Criterion Systems is seeking a mission-focusedNetwork Intelligence Engineer to support and contribute to our government customer’s success in Herndon, VA. The individual in this position must be a motivated team player that strives for professional and technical excellence in Network Intelligence Engineering. Primary Responsibilities include, but are not limited to:  - Create custom visualizations of network data. - Analyze data to pinpoint statistically significant patterns related to cyber threats - Identify vulnerabilities in network security, including: Computer network intrusion detection/prevention systems, Firewalls and Operating systems. - Understanding of networking protocols and network modeling tools. - Understanding of Network Protocols and ability to analysis PCAP traffic. - Ability to construct network visualizations (Visio diagrams, terrain maps, reports, etc.) - Knowledge of: Network security products and techniques (Firewalls, ACL creation, Radius, TACACS, etc.), IT network-based attack methodologies and tools, Security operations and incident response technologies/methodologies. - Highly developed research and analytical skills. - Excellent problem solving skills. - Strong organizational skills and attention to detail. - Strong presentation skills to brief others on your findings and recommendations. - Solid Teamwork Skills - the ability to collaborate with others who are conducting research in the same, similar or different areas.

Criterion Systems is seeking a mission-focusedSr. Systems Engineer to support and contribute to our government customer’s success in Herndon, VA. The individual in this position must be a motivated team player that strives for professional and technical excellence in Sr. Systems Engineering. Primary Responsibilities include, but are not limited to:  - Collaborate with enterprise partners and incident response teams regarding requirements and the deployment of security services, tools, and appliances. Continue to monitor the health of the deployed services, tools and appliances. - Develop innovative designs for custom/commercial/hybrid solutions to meet customer requirements, then implement/deploy the new design into a production environment. - Provide detailed specifications (through technical documents, artifacts, diagrams, test results) for proposed solutions including materials, manpower and time necessary to fulfill direct customer requirements. - Evaluate existing system capabilities (hardware and software) and provide technical direction to IT support staff to close and deficient feature sets or enhance the customer’s capabilities. - Plan and implement system automation to deliver greater efficiencies for the end user. - Oversee the development, testing and deployment of customized software and hardware solutions. - Coordinate necessary contributions from cross-functional teams and develop processes to facilitate their collaboration such that activities become standardized, repeatable and measurable by the customer. - Pro-actively manage technical risks and constraints within a project: identification, tracking, problem resolution, solution deployment, monitor for stability. - Work alongside project managers to successfully monitor progress, implement technical solutions and support broader communications to all stakeholders to remove ambiguity. - Experience integrating commercial software and hardware products using open protocols and/or custom interfaces in unique environments. - Experience researching commercial IT products and evaluating against technical requirements. - Experience in identifying security issues and risks, and developing mitigation plans. - Familiarity with virtualization platforms, big data management, data analysis tools, network engineering, and SecDevOps techniques. - Excellent problem-solving and project or program management skills demonstrated by one or all of the following: Obtained the PMI/PMP certification and/or demonstrated its principles and practiced through specific use cases. Obtained Agile certification/s and/or demonstrated practice through specific use cases. Obtained Software Development Life-cycle Certification (SDLC) and/or demonstrated practice through specific use cases. Achieving Lean and/or Six Sigma certification/s and/or demonstrated practice through specific use cases. - Excellent verbal and written communication skills.

Criterion Systems is seeking a mission-focused Senior Systems Development Engineer to support and contribute to our government customer’s success in Herndon, VA. The individual in this position must be a motivated team player that strives for professional and technical excellence in Senior Systems Development Engineering.   Primary Responsibilities include, but are not limited to:   - Evaluate cloud and hybrid security services, tools, and appliances in the areas of (but not limited to): intrusion detection, intrusion prevention, packet capture, and quarantine. - Collaborate with enterprise partners and incident response teams regarding requirements and deployment of security services, tools, and appliances - Assess network/cloud security posture and recommend modifications for enhancement or improvement - Manage vendor relationships regarding requirements and technical support - Communicate vulnerability findings to management and partners - Identify and recommend mitigations for vulnerability findings found by security services, tools, and appliances - Assist with implementation of other network defense requirements as assigned - Develop user focused tools that include: Auto-fill, remote value loop, user entry minification, action-based notification, task deep linking, full audit and authentication, and filtering using commercial best practices. - JavaScript/ECMASCRIPT expertise including but not limited to: Code Stitching and minimization. - Restful API development and integration. - Development of data driven front and back-end applications. - Demonstrated experience developing and deploying automated hardware appliances and infrastructure via orchestration, containerized workloads, PKI Infrastructure, Encryption at rest services. - Docker, Kubernetes, general containerization and micro-virtualization. - Experience in validating file ingestion pipelines to capture and validate source and material. - Experience building enterprise security strategy for cloud adoption or driving the program's evolution to meet new requirements.

