CyberSecurity Engineer with Security Clearance - Aurora, CO, United States - The Computer Merchant, Ltd.

    The Computer Merchant, Ltd.
    The Computer Merchant, Ltd. Aurora, CO, United States

    2 weeks ago

    Default job background
    Technology / Internet
    Description

    JOB TITLE:

    PRINCIPAL CYBERSECURITY ENGINEER

    RATE RANGE:
    $95-100/hr


    LOCATION:
    AURORA, CO

    JOB#:

    REQUIRED SKILLS

    • An active and transferable DoD Secret security clearance is required on Day 1
    • Experience with cyber security engineering projects and programs for U.S
    Government clients.


    • Experience/knowledge of NIST Risk Management Framework (RMF), NIST 800-37, Continuous Monitoring IAW NIST , Patching IAW NIST 800-40, and CNSSI 1253.
    • Familiarity with Security Control Guides (SCGs), Interface Control Documents (ICDs), topology diagrams, Ports, Protocols & Services (PPS), Program Protection Implementation Plans (PPIPs) and System Security Plans (SSPs) – with the ability to review and provide technical feedback, as well as to support development of cyber implementation and process documentation

    Job Summary:
    Principal Cybersecurity Engineer position supporting the operations and maintenance of custom solutions and Assessment & Authorization (A&A) activities.
    The ideal candidate will have a strong cyber experience across the full spectrum of cyber operations from a mission execution perspective, to include vulnerability management, compliance management, database, and enterprise information security infrastructure

    Position Type:

    Onsite Responsibilities To Anticipate:

    • Develop and maintain security documentation
    • Coordinate packages for Information Risk & Assessment Management Program (IRAMP) and Risk Management Framework (RMF) authorizations
    • Maintain Approval to Operate (ATO) for numerous Programs of Record
    o Prepare documentation (artifacts and bodies of evidence) to support A&A activities
    o Analyze and resolve Plan of Action & Milestones (POA&Ms)
    o Conduct Annual Control Validations


    • Review documentation provided by others in support of RMF authorizations
    o Analyze for content / alignment with security controls
    o Review for consistency within and across documents
    o Review for classification markings


    • Create Security Impact Assessment (SIA) Request Packages
    o Analyze proposed changes to the system for security impacts
    o Work with SMEs to create time-critical SIA Packages
    o Route packages through the appropriate Authorizing Official/Designating Representative (AODR) for required approvals


    • Write Deficiency Reports (DRs) for tasks to address identified gaps and coordinate with appropriate POCs
    • Ensure the security integrity of GPS OCX systems of record by maintaining mission systems basic cyber hygiene, implementing cyber resiliency solutions, and performing associated compliance validation/verification

    Required Qualifications:

    • An active and transferable DoD Secret security clearance is required on Day 1
    U.S
    citizenship is required, as only U.S
    citizens are eligible for a security clearance.


    • Experience with cyber security engineering projects and programs for U.S
    Government clients.


    • Experience/knowledge of NIST Risk Management Framework (RMF), NIST 800-37, Continuous Monitoring IAW NIST , Patching IAW NIST 800-40, and CNSSI 1253.
    • Familiarity with Security Control Guides (SCGs), Interface Control Documents (ICDs), topology diagrams, Ports, Protocols & Services (PPS), Program Protection Implementation Plans (PPIPs) and System Security Plans (SSPs) – with the ability to review and provide technical feedback, as well as to support development of cyber implementation and process documentation
    .


    • Ability to recognize how non-standard documentation can support the RMF package and find efficient ways to address the documentation requirements.
    • Experience with submitting RMF ATO Packages.
    • Must possess Security Certification in accordance with DoD M IAT-II (Security+ or equivalent) Compliant Certification

    Additional Job Details:

    Preferred Qualifications:

    • An advanced degree in STEM with 8+ years of engineering experience.
    • Prefer candidate possess Security Certification in accordance with DoD M IAT-III (CISSP or equivalent) Compliant Certification.
    • Understanding of DoD RMF A&A Processes, evaluating and validating compliance with IA controls and developing and maintaining associated security documentation.
    • Understanding of Cybersecurity controls applied to common Network Devices, Appliances and their respective operating systems.
    • Self-Starter requiring limited direction and supervision.
    • Ability to support periodic travel (less than 10%).