Why Work at SI?
Secure Innovations (SI)
successfully and continuously strives to become experts in the Cybersecurity field by only focusing on Cyber! Because of this, we proudly stand behind our motto, "We're Not Standard Cyber. We're the Cyber Standard."
SI was built on the principle that people matter first and foremost. Our focus is on PEOPLE - our employees and our customers. SI believes in providing a strong work/life balance by investing in our employees and encouraging professional and personal growth. We do this by offering exceptional benefits, flexible schedules, and the tools necessary to achieve success through paid training, mentoring, and the opportunity to work alongside top-notch security professionals.
Education and Clearance Requirements:
Day to day activities of an ISSE may include expertise with the following:
- BS & 8 yrs. experience
- Candidate will be required to successfully complete a background investigation
- CompTIA 8570 II Certification required (CISSP preferred)
Expertise in the following areas is desired/preferred:
- Experience with Certification and Accreditation activities, in particular, experience in the area of moving accreditation packages through the RMF process to Authority To Operate (ATO).
- Conducting vulnerability scans, system assessments, risk analysis, and technical recommendations to validate compliance.
- Conducts verification and validation for security information systems, products, and components.
- Analyzes design specifications, design documentation, configuration practices and procedures, and operational practices and procedures.
- Provides identification of non-compliance of security requirements and possible mitigations to requirements that are not in compliance.
- Verifies and validates that the system meets the security requirements.
- RMF, DCID 6/3, Certifying
- Risk Management Framework (RMF)
- Vulnerability and Risk Assessment, Analysis, and Reporting
- DISA Security Content Automation Protocol (SCAP) content and Security
- Technical Implementation Guides (STIGS)
- Malware and Virus prevention, detection, and remediation
- Analysis of system auditing and logging
- Repository (DITPR) /Department of Navy (DON)
- Federal Risk and Authorization Management Program (FedRAMP)
- Networking, System Administration Windows and Unix/Linux platforms
- Database Administration and Application Development
- Project Management
- USN and/or USMC Certification and Accreditation tools eMASS and MCCAST
- Patch Management, Incident Response, and Asset/Inventory Management
- DoD 8500. 01 and DoD 8510. 01 and National Institute of Technology Standards (NIST) publications
- Payment Card Industry Data Security Standards (PCI DSS) Requirements