Criterion Systems is seeking a mission-focusedCyber Defense Network Engineer to support and contribute to our government customer’s success in Herndon, VA. The individual in this position must be a motivated team player that strives for professional and technical excellence in Cyber Defense Network Engineering. Primary Responsibilities include, but are not limited to:  - Configure, deploy, and maintain email and network security appliances. - Identify, troubleshoot, and mitigate vulnerability findings found by security appliances. - Collaborate with enterprise partners and incident response teams regarding requirements, design, and deployment of security appliances. - Create and maintain SOP documentation for security appliances. - Manage vendor relationships regarding support and vendor update. - Assist with implementation of other network defense requirements as assigned. - Ability to construct network visualizations diagrams in Visio and PowerPoint. - Vendor engagement experience. - Excellent problem solving skills. - Understanding of passive and active TAPS in a network. - Understanding of Network Protocols and ability to analysis PCAP traffic. - Ability to work independently or as part of a team in a fast paced environment. - Excellent verbal and written communication skills.

Criterion Systems is seeking a mission-focusedCyber Architect to support and contribute to our government customer’s success in Herndon, VA. The individual in this position must be a motivated team player that strives for professional and technical excellence in Cyber Architecture. Primary Responsibilities include, but are not limited to:  - Collaborate with Community partners, enterprise partners, and cyber incident response teams regarding requirements and deployment strategies for cyber security services, tools, and appliances. - Identify, analyze, define, and coordinate customer needs and translate them into technical requirements. - Review and assess software and hardware to protect systems from unauthorized access, denial of service, and compromise of information assets. - Plan for integration of future cyber security technologies through development of architecture road-maps. - Develop innovative architectural designs for custom/commercial/hybrid solutions to tough cyber security challenges. - Identify discrepancies between the enterprise technical architecture and system designs proposed by project teams and make recommendations for resolving those discrepancies. - Possess a strong understanding of customer IT infrastructure and inter-relationships of the following: network, storage, backup systems, server platforms,OS platforms (Windows/Linux servers and desktops), web and email, applications. - Experience researching commercial IT products and evaluating against technical requirements. - Ability to construct network visualizations (Visio diagrams, terrain maps, reports, etc.).  - Experience in identifying security issues and risks, and developing mitigation plans. - Solid Teamwork Skills - the ability to collaborate with others who are conducting research in the same, similar or different areas. - Excellent problem-solving skills. - Excellent verbal and written communication skills.

- Installs, administers and manages the Intrusion Detection Systems/Intrusion Prevention Systems (IDS/IPS), Security Incident and Event Manager (SIEM), Wireless Intrusion Prevention Systems (WIPS) and Host-based Intrusion Detection systems (HIDS/HIPS). - Monitors Remedy ticket queues for the team and processes/works incidents and change request tickets as they are assigned. - Performs Incident Response activities by following procedures in the event that a Cyber Incident occurs. - Documents all aspects of the system for daily operations and disaster recovery, in addition to adherence of federal certification and accreditation requirements. - Provides statistical reporting to illustrate security posture and continuous improvements. - Participates in the creation, review and enforcement of security policy, procedures and system documentation. - Evaluates, makes recommendations, implements or disseminates IT security tools, procedures and practices to protect organizational systems. - Provides knowledge transfer to team members, to include government counterparts.  

