Cyber Security Engineer

Position: Cyber Security Engineer

Location: Fort Belvoir, VA

Clearance: Active Secret Clearance or higher

Qulifications:

- 6+ years of experience

- Bachelor's degree in Cybersecurity, Computer Science, or a related discipline

- IASAE II DoD Approved Baseline Certification (e.g., CISSP, CASP CE, CSSLP)

- Deep knowledge of DoD RMF, including security assessment and testing, identity and access management, and security engineering

- Proficiency in eMASS and the ability to manage security documentation and compliance records

- Strong understanding of the 8 domains of information security, including: Security & Risk Management, Security Assessment and Testing, Communications and Network Security, Software Development Security

Desired Qualifications:

- Master's degree or higher in a related field.

- SAFe Agile Practitioner certification

- AWS Certified Cloud Practitioner (CCP) to demonstrate knowledge of securing cloud environments

- Expertise in cloud security, including designing and implementing controls in AWS environments

- Experience presenting complex technical information to senior leadership.

Typical Duties:

- Lead the implementation of administrative, physical, and technical security controls across the ATIS portfolio, ensuring compliance with DoD RMF requirements

- Conduct independent security assessments and testing to identify risks, recommend mitigation strategies, and ensure continuous compliance

- Manage the Plan of Action and Milestones (POAM) process, documenting mitigations and overseeing their resolution within defined timelines

- Serve as a technical advisor for RMF controls implementation, collaborating with the Information System Security Manager (ISSM) to maintain eMASS records

- Perform Independent Verification and Validation (IV&V) testing and report on findings, including compliance with RMF and continuous monitoring requirements

- Lead risk assessments for third-party systems, evaluating vulnerabilities and proposing actionable remediation strategies

- Oversee system security scans and vulnerability assessments, ensuring compliance with DoD cybersecurity policies

- Define and maintain security standards, policies, and procedures, ensuring they are operationally effective and meet requirements

- Provide guidance on incident response investigations, identifying opportunities for improvement in incident handling and mitigation efforts

- Collaborate with stakeholders to implement and monitor security safeguards using cutting-edge technologies, such as encryption, remote access, and antivirus systems.

Oscar Associates Limited (US) is acting as an Employment Agency in relation to this vacancy.