On site

Detroit area,

Secret clearance required for this position

The contractor shall establish and satisfies complex system-wide information security requirements based upon the analysis of user, policy, regulatory, and resource demands. The contractor shall support customers in the development and implementation of doctrine and policies. The Contractor shall apply security engineering to government and commercial common user systems, as well as to dedicated special purpose systems requiring specialized security features and procedures.

The contractor shall provide Information Assurance Engineering as the primary security- engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of secure networking, computing, and enclave environments. The contractor shall act as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of cyber architectures, systems, or system components. The contractor shall support the Government in the enforcement of the design and implementation oftrusted relationships among external systems and architectures. The contractor shall apply knowledge of cyber policy, procedures, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments. The contractor shall support security planning, assessment, risk analysis, and risk management. The contractor shall interact with the customer and other project team members. The contractor shall also perform the following:

Ensure all acquisitions, procurements, and outsourcing efforts address information security requirements consistent with the Army and DoD

Ensure security improvement actions are evaluated, validated, and implemented as required

Evaluate the effectiveness of procurement function in addressing information security requirements and supply chain risks through procurement activities, and recommend improvements

Identify alternative information security strategies to address security objective

Identify IT security program implications of new technologies or technology upgrades

Interpret and/or recommend security requirements relative to the capabilities of new information technologies

Interpret patterns of noncompliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise

Monitor and evaluate the effectiveness of cybersecurity safeguards to ensure they provide the intended level of protection

Participate in the Risk Governance process to address security risks, mitigations, and input on other technical risk

Promote awareness of security issues among management and ensure sound security principles are implemented

Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials)

Assist with the selection of cost-effective security controls to mitigate risk (e.g., protection of information, systems, and processes)