Criterion Systems, Inc. is seeking an Information System Security Officer (ISSO) to join a U.S. Department of Energy contract in Germantown, MD. In this role, you will serve as a Principal Advisor on all matters involving the security of an Information System (IS). You will have the detailed knowledge and expertise required to manage the security aspects of an information system and be assigned responsibility for the day-to-day security operations of a system. You will assist in the development of the security policies and procedures and ensure compliance with those policies and procedures through ongoing monitoring and assessments. In close coordination with the Information System (IS) owner and the Information System Security Manager (ISSM), you will play an active role in the evaluation or risk associated with a system, enforcing and assessing the controls, monitoring the security impact of changes to the systems, and developing and updating the security documentation associated with the system.  - Ensuring the implementation of DOE and NNSA cyber security policies and procedures for designated information systems - Conducting the Assessment and Authorization (A&A) activities for designated systems - Documenting the implementation of protection measures within the security plan for the systems - Ensuring the appropriate access is provisioned for users of designated systems - Identifying, assessing, and documenting threats and risks to designated systems - Capturing and maintaining information system security artifacts - Conducting cyber security tests and assessments and providing results of these activities to the ISSM - Evaluating the security impact and recommending implementation strategies for security significant changes to the assigned information systems - Identifying cyber security training needs in terms of job responsibilities or roles - Conducting information system risk assessments - Responding to and reporting of incidents related to their assigned information systems - Development of security processes and procedures to support the ISSM’s Cyber Security Program - Creating and maintaining disaster recovery and incident response plans and participating in associated training - Formally and informally presents information in group and individual settings

Criterion Systems, Inc. is seeking an Information System Security Officer (ISSO) to join a U.S. Department of Energy contract in Washington, DC. In this role, you will serve as a Principal Advisor on all matters involving the security of an Information System (IS). You will have the detailed knowledge and expertise required to manage the security aspects of an information system and be assigned responsibility for the day-to-day security operations of a system. You will assist in the development of the security policies and procedures and ensure compliance with those policies and procedures through ongoing monitoring and assessments. In close coordination with the Information System (IS) owner and the Information System Security Manager (ISSM), you will play an active role in the evaluation or risk associated with a system, enforcing and assessing the controls, monitoring the security impact of changes to the systems, and developing and updating the security documentation associated with the system.  - Ensuring the implementation of DOE and NNSA cyber security policies and procedures for designated information systems - Conducting the Assessment and Authorization (A&A) activities for designated systems - Documenting the implementation of protection measures within the security plan for the systems - Ensuring the appropriate access is provisioned for users of designated systems - Identifying, assessing, and documenting threats and risks to designated systems - Capturing and maintaining information system security artifacts - Conducting cyber security tests and assessments and providing results of these activities to the ISSM - Evaluating the security impact and recommending implementation strategies for security significant changes to the assigned information systems - Identifying cyber security training needs in terms of job responsibilities or roles - Conducting information system risk assessments - Responding to and reporting of incidents related to their assigned information systems - Development of security processes and procedures to support the ISSM’s Cyber Security Program - Creating and maintaining disaster recovery and incident response plans and participating in associated training - Formally and informally presents information in group and individual settings

Criterion’s National Nuclear Security Administration (NNSA) Program Management Office (PMO) Program at the Department of Energy (DOE) is looking for an IT Business Analyst to join our team. The IT Business Analyst works with business and IT partners to assess requests for IT related services and align IT solutions, processes and/or strategies to those requests. The Senior IT Business Analyst is expected to demonstrate an informed knowledge of IT and Business Analysis services to resolve problems and assist with improvement of processes on an ongoing basis. - Work with Project Managers and Technical Leads and personnel to identify and document business needs and objectives, current operational procedures, problems, input and output requirements, data scope, usage, formatting, and security requirements. - Write and maintain functional specifications for new or modified business systems. - Translate customer needs and requirement into User Stories. - Maintain requirements traceability. - Work directly with the development teams to clarify requirements. - Translate user stories into test cases and support. - Support organizational change strategy and artifacts to support a smooth system roll-out. - Develop executive briefing artifacts. - Track and document changes to functional and business specifications. - Monitor and document post-implementation problems and revision requests. - Prepare time and cost estimates for completing projects. - Work with the Project Managers to develop project plans schedules and requirements.

- Installs, administers and manages the Intrusion Detection Systems/Intrusion Prevention Systems (IDS/IPS), Security Incident and Event Manager (SIEM), Wireless Intrusion Prevention Systems (WIPS) and Host-based Intrusion Detection systems (HIDS/HIPS). - Monitors Remedy ticket queues for the team and processes/works incidents and change request tickets as they are assigned. - Performs Incident Response activities by following procedures in the event that a Cyber Incident occurs. - Documents all aspects of the system for daily operations and disaster recovery, in addition to adherence of federal certification and accreditation requirements. - Provides statistical reporting to illustrate security posture and continuous improvements. - Participates in the creation, review and enforcement of security policy, procedures and system documentation. - Evaluates, makes recommendations, implements or disseminates IT security tools, procedures and practices to protect organizational systems. - Provides knowledge transfer to team members, to include government counterparts.  

