about 1 month ago
The Security Engineer shall perform the following services: Advise on information assurance and quality assurance principles along with IT security "best practices". Support the development and maintenance of Information Security program areas and processes to include (but not limited to): o Risk Management (RMF), o Configuration Management, o Continuous Monitoring, o Security Awareness and Training, o Vulnerability Management to include incident response, vulnerability scanning, patch management, data at rest, and data in motion subcomponents, o Cyber incident and violation, o Plan of Action and Milestone, o Security configuration baselines, o Access control, o Contingency planning, and o Remote access. Recommend methods to collect data from various efforts to provide a programmatic view into the status and progress of all the projects within the Information Security program. Establish workflows that support the real time monitoring of the effectiveness of the Information Security program areas and processes listed previously. Performs daily monitoring of process compliance and performance. Establish, maintain, and monitor Information Security measures of performance through performance dashboards that support the client's Information Security policies and procedures. Recommend the data elements that should be included in executive dashboards supporting cost, schedule, compliance, etc. Research and recommend innovative, secure, and (where possible) automated approaches towards IT solutions. Identify approaches that leverage our resources and provide economies of scale. Assist in project related tasks in data and documentation as required by management. Maintain, maximize, and optimize the Information Assurance SharePoint site as the organization's Information Security collaboration tool and central repository on all matters dealing with Information Security. Apply a comprehensive knowledge of particular field of specialization to the completion of difficult assignments. Function as a technical authority on a given project, serving as a primary decision maker for technology decisions. Responsible for providing technical leadership during crucial, early phases of an information technology initiative, focusing particularly on requirements gathering, technology selection, and initial systems design. Thorough understanding of the information system development lifecycle, as well as planning and estimating experience required on complex design and development projects. May train junior level personnel in technical complexities of assigned work Recommend changes in procedures Operate with full latitude for actions or decisions not reviewed WORK EXPERIENCE Ability to express oneself professionally in both verbal and written communication. Ability to conduct briefings and present materials to large audiences and/or senior and executive management. Expertise administering a SharePoint site as an informational portal and collaboration tool is desired. Must have knowledge creating process workflows. Knowledge of business process management (BPM) software is desired. Should have knowledge of vulnerability scanning tools that support continuous monitoring. Must have expert knowledge with the Federal Information Security Management Act (FISMA) and relevant Information Security federal/special publications as published by the National Institute of Standards and Technology (NIST). Familiarity of networking concepts and principles is preferred. EDUCATION Bachelor's degree or equivalent and eight plus (8+) years of general experience. Six (6) years of general experience is considered equivalent to a Bachelor's degree. With a Master's degree, four (4) years of general experience is required. With a Ph.D., two (2) years of general experience is required.
TDI was founded in 2001 to pursue Cyber Security as its core competency. Since inception, TDI has led or participated in more than 100 separate information security tasks in the government and commercial areas around the world. TDI has outstanding credentials in its core capabilities of penetration testing, program management, information security, C&A, FISMA compliance, and all areas of cyber security engineering. We pursue the latest developments in information security through active lecturing at international information security conferences, publishing information security articles, and working on the cutting edge of information security development programs.
"We provide our clients the peace of mind that their business is running in a safe and secure environment. We do this by delivering high-quality, innovative information assurance and cyber security services and solutions."
"TDI will be an acknowledged global leader in information assurance and cyber security by delivering outstanding service and superior outcomes for our customers."
Employees are our primary source of strength
Employees should enjoy their work, feel part of the company, and share in its profits
Our clients deserve the top talent in Information Assurance
Total access to senior management and openness with each other is a cornerstone to our success
Our work environment promotes and rewards employee initiative
A flexible organization is always open to new ideas and solutions
Our well managed growth preserves our culture
We have a responsibility to contribute meaningfully to the field of Information Assurance, influence its growth, and set the standard.
15 days ago
only 13 days until close
15 days ago
only 13 days until close