted: 03-08-2018
At a minimum, one (1) certification listed below or proof that an applicable employee(s) is significantly along (at a minimum of one (1)-year) in the process of attaining at least one (1) of the following professional certifications required by DOC CITR-006: Information System Security Training for Significant Roles for a Security Controls Assessor:
  • ISC2 Certified Information System Security Professional (CISSP)
  • Certified Information Systems Auditor (CISA)
  • GIAC Systems and Network Auditor (GSNA)
  • Information Systems Security Engineering Professional (ISSEP)
Duties:
  • Check entry controls, access controls, server rooms, alarms, access lists, and locks and make recommendations where appropriate;
  • Ensure server rooms, switch closets, and infrastructure cabinets are constructed to meet intrusion detection standards, that correct locking and day-access hardware is in place, and combinations are changed on schedule and documented appropriately;
  • Confirm encryption devices used for all circuits that process OpenNet+ traffic;
  • Review access lists, visitor logs, and observe escort procedures in server rooms;
  • Identify improperly disposed-of hardware
  • Identify non-AD systems connected to OpenNet+, unused live data ports, and all unclassified DOS networks in use (i.e., DINs);
  • Identify in-ITCCB desktop peripherals, external storage devices, unauthorized USB device, and the presence of personal electronics;
  • Ensure equipment, including portable media, has appropriate classification labels;
  • Review visibility of monitors from public spaces;
  • Ensure physical Medical PII is stored securely;
  • Review all policies and procedures;
  • Previous CSAs – Study the Post’s IT architecture and physical layout and note previous findings to check for remediations during the assessment;
  • iPost – Determine any weak areas and points of possible concern;
  • Verify proper clearances for personnel;
  • Review account management and password management;
  • Review system logs;
  • Perform system security audits; and
  • Deliver a report on the condition or outcome of the physical security review within ten (10) days of the review.
  • Assist security staff with conduction annual physical security reviews of all overseas contractor sites.  Site inspections must be categorized and assessed based.
  1. Requirements:
  • Must have a Top Secret Clearance
  • BS/BA in a related area (or equivalent)
  • 8-10 years of experience in IT security
  • 8-10 years of experience site inspections some of which must include Federal Government projects/contracts that cover the following – Military experience is a plus
  • Advising on IT security requirement solution options inclusive of developing documentation and white papers
  • Creating IT security policies and procedures
 

 
 
 
Talent Acquisition
Nationwide IT Services, Inc. (NIS)
this job portal is powered by CATS