Responsible for ongoing management of IS policies, procedures and technical systems. Management responsibilities include the following:Ensure the ongoing integration of information security with business strategies and requirementsSet up processes, policies and guidelines to meet security standards Ensure that access control, disaster recovery and incident responses are properly addressed Perform internal audits to ensure compliance with policies and procedures

•Responsible for performing all functions to support day-to-day security operations, security infrastructure, and networking infrastructure to support the availability, confidentiality, and integrity of company information•Conduct monitoring and compliance with IT Security policy•Coordination of investigations and security incidents with appropriate personnel•Monitor and conduct vulnerability assessments and intrusion detection and prevention capabilities•IT forensics/eDiscovery•Participate in Disaster Recovery readiness exercises•Provide Security compliance reporting to management•Act as a mentor and leader to junior-level colleagues

•Define information assurance requirements•Conduct information assurance risk and threat analyses•Incorporate information assurance into system architectures•Develop system and engineering information assurance strategies•Plan, test, and ensure developed systems are DIACAP compliant•Conduct security testing, evaluate results, and make recommendations for corrective actions

•Develop, review, and maintain network and system security plans for customer reaccreditation•Defense Security Service certified in Chapter 8 Implementation•Serve as the point of contact for accredited networks and systems•Conduct audits for compliance•Provide detailed security training to system administrators and appropriate personnel•Respond to security incidents and prepare summary reports for recurring Cognizant Security Agency audits•Assist in creation of Disaster Recovery/Business Continuity Plan•Work as liaison with Information Risk Management team•Conduct Information Security Risk Assessments for a complex worldwide corporation working in various theaters of operation from corporate office to active deployed military locations•Perform open source research for software and hardware acquisition vulnerability assessments•Network and non-networked forensic investigations•Cyber Threat Analyst•Malware reverse engineering (SANS SEC 610 trained)•IDS/IPS monitoring•Vulnerability scanning•Event log analysis•Incident Response

•Facilitate problem resolution for C4S users with technical difficulties•Assist project managers with projects on an ongoing basis such as:•Network Split of multiple Business Units•Internal Business Unit network integrations•RSA Remote Access Upgrade•Provide efficient hardware and software troubleshooting to end users•Afford first call resolution for both domestic and international end users from multiple Business Units