Overview
Skills
Job Details
Position: Cyber Security Engineer
Location: Fort Belvoir, VA
Clearance: Active Secret Clearance or higher
Qulifications:
- 6+ years of experience
- Bachelor's degree in Cybersecurity, Computer Science, or a related discipline
- IASAE II DoD Approved Baseline Certification (e.g., CISSP, CASP CE, CSSLP)
- Deep knowledge of DoD RMF, including security assessment and testing, identity and access management, and security engineering
- Proficiency in eMASS and the ability to manage security documentation and compliance records
- Strong understanding of the 8 domains of information security, including: Security & Risk Management, Security Assessment and Testing, Communications and Network Security, Software Development Security
Desired Qualifications:
- Master's degree or higher in a related field.
- SAFe Agile Practitioner certification
- AWS Certified Cloud Practitioner (CCP) to demonstrate knowledge of securing cloud environments
- Expertise in cloud security, including designing and implementing controls in AWS environments
- Experience presenting complex technical information to senior leadership.
Typical Duties:
- Lead the implementation of administrative, physical, and technical security controls across the ATIS portfolio, ensuring compliance with DoD RMF requirements
- Conduct independent security assessments and testing to identify risks, recommend mitigation strategies, and ensure continuous compliance
- Manage the Plan of Action and Milestones (POAM) process, documenting mitigations and overseeing their resolution within defined timelines
- Serve as a technical advisor for RMF controls implementation, collaborating with the Information System Security Manager (ISSM) to maintain eMASS records
- Perform Independent Verification and Validation (IV&V) testing and report on findings, including compliance with RMF and continuous monitoring requirements
- Lead risk assessments for third-party systems, evaluating vulnerabilities and proposing actionable remediation strategies
- Oversee system security scans and vulnerability assessments, ensuring compliance with DoD cybersecurity policies
- Define and maintain security standards, policies, and procedures, ensuring they are operationally effective and meet requirements
- Provide guidance on incident response investigations, identifying opportunities for improvement in incident handling and mitigation efforts
- Collaborate with stakeholders to implement and monitor security safeguards using cutting-edge technologies, such as encryption, remote access, and antivirus systems.
Oscar Associates Limited (US) is acting as an Employment Agency in relation to this vacancy.