Information Assurance Job Description
Information Assurance Duties & Responsibilities
To write an effective information assurance job description, begin by listing detailed duties, responsibilities and expectations. We have included information assurance job description templates that you can modify and use.
Sample responsibilities for this position include:
Information Assurance Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Information Assurance
List any licenses or certifications required by the position: CISSP, IAT, II, CE, IA, DOD, GSEC, ITIL, GIAC, SANS
Education for Information Assurance
Typically a job would require a certain level of education.
Employers hiring for the information assurance job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Technical, Education, Engineering, Information Assurance, Information Technology, Information Systems, Science, Information Security, Technology
Skills for Information Assurance
Desired skills for information assurance include:
Desired experience for information assurance includes:
Information Assurance Examples
Information Assurance Job Description
- Verify that all ISs within the scope of responsibility are properly certified and accredited in accordance with RMF and CM policies and practices before operating or authorizing the use of hardware and software on an IS or network
- Identifies IA weaknesses and provide recommendations for improvement
- Ensures appropriate administrative, physical, and technical safeguards are incorporated into all new IT resources through certification and accreditation
- Prepare DIACAP paperwork and/or translates security requirements into network configurations/security settings
- Estimate work efforts for Input into project plans
- Track development timelines, provide best efforts to meet estimates, and notify Program Manager If estimates can't be met
- Notify Program Manager of any issues that may jeopardize producing quality output for the customer
- Assess DODI 8500.2 Information Assurance (IA) controls against system baselines and mitigate any vulnerabilities
- Analyze an organizations internal and external IA processes and identify areas for improvement
- Author official IA correspondence, IA guides, and plan of action and milestone (POA&M)
- Experience with IA vulnerability testing and related network and system test tools
- Experience with various information system security assessment/hardening tools – WASSP, DISA Gold Disk, SECSCN, DISA SRR, Retina
- Microsoft Certified Master (MCM) - Microsoft Exchange/Windows Server
- GIAC Certified Firewall Analyst (GCFW)
- GIAC Certified Windows Security Administrator (GCWN)
- GIAC Certified UNIX Security Administrator (GCUX)
Information Assurance Job Description
- Work with Chief Systems Engineers, to align stakeholders to an Enterprise Architecture, providing overall technical guidance, providing, promoting, and delivering technical expertise
- Lead and assist in the implementation and maintenance of DoD A&A efforts, validation of security controls, creating/maintaining security processes & procedures and maintaining continued security compliance for the a Navy client
- Cyber Risk Management
- Information Systems Security Engineering
- Support Cyber Defense Leads shall meet, at a minimum, Information Assurance Manager Level III or Information Assurance Technical Level III with recent and relevant IC, DOD, or government experience in IT, IA, or Information Security, related fields, or IA disciplines
- IA Leads could architect, plan, configure, deploy, maintain, and upgrade COTS/GOTS and custom toolsets to address vulnerabilities and/or implement security controls
- Apply a combination of expert engineering knowledge of enterprise IT and security solutions to design, develop and/or implement solutions to ensure they are consistent with enterprise architecture security policies and support full spectrum military cyberspace operations
- Provide dedicated to support to the sustainment of systems residing in BSL3 and BSL4 containment suite
- Candidate will perform the duties of a typical IT Tech, but include additional requirements due to the restricted access to the BSL3/BSL4 work environment
- Candidate may be required to perform the same duties as Civilian position Biomedical Engineer Technician
- Global Information Assurance Certification (GIAC) Security Essentials Certification (GSEC)
- Security Certified Network Architect (SCNA)
- Certified Information System Security Professional (CISSP) or Associate
- GIAC Information Security Fundamentals (GISF)
- Flexible, self-starter with the ability to interact with various levels of client and firm management
- Ability to assist with performing audit and test procedures
Information Assurance Job Description
- Perform work based upon the priority of the work assigned IAW medical maintenance internal SOP
- Ensure the use of Army/MEDCOM approved procedures for clearing, purging, reusing, and releasing system memory, media, output, and devices
- Assist, support and report to USAMRMC and DOIM IAMs as required
- Provide specific IA training to other facility personnel as required
