Cyber Security Engineer – ISSO
Location: Lompoc, CA
Required Clearance: Secret
U.S. Citizenship Mandatory: Due to our US federal government contract, candidates for this position are required to be a US Citizen and will be subject to a background investigation.
Job Description:
ITEC is looking for an individual to join the Cyber Security Engineering team for a Sr. Cyber Security Engineer ISSO position supporting the operations and maintenance of custom solutions and Assessment & Authorization (A&A) activities at government facility. The ideal candidate will have strong cyber experience across the full spectrum of cyber operations from a mission execution perspective, to include vulnerability management, compliance management, database, and enterprise information security infrastructure.
- Assessing known systems vulnerabilities and verifying system hardening and patching activities to ensure compliance with the most current applicable Security Technical Implementation Guides (STIGs)/Security Requirements Guides (SRGs) and related checklists
- Preparing documentation (artifacts and bodies of evidence) to support assessment and authorization (A&A) activities necessary to ensure system sustained Approval to Operate (ATO)
- Assisting in defining cyber requirements and design solutions, providing guidance and direction related to security technologies, performing analysis on cybersecurity-collected data and test results, identifying and implementing cybersecurity design, and preparing and maintaining engineering and security related documentation
- Performing and providing vulnerability assessment results and recommendations to the leadership.
- Ensuring the security integrity of program systems of record by maintaining mission systems basic cyber hygiene, implementing cyber resiliency solutions, and performing associated compliance validation/verification
Required Qualifications:
- Experience with performing assessments of various operating systems with DISA STIGs and SRGs
- Experience with IA vulnerability testing and related network and system test tools, e.g., ACAS and Security Content Automation Protocol (SCAP)
- An active and transferable DoD Secret security clearance is required on Day 1 and ability to obtain Top Secret/SCI clearance. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance
- Experience with network and system security administration, including operating system security configuration and account management best practices for LINUX, Microsoft, and CISCO Systems (Previous experience with RHEL 6 and 7 is highly desired)
- Understand DoD RMF Certification and Accreditation Processes, assessing and validating compliance with IA controls and developing and maintaining associated certification and accreditation documentation • Hands on experience in manual hardening and system compliance
- Must possess Security Certification in accordance with DoD 8570.01-M IAT-III or DoD 8140 (CISSP or equivalent) Compliant Certification
Preferred Qualifications:
- An advanced degree in STEM with 5+ years of engineering experience
- Familiar with NIST Risk Management Framework as described in NIST Special Publication 800-37
- Experience with information security toolsets such as LogRhythm and/or SPLUNK or other related Intrusion Detection Tools
- Self-Starter requiring limited direction and supervision
- Ability to support periodic travel (less than 10%)
