You will work in a team environment alongside other cybersecurity engineers and Risk Management Framework (RMF) analysts responsible for supporting Information System Security Engineering efforts. General responsibilities include but are Not Limited to: Working closely and supporting team members, vendors, and government customers Implementing DoD Security Technical Implementation Guides (STIGs) on traditional Information Technology (IT) and Operational Technology (OT) systems Assisting in the d... more details
Position Summary You will work in a team environment alongside other cybersecurity engineers and Risk Management Framework (RMF) analysts responsible for supporting Information System Security Engineering efforts. General responsibilities include but are Not Limited to:
Working closely and supporting team members, vendors, and government customers
Implementing DoD Security Technical Implementation Guides (STIGs) on traditional Information Technology (IT) and Operational Technology (OT) systems
Assisting in the development and verification of documentation necessary to complete the DoD RMF assessment and authorization process
Conducting ICS/SCADA system inventories following DoD guidance
Conducting vulnerability scanning and document system vulnerabilities
Supporting ISO standardization and Quality inspections
Participating in continuous improvement of organizational cybersecurity posture
Position / Candidate Requirements
Active Secret Clearance and the Ability to Obtain a Top-Secret Clearance.
Education:
5-7 Years of Experience with a Master's Degree in Information Technology, Risk Management, Cybersecurity
7-9 Years of Experience with a Bachelor's Degree in Information Technology, Risk Management, Cybersecurity
10-12 Years of Experience with an Associate's Degree in Information Technology, Risk Management, Cybersecurity
13-15 Years with a High School Diploma
Required Progressive Experience:
Working with industry and government agencies on the design of platforms and integrated systems
Working on government and/commercial projects implementing cybersecurity requirements in a variety of industrial control systems (e.g., building management, electronic security, fire alarm/mass notification, electrical distribution, power management, etc.)
Proficiency with ACAS and HBSS and mitigation strategies
Developing policies and procedures to ensure information systems reliability and accessibility and to prevent and defend against unauthorized access to systems, networks, and data
Assessment, mitigation, and closure of network vulnerabilities and vulnerability management
eMASS
Establishing, managing, and tracking of Plan of Action & Milestones (POA&M)
Applying STIGs to servers, databases, applications, and other hardware
Security Readiness Review (SRR) Tools (scripts and ACAS)
Ability to identify, maintain, and troubleshoot control network components
Excellent understanding of the DoD RMF lifecycle and NIST 800-53 controls implementation
Awareness of NIST Special Publication 800-82, Guide to Industrial Control Systems (ICS) Security and UFC 4-010-06 Unified Facilities Criteria (UFC) Cybersecurity of Facility
Working knowledge of operational control systems and implementing a variety of security assessment tools
Working knowledge of other operational control systems
Familiarity with DoDIN CCRI/CCORI and CYBERCOM TASKORDS
Familiarity with various industry products
One of the Required Certifications:
CASP CE
CISSP
CISSP – ISSAP
CISSP - ISSEP
CSSLP
CISA
CISM
Strong Oral, Written and Presentation Skills with the ability and experience communicating directly with Customers
Demonstrated background working with multidisciplinary teams
Demonstrated time management and organization skills to meet deadlines and quality objectives
Strong MS Excel, Word, PowerPoint, AUTOCAD, Cameo and Visio Skills is a plus.
Ability to travel domestically and internationally up to 25% of the time.
Abilities:
Exposure to computer screens for an extended period of time.
Sitting for extended periods of time.
Reach by extending hands or arms in any direction.
Have finger dexterity in order to manipulate objects with fingers rather than whole hands or arms, for example, using a keyboard.
Listen to and understand information and ideas presented through spoken words and sentences.
Communicate information and ideas in speaking so others will understand.
Read and understand information and ideas presented in writing.
Apply general rules to specific problems to produce answers that make sense.
Identify and understand the speech of another person.
Job Abstracts is an independent Job Search Engine. Job Abstracts is not an agent or representative and is not endorsed, sponsored or affiliated with any employer. Job Abstracts uses proprietary technology to keep the availability and accuracy of its job listings and their details. All trademarks, service marks, logos, domain names, and job descriptions are the property of their respective holder. Job Abstracts does not have its members apply for a job on the jobabstracts.com website. Additionally, Job Abstracts may provide a list of third-party job listings that may not be affiliated with any employer. Please make sure you understand and agree to the website's Terms & Conditions and Privacy Policies you are applying on as they may differ from ours and are not in our control.
Any time you conduct a search, the system shows you job matches, ranked by their Relevance Score (RS).
The score is calculated by a proprietary algorithm that uses Intelligent Machine Learning.
The Relevance Score tells you how well the job opportunity matches your search term or terms.
When not logged in, the system is limited to one search term. Scores for single term matches are usually lower.
When you register, log in, and set up multiple terms prioritized by importance, the jobs found for you will receive a much higher Relevance Score.