- Determine enterprise information assurance and security standards against NIST 800-53.  - Evaluate information assurance/security standards, policies and procedures.  Collaborate on annual review and updates of these policies.  - Coordinate and document annual System Security Plan updates. This includes documenting how the respective organization implements each applicable NIST 800-53 control in narrative implementation statements. - Perform investigative interviews and follow up with control owners and subject matter experts to complete the control implementation statements. - Recommend information assurance/security solutions to support customers’ requirements. - Identify and report control weaknesses and potential assessment failures detected during System Security Plan updates. Assist in resolution, where possible. - Establish and satisfy information assurance and security requirements based upon the analysis of user, policy, and regulatory demands. - Support customers at the highest levels in the development and implementation of security procedures. - Perform analysis of security features for system architectures. - Analyze and define security requirements for computer systems.  - Provide assistance in integration and implementation of the computer system security solution.  - Ensure that all information systems have documented controls enabling the system to maximize functionality and security.  - Demonstrate and communicate accurate weekly completion progress to client.

- Maintain an effective quality control program to ensure services are performed in accordance with the contract requirements. - Develop a Quality Assurance Plan (QAP) and a Quality Assurance Surveillance Plan (QASP) where needed. - Develop and implement procedures to identify, prevent, and ensure non-recurrence of defective services. - Ensure that all processes, work products, and deliverables are delivered with exceptional quality and 100% acceptance rate. - Develop, document, and maintain test cases and other test artifacts such as test data and data validation. - Oversee program performance of all Quality Assurance Activities. - Correspond daily with developers, business analysts, product owners, and management concerning status reports, software defects, and release readiness.

- Design, develop, maintain, and deploy complex full-stack solutions using JavaScript (React, Redux, Angular, Ngrx) and cloud services (AWS). - Work with cloud systems, Jenkins pipelines, and serverless functions. - Develop loosely coupled solutions that are scalable, testable, modularized, and reusable. - Develop solutions that leverage existing frameworks and libraries, align with the overall company architecture and vision, and are compliant with the established coding standards and other engineering principles. - Participate in peer discussions on architecture and the overall direction of the IDDataweb web and mobile web platforms. - Partner with product management and engineering leadership to bring creative technology and solutions to solve Identity verification and Authentication problems. - Mentor a growing team of engineers on FE standards and best-practices.

Provide comprehensive database support, including, but not limited to the tasks/products/tools as identified below.  Specific tasks and support areas include, but are not limited to, the following: General: - Installation of the database software. - Creation of installation scripts for the database software. - Installation of and corrective action for the database software and tools as well as creation of the instance and/or database. - Provide analysis data to the agency/customer such that the customer can adequately determine when to use a partitioned/clustered database. - Provide analysis data to the agency/customer such that they can adequately determine when to use special types of data containers and the placement of those containers. - Monitoring, analysis and tuning of the instance and/or database for maximum performance. - Granting and/or revoking of privileges required to create and maintain the tables, indexes and other structures needed to store the customer’s data to a select group of personnel designated by the customer. - Recover the instance and/or database in case of a disaster scenario or a disaster test scenario. - Execution of normal duties described commonly for an application DBA, such as creation of tables, indexes, etc. - Binding of application software packages. - Monitoring, analysis, and tuning recommendations for the application layer, even when not making a change to a database. - PostgreSQL - Ensure connectivity and availability. - Install/upgrade database software. - Configure database software. - Configure and maintain database structures - Configuration control and capacity planning activities - Create/configure backup and restore scripts and other database scripts. - Removal of database and software in accordance with policies established by the Government. - Database restoration using full, differential, and log backups - Data extraction/transformation/load (ETL) - Working with external and remote data - Optimization - Database design - Clustering - Patch PostgreSQL databases - Customize PostgreSQL databases Test & verify - Maintain database(s) and associated applications using all tools. - Routine/preventative maintenance activities. - Backups – establish and monitor - Recovery Procedures – establish and monitor - Monitoring security of the databases down to application layer. - Logs – monitor and maintain critical database logs and standard parameters in order to maintain reliable and consistent database operations. - Database and application and security related patches/fixes. - Departmental standards and regulations regarding patching/fix packs. - Ensuring application revision level is at current industry level as allowed by current maintenance agreement with Postgres and customer(s). - Working with metadata - Retrieving XML result sets - Analyzing query plans - Capacity management. - Coordination of changes. - Analysis, review, and maintenance of secure logins to and associated applications: - Troubleshoot/Debug/update problem ticket(s) - Configuring client/server network libraries - Managing indexes and locks - Troubleshooting deadlocks - Working with statistics - Creating alerts - Schema management - Performance monitoring - Backup/recovery planning - SQL tuning - Data replication - Database reorganization - Data loading - Database coding/maintenance, optimization

