Oct 28
Top Secret/SCI
Mid Level Career (5+ yrs experience)
$156,000 - $180,000
CI Polygraph
IT - Security
Reston, VA (On/Off-Site)
Title: Sr. Cybersecurity Engineer
Location: Reston, Virginia (ON-SITE)
Clearance REQUIRED: TS/SCI w/ CI Polygraph
Certification REQUIRED: CISSP or equivalent certification to support DoD 8140 requirements
Requirements:
-Active TS/SCI clearance with CI poly (REQUIRED)
-A minimum of 4-7 years of experience as a Cyber Security Engineer with an emphasis on automation and platform engineering providing subject matter expertise to the team and the customer
-3 years of experience with designing and building implementations of required security controls; and implementing continuous monitoring and auditing of solutions for compliance with security controls.
-Strong experience in implementing security controls from government regulatory frameworks and security standards (e.g., NIST SP 800-53, RMF, ICD 503, FISMA, FedRAMP).
-Experience with researching, designing, testing, evaluating and implementing technologies such as Infrastructure as Code (IaC), containerization, K8, and CI/CD Automation
-Experience with Source Code repositories and CI/CD pipeline solutions such as Bitbucket, and GitHub
-Experience with container orchestration tools (OpenShift preferred)
-Demonstrated and repeat experience implementing controls for cloud, container, and/or DevSecOps services and solutions from IL5 to IL6+ on NIPR, SIPR, and JWICS.
-Expert-level skills in specifying and implementing log collection into tools such as Splunk, and performing querying and analysis of aggregated logs to identify security-relevant anomalies or risks
-Expert proficiency in incident response, security incident handling, and forensic analysis techniques.
-Expertise with security tools such as Fortify, Acunetix, and Prisma Cloud
-Experience performing periodic (Daily, Weekly, Monthly) security check to support continuous monitoring aligned with the NIST Risk Management Framework
-Experience applying Security Technical Implementation Guide (STIG) requirements to harden information systems (Linux Preferred)
-Effective communication skills, with the ability to convey complex technical concepts to both technical and non-technical stakeholders.
-CISSP or equivalent certification to support DoD 8140 requirements
Responsibilities:
-Design, implement, and manage security solutions, including firewalls, intrusion detection/prevention systems, endpoint protection, and encryption mechanisms to ensure the organization's networks and systems remain secure.
-Conduct regular security assessments to identify vulnerabilities and weaknesses in systems, networks, and applications.
-Develop and implement incident response plans to effectively address security breaches, incidents, and breaches.
-Collaborate with cross-functional teams to establish and enforce security policies, standards, and procedures.
-Monitor network traffic, system logs, and security alerts to detect and respond to potential security incidents.
-Analyze and investigate anomalies and security breaches, taking appropriate actions to mitigate risks.
-Work closely with cross-functional teams, including IT, software development, and compliance, to integrate security into all phases of the development lifecycle and ensure a comprehensive approach to cybersecurity.
-Maintain thorough and accurate documentation of security processes, procedures, and configurations. -Prepare detailed reports on security findings, incidents, and actions taken.
Job Description:
As Sr. Cybersecurity Engineer, you’ll will play a critical role in safeguarding digital assets by designing, implementing, and maintaining robust cybersecurity infrastructure. You will work collaboratively with cross-functional teams to identify vulnerabilities, develop solutions, and ensure compliance with security protocols and industry standards. Staying informed about emerging trends and threats in the cybersecurity landscape, you will proactively enhance defenses through innovative tools and methodologies. Additionally, you will conduct risk assessments, implement security controls, and support incident response efforts to minimize risks and maintain the integrity of our systems and data.
