Engineer SME

  • Springfield, VA
  • Posted 1 day ago | Updated 9 hours ago

Overview

Hybrid
Depends on Experience
Full Time

Skills

Requires strong background in cybersecurity
continuous monitoring
data analytics
analysis
parsing
reporting
ability to automate
generate scripts
MS SQL
Splunk
Elastic
Ability to build dashboards
understand Risk calculation
quantification strategy

Job Details

Data Analytics & Management Support

  • Support R&D of data analytics and management technologies for large-scale data collection, analysis, parsing, and reporting.
  • Assist DHS CISOD and Component FISMA Reporting teams with data-driven solutions.

Technical & Installation Support

  • Provide installation and technical support for DHS CISOD and component systems.
  • Troubleshoot data feed submissions and interface issues with the DHS FISMA Compliance Tool suite.

Continuous Monitoring & Automation

  • Maintain and continue to improve Information Security Continuous Monitoring (ISCM) waiver process by tracking, adding new systems and updating existing systems using component supplied information, system security plans and continuous monitoring data.
  • Develop, maintain, and generate weekly POAM Dashboards
  • Develop metric reports to evaluate DHS Enterprise POA&M review progress
  • Develop metrics and recommend improvements for tracking progress on remediation of information security weaknesses.
  • Define Key Performance Indicators (KPI) to track progress across HQ components and identify key areas of improvements across HQ components
  • Develop procedures for continuous monitoring of devices (e.g., smartphones, tablets, emerging mobile tech).

Tool Enhancement and Risk Management Support

  • Generate scripts and queries using MS SQL, Splunk, and Elastic for monitoring and reporting.
  • Develop, document and integrate an improvised Risk calculation and quantification strategy to be implemented in the FISMA Compliance Tool.
  • Document, define and develop a risk rating for government approval for calculating and quantifying risk.
  • Integrate risk dashboards as part of Security Authorization processes for HQ components to manage their risk properly.
  • Support ongoing and future enhancements and transitions of DHS CISOD tools and requirements.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.