Posted today
Secret
$90,000 - $120,000
Unspecified
IT - Security
San Diego, CA (On-Site/Office)
Work Location: Point Loma, San Diego, CA.
Security Clearance: DoD Secret
Salary: $90,000 to $120,000
Requisition ID: C-CBISEA-CSE-1
Job Summary:
The Cybersecurity Engineer supports RMF accreditation and compliance activities by conducting vulnerability assessments, evaluating static and dynamic scans, performing STIG validations, and maintaining POA&Ms to ensure secure system operations. The role prepares and submits ACAS, STIG/SCAP, and related security data for Security Assessment Reports (SARs) while using eMASS and VRAM to manage system documentation and cyber directive
compliance. The analyst also contributes to vulnerability management, scan configuration, and mitigation efforts, with preferred experience in DoD/Navy C4I environments and DevSecOps practices
Position Responsibilities
Preferred Experience
Required Experience
Required Certifications
Security Clearance: DoD Secret
Salary: $90,000 to $120,000
Requisition ID: C-CBISEA-CSE-1
Job Summary:
The Cybersecurity Engineer supports RMF accreditation and compliance activities by conducting vulnerability assessments, evaluating static and dynamic scans, performing STIG validations, and maintaining POA&Ms to ensure secure system operations. The role prepares and submits ACAS, STIG/SCAP, and related security data for Security Assessment Reports (SARs) while using eMASS and VRAM to manage system documentation and cyber directive
compliance. The analyst also contributes to vulnerability management, scan configuration, and mitigation efforts, with preferred experience in DoD/Navy C4I environments and DevSecOps practices
Position Responsibilities
- Conduct vulnerability assessments, continuous monitoring, and cyber compliance checks.
- Analyze static and dynamic scan results to validate cybersecurity controls.
- Perform STIG checks, SCAP assessments, and generate/update POA&Ms.
- Prepare and submit ACAS scan data, STIG/SCAP outputs, and test reports for SAR development.
- Maintain system records, packages, and workflows within eMASS and VRAM.
- Support RMF and RAISED processes across system lifecycle phases.
- Configure system scans, evaluate findings, and assist with mitigation efforts.
- Collaborate with engineering and technical teams to address deficiencies and improve security posture.
- Provide support for vulnerability management operations within DoD/Navy C4I systems (preferred).
- Apply DevSecOps-aligned security engineering practices (preferred).
Preferred Experience
- Experience supporting DoD and Navy C4I systems and related cybersecurity requirements.
- Experience delivering technical and operational support for vulnerability management, including scan configuration, analysis of findings, and remediation planning.
- Familiarity with implementing secure software and systems engineering practices within a DevSecOps environment.
- Skilled in deploying and operating ACAS Security Center and Nessus scanners, including customization of vulnerability and compliance reports.
- Cyber Security Work Force (CSWF) Certified
Required Experience
- Demonstrated experience supporting cybersecurity processes, including vulnerability assessments, continuous monitoring, and development of authorization artifacts to maintain system and software compliance.
- Proficiency analyzing static and dynamic scan results to evaluate code, validate cybersecurity controls, perform STIG checks, and develop POA&Ms.
- Hands-on experience executing and submitting ACAS scans, STIG/SCAP results, test reports, and security testing data to support creation of Security Assessment Reports (SARs).
- Experience using Enterprise Mission Assurance Support Service (eMASS) and VRAM for system documentation, workflow management, and cyber directive compliance.
- Working knowledge of RMF and RAISED cybersecurity processes, frameworks, and lifecycle activities
Required Certifications
- Active Security+ Certification
- Active Operating System certification (e.g.: AWS, Windows, Linux)
group id: 90813614