• This position requires an active DoD Clearance (Secret, Top Secret, Top Secret/SCI) or the ability to be obtain an (Interim Secret, Interim Top Secret)
• Because an active or interim DoD clearance is required, U.S. Citizenship is required
o Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:
Medical, dental & vision
Critical Illness, Accident, and Hospital
401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available
Life Insurance (Voluntary Life & AD&D for the employee and dependents)
Short and long-term disability
Health Spending Account (HSA)
Transportation benefits
Employee Assistance Program
Time Off/Leave (PTO, Vacation or Sick Leave)
Location: Reston, Virginia (ON-SITE)
Clearance REQUIRED: TS/SCI w/ CI Polygraph
Certification REQUIRED: CISSP or equivalent certification to support DoD 8140 requirements
Requirements:
-Active TS/SCI clearance with CI poly (REQUIRED)
-A minimum of 4-7 years of experience as a Cyber Security Engineer with an emphasis on automation and platform engineering providing subject matter expertise to the team and the customer
-3 years of experience with designing and building implementations of required security controls; and implementing continuous monitoring and auditing of solutions for compliance with security controls.
-Strong experience in implementing security controls from government regulatory frameworks and security standards (e.g., NIST SP 800-53, RMF, ICD 503, FISMA, FedRAMP).
-Experience with researching, designing, testing, evaluating and implementing technologies such as Infrastructure as Code (IaC), containerization, K8, and CI/CD Automation
-Experience with Source Code repositories and CI/CD pipeline solutions such as Bitbucket, and GitHub
-Experience with container orchestration tools (OpenShift preferred)
-Demonstrated and repeat experience implementing controls for cloud, container, and/or DevSecOps services and solutions from IL5 to IL6+ on NIPR, SIPR, and JWICS.
-Expert-level skills in specifying and implementing log collection into tools such as Splunk, and performing querying and analysis of aggregated logs to identify security-relevant anomalies or risks
-Expert proficiency in incident response, security incident handling, and forensic analysis techniques.
-Expertise with security tools such as Fortify, Acunetix, and Prisma Cloud
-Experience performing periodic (Daily, Weekly, Monthly) security check to support continuous monitoring aligned with the NIST Risk Management Framework
-Experience applying Security Technical Implementation Guide (STIG) requirements to harden information systems (Linux Preferred)
-Effective communication skills, with the ability to convey complex technical concepts to both technical and non-technical stakeholders.
-CISSP or equivalent certification to support DoD 8140 requirements
Responsibilities:
-Design, implement, and manage security solutions, including firewalls, intrusion detection/prevention systems, endpoint protection, and encryption mechanisms to ensure the organization's networks and systems remain secure.
-Conduct regular security assessments to identify vulnerabilities and weaknesses in systems, networks, and applications.
-Develop and implement incident response plans to effectively address security breaches, incidents, and breaches.
-Collaborate with cross-functional teams to establish and enforce security policies, standards, and procedures.
-Monitor network traffic, system logs, and security alerts to detect and respond to potential security incidents.
-Analyze and investigate anomalies and security breaches, taking appropriate actions to mitigate risks.
-Work closely with cross-functional teams, including IT, software development, and compliance, to integrate security into all phases of the development lifecycle and ensure a comprehensive approach to cybersecurity.
-Maintain thorough and accurate documentation of security processes, procedures, and configurations. -Prepare detailed reports on security findings, incidents, and actions taken.
Job Description:
As Sr. Cybersecurity Engineer, you’ll will play a critical role in safeguarding digital assets by designing, implementing, and maintaining robust cybersecurity infrastructure. You will work collaboratively with cross-functional teams to identify vulnerabilities, develop solutions, and ensure compliance with security protocols and industry standards. Staying informed about emerging trends and threats in the cybersecurity landscape, you will proactively enhance defenses through innovative tools and methodologies. Additionally, you will conduct risk assessments, implement security controls, and support incident response efforts to minimize risks and maintain the integrity of our systems and data.
• This position requires an active DoD Clearance (Secret, Top Secret, Top Secret/SCI) or the ability to be obtain an (Interim Secret, Interim Top Secret)
• Because an active or interim DoD clearance is required, U.S. Citizenship is required
o Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:
Medical, dental & vision
Critical Illness, Accident, and Hospital
401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available
Life Insurance (Voluntary Life & AD&D for the employee and dependents)
Short and long-term disability
Health Spending Account (HSA)
Transportation benefits
Employee Assistance Program
Time Off/Leave (PTO, Vacation or Sick Leave)
group id: 10105424
Accelerating IT transformation in the public sector
