Information Assurance Automation Engineer
Role details
Job location
Tech stack
Job description
The Information Assurance Automation Engineer is a key contributor to the Department of State's cyber mission, focused on modernizing security assurance through automation, monitoring, and engineering-driven compliance. In a fast-paced environment, this role develops scripts to automate security analysis, identifies and implements alerts and controls, and builds dashboards that improve visibility and speed of response.
This position also supports and leads RMF/ATO activities by authoring and maintaining required A&A artifacts and system security documentation (e.g., SSP, POA&M, SOPs) and partnering closely with ISSOs and technical teams to integrate security requirements into operational processes. The engineer applies federal standards and guidance (including NIST frameworks and related mandates) to help ensure systems meet Departmental procedures and remain accreditation-ready across cloud and on-premises systems., * Develop scripts to automate security analysis of existing systems
- Identify alerts to implement various security controls
- Implement alerts using various technologies
- Develop dashboards utilizing Splunk
- Support ISSO and technical teams on documentation, status
- Integrate systems and applications to ensure prompt attention and efficient implementation of security-related requirements
- Lead customer IA, RMF, ATP/ATO processes
- Author/maintain RMF and IA Assessment and Authorization (A&A) artifacts
- Document a system from an IA perspective, including a System Security Plan (SSP), Plan of Action and Milestone (POA&M), and Standard Operating Procedures (SOP)
- Provide support applying and implementing various security laws, policies, and guidance within the Bureau, such as NIST 800-30, 800-37, 800-53/53-B, 800-171, FISMA, FICAM, and other NIST SPs as applicable
Requirements
Do you have experience in Windows?, Do you have a Bachelor's degree?, * Experience with Xacta Continuum for RMF workflow, preferred
-
Familiarity with the Federal Risk and Authorization Management Program (FedRAMP) as it applies to federal agency ATOs.
-
Strong communication skills with the ability to communicate clearly and succinctly in written and oral presentations., * Bachelor's degree in Information Technology/Systems, or related field, OR equivalent number of years of experience
-
Must be U.S. Citizen with an active Top Secret clearance (required)
-
7+ years' Information Assurance experience
-
CISSP technical certification required
-
Measured Experience in both Linux and Windows-based environments
-
Measured experience in both cloud-based and on-prem systems analysis
-
Experience with Splunk technical add-on development, indexing, and query construction
-
Experience writing PowerShell, Bash, and Ansible scripts
-
Experience with security concepts (digital certificates, identity management, system auditing, etc.)
-
Attention to detail and ability to work independently with broad guidance
-
Works in a professional setting and interacts regularly with peers
Physical Demands:
While performing the duties of the job, the incumbent will be exposed to normal demands associated with an office environment. Ability to work on a computer for long periods, and communicate with individuals by telephone, email, and face to face. This position requires the incumbent to have the ability to stand, walk, sit, use hands to finger, handle or feel objects, tools, or controls, reach with hands and arms, talk, and hear. The employee must be able to lift and/or move up to 50 pounds. Specific vision abilities required by the job include close vision, distance vision, color vision, peripheral vision, depth perception, and the ability to adjust and focus.