Cybersecurity Engineer

Description

The candidate will provide program management, systems engineering, cybersecurity, technical support, system implementation, training and integration, test & evaluation and lifecycle logistics support services to Naval Information Warfare Center Atlantic (NIWC Atlantic) and the SCI Comms project.

The Security Engineer will ensure quality in custom Signals Intelligence (SIGINT) capabilities developed for the USMC; and will provide engineering support for development and testing as required by the customer; which may include but not be limited to:

• Perform Information Assurance Vulnerability Alert (IAVA), Information Assurance Vulnerability Alert Bulletin (IAVB), Security Technical Implementation Guidelines (STIG) and Command Task Orders (CTO) patching and software updates into the system baseline. And, provide a baseline configuration report following patches and software updates.
• Perform all facets of cybersecurity including documenting integrated system architecture products (e.g. System Views ); developing Information Support Plans (ISPs), System Security Authorization Agreements (SSAAs) and Clinger-Cohen Act documentation; supporting DoD Interoperability Communications Exercise
• Provide support to NIWC Atlantic's Cybersecurity Lead on Risk Management Framework (RMF) packages and requisite authorization boundaries.
• Provide support for development and review of Cybersecurity practices associated with program packages, prior to submission to the Security Control Assessor (SCA) and AO.
• Prepare audit reports on the completeness of these packages and identify problems, trends, corrective actions and issues related to non-compliance with policy.
• Attend/participate in the SCI COMMS FoS Team Meetings and WIPTs noting action items and resolution; and produce Cybersecurity metrics, Assessment & Authorization (A&A) status reports.
• Research and develop white papers identifying government, contractor, vendor roles as they pertain to the successful execution of Cybersecurity directives, including developing Standard Operating Procedures (SOPs) and training for Cybersecurity and C&A policy. Generate documentation in support of ICD 503 processes and identify, receive, resolve action items and support (JITC) certifications.
• Review for applicability, monitoring, and impacts of all IAVAs, IAVBs, STIGs and CTOs; perform Cybersecurity Scans for SCI COMMS FoS supporting programs, test security controls & conduct assessments, and validate and mitigate system vulnerabilities.
• Ensure Cybersecurity documentation/testing aligns with acquisition strategy, System Integration Test (SIT), Developmental (DT) and Operational Testing (OT), verification activities (Test Planning, Coordination, Execution, Evaluation and Reporting), development of Test Documentation (Plans, Procedures, Reports, Estimates, Memoranda and TIRs), system testing of the SCI COMMS Family of Systems (FoS), and support activities for software replacement to operational systems and management of the Satellite Access Requests (SARs) required for RF testing.
• Communicate and collaborate well with team members.
• Work with developers and designers to understand design decisions.
• Talk with users and leadership to understand the exact need and expected functionality.
• Perform problem solving activities with developers to understand what is causing the potential issue.

Required Skills

• BS degree in Engineering or Physical Science preferred.
• Six years of experience in relevant technical field, to include: Technology Analysis and Assessment, Design Definition, Development of Systems Specification, Systems Analysis, Systems Architecture, Systems/Equipment Integration, Test & Evaluation Criteria, and Logistics support of C4ISR requirements. Three (3) years of technical experience in support of task specific project. Note: Experience may be concurrent.
• Experience with portable, automated, Signals Intelligence (SIGINT) and Electronic Warfare (EW) processing, analysis, and reporting capabilities; preferably with US Navy and/or USMC capabilities.
• Experience with the technical and operational functions of other SIGINT/EW assets and providing communications connectivity for data exchange with these systems..
• Experience with open systems integration, service-oriented architectures, and systems of systems.
• Knowledge of Agile development methodology; JIRA; UX design and development.
• Knowledge of microservices architectures.
• Complex problem-solving skills and detail oriented.

About acuCyber

acuCyber is a small business headquartered in Charleston, SC specializing in assisting clients with their most challenging needs around cyber security, compliance, risk management, IT, security engineering and program management.

acuCyber brings experience across multiple sectors supporting a multitude of customers. We bring value-added, effective, precise support to ensure your cybersecurity and IT needs are met. Your mission becomes our mission. Securely.