Cyber Security Engineer (DoD)

Adobe AIR, Automation, CISSP, CISM, ATO, DoD, ISSO, Information systems, Networking, Security analysis, Security clearance, SCAP
Full Time
$110,000 - $120,000
Work from home available

Job Description

The Senior Cyber Security Information System Security Engineer (ISSE) will serve as a Subject Matter Expert (SME) for Department of Defense (DoD) Assessment and Authorization (A&A) support in alignment with the National Institute for Standards and Technologies (NIST) Risk Management Framework (RMF); system categorization, security control assessment, authorization and monitoring through all phases of the system life cycle. Extensive experience reviewing Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs) and validating security controls is required. The position will work with the Air Force Research Laboratory Phillips Research Site (AFRL PRS) Cyber Security team of ISSMs, ISSE's, ISSO's, and the local Security Control Assessor Representative (SCAR) who provide Cyber/IA SME support to AFRL PRS.

Work Location: Kirtland AFB, Albuquerque, NM

Essential Skills

Assessment and Authorization experience in alignment with the DoD Risk Management Framework (RMF) process implementation, assessment and documentation
Familiar with Authority to Operate (ATO) requirements, System Security Plans (SSP), Security Assessment Reports (SAR), Plan of Action and Milestones (POA&M) and related documentation
Experience with DoD cyber security applications (ACAS/Nessus, HBSS, SCC)
Familiarity with the DISA Command Cyber Readiness Inspection (CCRI) and all corresponding requirements of a full inspection
Familiar with security control assessments, STIG Viewer and Secure Content Automation Protocol (SCAP) checklists or benchmarks
Understand USCYBERCOM Computer Network Defense (CND) Directives, Task Orders and Information Assurance Vulnerability Management (IAVM) requirements
Capable of conducting system risk and impact assessments (SIAs)
Familiar with Ports, Protocols, and Services Management (PPSM) and registration requirements
Technical knowledge of multiple operating systems (Windows, UNIX), web servers-applications, databases and network appliances
Understanding of Blue/Red team penetration testing techniques. Certified Ethical Hacker training/certification a plus
Proficient at delivering situational awareness reports depicting project status summaries and participating in configuration control boards or related cyber working groups
Strong verbal and written communication skills, with the ability to work autonomously on multiple projects
Education/Certification Requirements

Bachelor's degree in a Business Management or MIS related field preferred, or experience in lieu of degree
DoD 8570 IAM-II (CAP, CASP, CISM, CISSP or GSLC) certification is required prior to start date
Required Qualifications

Minimum 3 years of Assessment and Authorization (A&A) experience, including recent experience supporting information assurance, cybersecurity, and risk management directives in alignment with Department of Defense Instructions (DoDI), Federal Information Processing Standards (FIPS), Committee on National Security Systems (CNSSI) Instructions and NIST Special Publications.
Must possess refined critical thinking skills, should be a self-starter, and be able to manage activities of other team members.
Must be reliable and tactful with the ability to multi-task, prioritize, and remain flexible.
Clearance Requirements

Active SECRET security clearance, Top Secret a plus but not required.

For immediate consideration please contact Kavita and apply via preferred email method.

Dice Id : 90593268
Position Id : 6639710
Originally Posted : 2 months ago
Have a Job? Post it