Information Assurance Analyst (Germany)
Maintain safety and security of information systems. Protect systems from intentional or inadvertent unauthorized access and damage. Provide technical oversight for proper operation of network switches, routers, sensors, firewalls, intrusion detection systems (IDS), and intrusion prevention systems (IPS). Conduct vulnerability assessments of operating systems, applications, and databases; and perform system configuration checks on Information Systems.
Responsibilities:
- Perform Computer Security Incident Response (CSIR) duties for a large organization, closely coordinating activities with government agencies to identify, document, report and assess impact from incidents and remediation and mitigation activities.
- Monitor and analyze IDS to identify security issues and make recommendations for remediation.
- Review, audit and analyze system security logs and records to recognize potential, successful, and unsuccessful intrusion attempts and compromises and prepare detailed reports of suspect events.
- Evaluate firewall configuration change requests and assess organizational risk.
- Communicate alerts to appropriate agencies regarding intrusions and compromises to network infrastructure, applications, operating systems and databases.
- Assist with the implementation of information assurance countermeasures and mitigating control activities.
- Use vulnerability scanning tools to monitor and enforce organizational security policies.
- Perform periodic and on-demand system audits and vulnerability assessments covering user accounts, application and file access permissions, and external/remote Web access.
- Review vulnerability assessments and conduct gap analysis of subject networks and systems; and develop Plans of Action and Milestones (POA&Ms) to address deficiencies.
- Coordinate the planning, testing, scheduling, execution, and post execution validation of network patching, including vendor updates and Government directed patches.
- Support local and subordinate site Defense Information Assurance Certification and Accreditation Process (DIACAP) activities and documentation.
- Provide information assurance technical support and training to technical and functional staff members.
Education, Training and Certification:
- DoDD 8570.01 Level 2 technical or management certification required.
- B.S. degree in computer security, information assurance, or related field. A.S. degree, military training, and technical certifications may be substituted on a case-by-case basis.
- ITIL v3 Foundations certification preferred.
- CISSP certification preferred.
Experience:
- Minimum 4 years direct experience implementing or managing IT systems and networking technologies.
- 2 years direct experience evaluating IA controls and preparing C&A documentation; experience using automated vulnerability assessment tools.
Knowledge:
- In-depth knowledge of DoD and US Government security regulations and methodologies
- Strong understanding of IT security and the security features contained in today's mainstream IT technologies, to include Firewall, IDS/IPS, VPN, Router, Switch, and with knowledge of server technologies such as such as Windows 2008, Unix, Linux, etc.
- Broad knowledge of network architectures and network management tools.
- Demonstrated ability to perform complex technical tasks in pursuit of overall goals with minimal direction.
- Experience performing network security analysis and risk management.
Skills:
- Strong technical skills and analytic abilities
- Strong communication skills (written & oral)
- Ability to deal with customers at all levels in stressful situations
- Ability to prioritize and dynamically re-task response and recovery actions as situations change
- Ability to provide accurate and concise documentation
Additional Requirements
- This position is contingent on Contract Award
- TS/SCI clearance required
- This position may require shift work and weekend work
- This position may require travel to CONUS and OCONUS locations worldwide.
Position located in: Stuttgart, Germany
Company Description:
The largest communications company in the United States. And the world. We are the industry leaders in providing wireless service, high speed internet access, local and long distance voice, and directory publishing and advertising services across the US. We are also developing our business to include next-generation television services with our new AT&T U-VerseSM TV.
Join our incredibly diverse company of more than 250,000 people and help drive the innovation that keeps AT&T at the leading edge of technology and service. Expect big things from the company that created the communications industry.
