Job Details:

Job Description:

Intel's Government Information Technology and Security (GITS) organization enables Intel to win United States Government business by providing secure products, solutions, and services which meet U.S. regulatory requirements. The GITS team is part of Intel's Information Security organization and supports the unique IT Information Security and Compliance requirements for Intel Federal LLC, a subsidiary of Intel that delivers products and/or services to the U.S. Government (USG). As part of the GITS team, you will help us grow our secure solution suite to meet U.S. Government requirements for data safeguarding. The Government Information Technology and Security Team (GITS) is composed of highly experienced security professionals with expertise in Enterprise Security Architecture, System Engineering, Information Security, and service/product operations that fulfill and meet regulatory compliance oversight. Within the GITS Team, each member brings diverse expertise and wears multiple hats.

We are seeking a talented and motivated individual with strong analytical, communication, and security risk management skills, along with a passion for rapidly learning new technologies. In this role, you will be part of an Agile team, tasked with supporting, improving, and expanding our secure solutions to enhance Intel Government Technology capabilities, with a continuous focus on regulatory compliance for U.S. Government contracts.

Primary duties and responsibilities:

• Oversee the security posture of information systems and develop/revise necessary Risk Management Framework (RMF) documentation to support system authorization.
• Create and update standard RMF artifacts, including the System Security Plan (SSP), Plan of Action and Milestones (POAM), Security Controls Traceability Matrix (SCTM), hardware and software inventories, and network topology diagrams.
• Assist in the development and implementation of security policies and procedures required by assessment and authorization activities, in accordance with directives such as ICD-503, DAAPM, NISPOM, JSIG, and NIST 800-53.
• Provide guidance and direction to program personnel, ensuring effective communication within the role.
• Collaborate with system administrators and network engineers to ensure timely application of security patches and secure configurations in line with Security Technical Implementation Guides (STIGs).
• Minimal travel required.

Core Functions:

• Develop and maintain Certification and Accreditation (CA) package documentation, including System Security Plans (SSPs), Plan of Actions and Milestones (POAM), Risk Assessment Reports, and System Requirements.
• Validate security policies and procedures outlined in the System Security Plan (SSP), customer policies, and regulations, ensuring adherence to local policies.
• Assist with information system security management and day-to-day security operations.
• Serve as a member of the Change Control Board (CCB) to ensure configuration management for Cybersecurity-relevant software, hardware, and firmware is maintained and documented.
• Ensure all personnel receive the necessary technical and security training to perform their duties effectively.
• Conduct security reviews of proposed changes or additions to the information system (including hardware or software) and advise the Information System Security Manager (ISSM) on security relevance.
• Perform vulnerability/risk assessment analysis to support continuous monitoring and the certification and accreditation process.
• We are looking for a candidate with strong analytical skills, effective communication abilities, and a deep understanding of cybersecurity requirements to join our dynamic team.

Qualifications:

You must possess the below minimum qualifications to be initially considered for this position. Preferred qualifications are in addition to the minimum requirements and are considered a plus factor in identifying top candidates. Experience listed below would be obtained through a combination of your degree, research and or relevant previous job and or internship experiences.

This position involves work on U.S. Government Contracts and/or proposals for U.S. Government Contracts that limit participation to U.S. Citizens. A person may be required to provide proof of U.S. Citizenship in order to comply with U.S. government requirements. Any offer by Intel for this position is conditioned upon satisfying any government requirements regarding proof of citizenship.

Minimum Qualifications:

• U.S. Citizenship required.
• Ability to obtain an active U.S. Government Top Secret/SCI clearance with polygraph.
• Possess a bachelor's degree and a minimum of 5+ years of relevant experience in the Government Information Technology (IT) and Information Security Industry, or a High School Diploma with at least 8+ years of relevant experience in the Government Information Technology (IT) and Information Security Industry.
• Must hold at least one of the following certifications: DOD IAT level 2, Sec+, CySA, GSEC, SSCP, GICSP, Security+ CE, CASP+(SecurityX), CISSP, CySA+, GICSP, GSEC, CND, or SSCP.
• 2+ years' experience with the NIST Risk Management Framework (RMF), JSIG, NIST 800-53, and ICD-503.
• 2+ years' experience with one or more of the following: Security Technical Implementation Guides (STIGs), Security Content Automation Protocol (SCAP), and Security Requirements Guides (SRGs).
• 2+ years' experience with one or more of the following: Maintaining Information System package documentation, including System Security Plans (SSP), Plan of Action and Milestones (POAMs), Risk Assessment Reports (RAR), Security Assessment Reports (SAR), Security Requirements Traceability Matrix (SRTM), and hardware and software inventories.

Preferred Qualifications:

• Active U.S. Government Top Secret/SCI clearance.
• Working knowledge of industry-standard tools for audit reduction, vulnerability scanning, and malware detection, such as Splunk, Tenable Nessus, Security Content Automation Protocol (SCAP) Checker, and STIG viewer.
• Experience in administering and operating IT technologies, including Microsoft Windows, Linux, networks, firewalls, and virtual cloud environments.
• Experience with multiple encryption methodologies for data in transport and at rest.