Minimum 5 years of experience
analyzing information security systems and applications and recommending and developing security measures to protect information against unauthorized modification or loss.
Understanding of, and experience in applying, Federal Information Processing Standards (FIPS) and National Institute of Standards and Technology (NIST) Special Publications (800 series) on Computer Security.
Experience in vulnerability analysis, security evaluation and testing, certification and accreditation, and incident reporting and remediation.
Experience leading application and system security initiatives and providing technical expertise in designing secure public-facing and internal-facing services and APIs.
Experiencing authoring, editing, and maintaining design documentation, standard operating procedures, and system configuration documentation.
Certified Information Systems Security Engineering Professional (CISSP) or equivalent.
Or the CO may determine that the candidate is
acceptable.