CyberSecurity Engineer with Security Clearance

0
0

The Computer Merchant, Ltd.

JOB TITLE: PRINCIPAL CYBERSECURITY ENGINEER
RATE RANGE: $95-100/hr
LOCATION: AURORA, CO
JOB#: REQUIRED SKILLS
• An active and transferable DoD Secret security clearance is required on Day 1.
• Experience with cyber security engineering projects and programs for U.S. Government clients.
• Experience/knowledge of NIST 800-53 Risk Management Framework (RMF), NIST 800-37, Continuous Monitoring IAW NIST 800-137, Patching IAW NIST 800-40, and CNSSI 1253.
• Familiarity with Security Control Guides (SCGs), Interface Control Documents (ICDs), topology diagrams, Ports, Protocols & Services (PPS), Program Protection Implementation Plans (PPIPs) and System Security Plans (SSPs) – with the ability to review and provide technical feedback, as well as to support development of cyber implementation and process documentation. Job Summary:
Principal Cybersecurity Engineer position supporting the operations and maintenance of custom solutions and Assessment & Authorization (A&A) activities.
The ideal candidate will have a strong cyber experience across the full spectrum of cyber operations from a mission execution perspective, to include vulnerability management, compliance management, database, and enterprise information security infrastructure. Position Type: Onsite Responsibilities To Anticipate:
• Develop and maintain security documentation
• Coordinate packages for Information Risk & Assessment Management Program (IRAMP) and Risk Management Framework (RMF) authorizations
• Maintain Approval to Operate (ATO) for numerous Programs of Record
o Prepare documentation (artifacts and bodies of evidence) to support A&A activities
o Analyze and resolve Plan of Action & Milestones (POA&Ms)
o Conduct Annual Control Validations
• Review documentation provided by others in support of RMF authorizations
o Analyze for content / alignment with security controls
o Review for consistency within and across documents
o Review for classification markings
• Create Security Impact Assessment (SIA) Request Packages
o Analyze proposed changes to the system for security impacts
o Work with SMEs to create time-critical SIA Packages
o Route packages through the appropriate Authorizing Official/Designating Representative (AODR) for required approvals
• Write Deficiency Reports (DRs) for tasks to address identified gaps and coordinate with appropriate POCs
• Ensure the security integrity of GPS OCX systems of record by maintaining mission systems basic cyber hygiene, implementing cyber resiliency solutions, and performing associated compliance validation/verification. Required Qualifications:
• An active and transferable DoD Secret security clearance is required on Day 1. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance.
• Experience with cyber security engineering projects and programs for U.S. Government clients.
• Experience/knowledge of NIST 800-53 Risk Management Framework (RMF), NIST 800-37, Continuous Monitoring IAW NIST 800-137, Patching IAW NIST 800-40, and CNSSI 1253.
• Familiarity with Security Control Guides (SCGs), Interface Control Documents (ICDs), topology diagrams, Ports, Protocols & Services (PPS), Program Protection Implementation Plans (PPIPs) and System Security Plans (SSPs) – with the ability to review and provide technical feedback, as well as to support development of cyber implementation and process documentation.
• Ability to recognize how non-standard documentation can support the RMF package and find efficient ways to address the documentation requirements.
• Experience with submitting RMF ATO Packages.
• Must possess Security Certification in accordance with DoD 8570.01-M IAT-II (Security+ or equivalent) Compliant Certification. Additional Job Details:
Preferred Qualifications:
• An advanced degree in STEM with 8+ years of engineering experience.
• Prefer candidate possess Security Certification in accordance with DoD 8570.01-M IAT-III (CISSP or equivalent) Compliant Certification.
• Understanding of DoD RMF A&A Processes, evaluating and validating compliance with IA controls and developing and maintaining associated security documentation.
• Understanding of Cybersecurity controls applied to common Network Devices, Appliances and their respective operating systems.
• Self-Starter requiring limited direction and supervision.
• Ability to support periodic travel (less than 10%).

To apply for this job please visit www.jobg8.com.