SES Space & Defense is a trusted partner ensuring mission success for our customers by blanketing the globe with multi orbit end to end satellite and technology solutions which provide reliable, secure, and high bandwidth connectivity. We strive to be the only solution when success is critical, and we will take care of our employees because we recognize they are our competitive advantage.
The SES S&D Team, along with our customers and partners, will achieve success through integrity, honor, and commitment.
Position Summary:
Maintain the day-to-day operations of the in-place security solutions while identifying, investigating, and resolving security breaches detected by those systems. Secondary tasks may include involvement in the implementation of new security solutions, participation in the creation and maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability audits and assessments. The Information Assurance Analyst is expected to be fully aware of the enterprise’s security goals as established by stated policies, procedures, and guidelines and to actively work towards upholding those goals.
Duties and Responsibilities
• Maintain the day-to-day operations of the in-place security solutions while identifying, investigating, and resolving security breaches detected by those systems
• Secondary tasks may include involvement in the implementation of new security solutions, participation in the creation and or maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability audits and assessments
• The Information Assurance Analyst is expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals
• Participate in the planning, design, and implementation of enterprise security architecture
• Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures)
• Participate in the planning, design and test of an enterprise Business Continuity Plan and Disaster Recovery Plan
• Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors
• Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security
• Perform the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security documents specifically
• Maintain up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.)
• Maintain operational configurations of all in-place security solutions as per the established baselines
• Monitor all in-place security solutions for efficient and appropriate operations
• Review logs and reports of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.). Interpret the implications of that activity and devise plans for appropriate resolution
• Participate in investigations into problematic activity and perform incident response functions as needed
• Participate in the design and execution of vulnerability assessments, penetration tests and security audits
• Provide on-call support for end users for all in-place security solutions
• Coordinate with end users and technical staff to implement and maintain systems that utilize industry best practices to meet business objectives, while maintaining the security and integrity of the data, system, and network
• Generate metrics, project status reports and operating status reports for management and team members
• Prepare, coordinate, and support user training and documentation and provide technical assistance for post-implementation support issues
• Provide technical support to users
• Perform routine to moderately complex problem analysis and resolution design for systems and applications
• Support, communicate, reinforce, and defend the mission, values and culture of the organization
• Maintain timely and accurate helpdesk records using the ticket management system
• Update job knowledge by participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations
• Accomplish organization goals by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments
• Protect organization's value by preserving the confidentiality of information
Basic Qualifications
• Bachelor's Degree in Business Administration, Management Information Systems, Mathematics, Industrial Technology, Computer Sciences, a related field, equivalent experience, or associate level vendor certification(s)
• 5+ years of relevant experience
• Demonstrated knowledge of state-of-the-art telecommunications security as well as data security across multiple computer platforms
• Demonstrated proficiency in the following software applications and operating systems:
o Installation and administration McAfee VirusScan with e-Policy Orchestrator
o User-level interaction with Splunk Enterprise (create/modify queries, basic user configuration tasks)
o Privileged-level access to Microsoft Windows Server 2012/2016 and Windows 10, with full understanding of Active Directory concepts and methodologies
o Installation and administration of Tenable Nessus
o Installation and administration of DISA SCAP Compliance Checker
o Fundamental understanding and user-level interaction with open source software operating systems, such as Red Hat, SELinux, SUSE, or similar distributions
o Fundamental understanding and user-level interaction with VMware architectures and products, including vCenter
o IaaS, PaaS, SaaS
o Basic web application development security
• Demonstrated proficiency in the review, auditing, and evaluation of applied Defense Information Systems Agency (DISA) Security Technical Implementation Guidance (STIG) and Security Requirements Guides (SRG), to include:
o Operating Systems
o Networks – Infrastructure, backbone transport
o Applications – Desktop, antivirus, database, remote desktop
o Deployment and use of Open Vulnerability and Assessment Language (OVAL)- and Security Content Automation Protocol (SCAP)- compliant tools
• Demonstrated fundamental understanding by evidence of training certificate or professional experience of one or more of the following Security Control or Certification Frameworks:
o Application, implementation, or verification of National Institute of Standards and Technology (NIST) Special Publication 800-53 technical controls or enhancements
o Application, implementation, or verification of technical controls required by DoD Risk Management Framework (RMF)
o Application, implementation, or verification of CNSSI 1253 technical controls or enhancements
o Application, implementation, or verification of ISO/IEC 27003 technical controls or enhancements
• Applicants must have a current DoD-approved Professional Baseline Certification (one or more of the following): CompTIA Security+ CE, Global Information Assurance Certification (GIAC) Security Essentials Certification (GSEC), ISC2 Systems Security Certified Practitioner (SSCP), or Cisco Certified Network Associate (CCNA) Security.
• Active Top Secret clearance with SCI eligibility is required
• U.S. Citizenship is required.
• Strong verbal, written and interpersonal communication skills
• Ability to work independently as well as cooperatively in a team-oriented environment
• Ability to successfully interact with all levels of management, other IT professionals and end-users
• Strong analytic and problem-solving skills
• Open and responsive to change and demonstrates a commitment to the process of continuous improvement by identifying and responding actively and with sensitivity to the needs of all customers
Additional Desirable Qualifications
• Computing Environment Certifications are desired, to include: Microsoft Technology Associate (MTA); Microsoft Certified Solutions Associate (MCSA); Microsoft Certified Technology Specialist (MCTS): Windows Server; Intel Security Certified Product Specialist (ISCPS)-ePO; Tenable Certified Nessus Auditor (TCNA).
• Prior experience serving in roles equivalent to DOD 8570.01-M IA Technical (IAT) I or II is desirable.
• Additional experience in any of the following tools or technologies, while not required, would also be desirable:
o DISA Assured Compliance Assessment Solution (ACAS)
o DISA Host-bases Security System (HBSS)
o OpenSCAP 1.0
o Enterprise Mission Assurance Support Service (eMass)
SES Space & Defense is an Equal Opportunity and Affirmative Action Employer. SES Space & Defense is committed to workplace diversity, equity & inclusion. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability, or any other characteristic protected by local, state, or federal law.