Criterion Systems is looking to hire a Cybersecurity Compliance Monitoring Specialist to support our National Science Foundation customer.  Compliance Monitoring is an on-going process to ensure processes are working as intended and usually involves continuous checking and measuring. Management uses monitoring tools and processes to verify that controls it has implemented are working on a routine basis and that business risks are being identified and addressed. Auditing is a formal, systematic, and disciplined approach designed to evaluate and improve the effectiveness of processes and related controls and governed by professional standards.     This position will be a member of the Cyber Policy and Audit Team. The position will provide general compliance monitoring support, analyzing management and technical controls and operational system data to ensure that specific security and compliance requirements are met. The individual in this position will verify the effectiveness of documented processes, procedures, and standards in order to validate security controls and change management procedures. The individual will be required to draft new policy procedures and documentation for publication, will be required to maintain and update existing policies and procedures, and will be required to draft white papers and other presentation material for senior and executive NSF leadership.

- Experienced in leading edge unified communication products. - Design, development, delivery, and experience of Unified Communication (UC) System platforms that improve the performance and scalability of existing systems. - Define security standard methodologies and develop innovative voice and video solutions. UC systems include but are not limited to Studio Video Teleconferencing (SVTC), Desktop Video Conferencing (DVTC), Voice over Internet Protocol (VoIP), Multiway/Meet-Me, Streaming Services, Chat Services, and Microsoft Teams Services. - Extensive knowledge should include VCWizard, Cisco Telepresence Management Suite, Cisco CODEX, Cisco Wedex, CODIAN Multipoint Connection Unites, Cisco Expressways, VBrick, Cisco Unified Call Manager (UCM), Cisco Unified Boarder Controllers, Cisco Expressways, V2CDS/V3CDS. - Telecommunications protocols, communications and standards, H.323, MGCP, SIP and E.164.

Criterion Systems is seeking a mission-focusedSystems Administrator to support and contribute to our government customer’s success in Denver, CO. The individual in this position must be a motivated team player that strives for professional and technical excellence in Systems Administrating. Primary Responsibilities include, but are not limited to:  - Support the system administration on complex systems; troubleshooting and managing storage issues; and administration and troubleshooting virtualized operational systems; provisioning and integration.   - Experience with Unix and Microsoft Windows Operation Systems. - Experience with System Administration, DevOps Support, and Storage. - Experience with Redhat Enterprise Linux installation, configuration, and administration. - Experience with system provisioning tool (Chef or Puppet experience a plus) including scripting for automation, configuration control or provisioning; experience with information assurance hardening and compliance, (i.e., STIG & DSS compliance, documentation, etc.).

 We are seeking a Program Planner/Scheduler for the development, maintenance, analysis, and reporting of IT and Cybersecurity-based project schedules, project documentation, and Integrated Master Schedule (IMS). The position will be an integral part of a small Program Management (PM) team to ensure the schedule/project plan (scope, cost, schedule and technical requirements are fully integrated) is executing as planned. Additionally the position will provide weekly and monthly planning metrics on schedule status, schedule risk assessments, critical path analysis, schedule variance analysis, and network logic validation. The successful candidate will be an advocate in the discipline of classic PMBOK project planning principles and scheduling (both waterfall and Agile) and must be able to identify and recommend insightful mitigation plans. Strong facilitation skills and the ability to proactively communicate with all levels of management, the customer, and other stakeholders are required.

- Develop and maintain reports and reporting tools utilizing SQL or other query languages. - Automate, manage and maintain storage systems and software. - Based on storage/system analysis, document potential improvements and/or alternatives for existing systems or workflows. - Utilize storage monitoring tools to maintain storage operational efficiency, troubleshoot performance or system issues (including log review), engage with Vendors/Partners as escalation is required, and document root cause and solution. - Design, plan, and implement enterprise-wide storage systems utilizing automation toolsets. - Install, configure and support server software and related applications and systems. - Act as liaison to organizational billing points of contact to identify customer utilization information. - Research and recommend emerging technologies to increase cost effectiveness, system ability, and future expandability.