- Enforce IA policy, guidance, and training requirements per regulation and identified BBPs
- Must be able to use DOD approved scanning tools
- Perform manual assessments
- Assemble and submit A&A letters to the Certifying Officer and Authorizing Official (AO)
- Develop the comprehensive information security awareness program and run year round campaigns
- Follow the TCNO process
- A Bachelors degree and 10 years of experience with a minimum of 2 years of relevant experience in information systems assurance or demonstrated ability
- Must have experience working in this field within the last six months or demonstrated ability to remain current in this field of expertise
- Possess a working knowledge of vulnerability assessment tools and applications such as Security Content Automation Protocol (SCAP) Compliance Checker, Assured Compliance Assessment Solution (ACAS) (Nessus), Windows Automated Security Scanning Program (WASSP), STIG Viewer, Security Readiness Review Scripts and Security Technical Implementation Guide (STIGS) Benchmarks and Checklists
- Ability to manage personal schedule to coordinate multiple projects, tasks and deadlines
- Currently in process of obtaining undergraduate (senior year) or graduate degree, preferably in IT related field (MIS, IS or Accounting Information Systems)
- Possession of an ACTIVE SECRET security clearance with a Special Clearance Investigation is required to begin employment
Information Assurance Job Description
- Proofreads documentation and graphics for accuracy and adherence to original content
- Perform IT forensic analysis on hardware, software and other digital media to ensure that sensitive data is detected and is not released to unauthorized personnel
- Develop RMF compliant documentation
- Support RMF accreditation of Storefront systems
- Support timely completion of Information Assurance Vulnerability Alert (IAVAs)
- Supports the development of program required security documentation, including items such as security plans, contingency plans, and security tests plans and procedures in compliance with the IA policy
- Supports the generation of Assessment and Authorization (A&A) (or Certification and Accreditation (C&A) documentation for the program
- Participates in A&A (or C&A) activities
- Executes security scanning
- As a member of the cyber security team, may support the system security design effort, security requirements analysis, and security requirements flow down to the program element
- DoD 8570 compliant by obtaining/maintaining required certifications such as
- Working knowledge of IA tools for vulnerability management, host based security, network monitoring
- Bachelor’s Degree in Finance, Business, IT or related field
- Bachelor's degree in computer science, math, engineering or related job field
- Position may require the ability to investigate, troubleshoot, and design solutions to problems in operational hardware and software
- 2+ years of experience with Cyber network defense
Information Assurance Job Description
- Supports the development of program required security documentation, including items such as security plans, contingency plans, and security tests plans and procedures in compliance with the Risk Management Framework (RMF)
- Work with other information and physical security system security personnel
- Producing actionable
- Continuously improve risk models
- Recognizes potential
- Under minimal supervision, documents and carries out all phases of information systems/networks security program that involves access to computers and computerized data enabling company to meet contractual requirements for information systems security
- Provides guidance to safeguards networks located in the classified environment against unauthorized infiltration, modification, destruction, and disclosure
- Researches, evaluates, tests, recommends, communicates and implements new security procedures, software, or devices
- Incumbent will report in to the Security department and act as a liaison between the IT and Security functions
- Responsible for performing CyberSecurity (CS) system assessments, developing related test plan requirements, analyzing results, and gathering evidence under the Risk Management Framework
- Recommend proper system configuration and administration control procedures to enhance system security, performance, and to ensure NAVSEA PMO-IT information systems are compliant with applicable laws and policies, and meet Information Assurance requirements outlined in the Defense Acquisition System guidance all applicable Department of Defense (DoD) and Department of the Navy (DoN) Information Assurance (IA) directives and instructions
- Bachelor's degree from an accredited college or university with major coursework in auditing, MIS, computer science, business administration, or a related field is required
- Bachelor of Science in technical discipline is mandatory, and 5+ years of technical experience
- All candidates must possess a current SECRET security clearance in order to be considered for employment
- Operating systems (Windows, Linux) - Experience working with IP networking
- Must be fully 8570.1 certified