4323 CND Engineer

OVERVIEW:

Technical Reviewers play a pivotal role in evaluating the cybersecurity posture of enterprise environments across the Intelligence Community (IC). They conduct comprehensive technical assessments and perform detailed analysis of vulnerability scans to ensure compliance with Intelligence Community Directives (ICDs), IC Technical Implementation Guides (TIGs), Security Technical Implementation Guides (STIGs), Security Requirement Guides (SRGs), and NIST 800-53 rev 5 security controls.

GENERAL DUTIES:

• Conduct comprehensive technical assessments and manual audits of enterprise network defense postures within Intelligence Community (IC) environments.
• Perform detailed analysis of vulnerability scans, intrusion detection system (IDS) logs, and other CND-related telemetry to identify security gaps and risks.
• Evaluate compliance with Intelligence Community Directives (ICDs), IC Technical Implementation Guides (TIGs), Security Technical Implementation Guides (STIGs), Security Requirement Guides (SRGs), and applicable NIST 800-53 Rev 5 controls related to CND.
• Independently execute manual checklist reviews of network defense controls and procedures; identify risks and recommend mitigations.
• Interface with site technical staff, leadership, and cross-domain teams to gather data, clarify findings, and coordinate remediation efforts.
• Participate actively in inspection planning, execution, and reporting phases with minimal oversight; produce clear, concise deliverables and presentations for technical and leadership audiences.
• Mentor and support Level 1 IDRs in CND domain tasks and inspections.
• Maintain currency on emerging threats, vulnerabilities, and best practices in network defense technologies and methodologies.
• Travel as required to conduct onsite inspections at various IC facilities. (8-12 weeks of travel avg, some international and passport required).

REQUIRED QUALIFICATIONS:

• Possess a master's degree, with 8+ years of total experience/equivalent certifications.
  • Master's degree may be substituted with a bachelor's degree and 5+ years of additional experience/equivalent certifications, for a total of 13+ years.
• Knowledge:
  • Solid understanding of network defense architectures, IDS/IPS technologies, firewalls, endpoint protection, and threat intelligence platforms.
  • Familiarity with common CND tools, intrusion detection/prevention systems, and Security Information and Event Management (SIEM) solutions.
  • Proficient with IC STIGs and SRGs related to network defense and endpoint security.
  • Working knowledge of NIST 800-53 and 800-171 controls relevant to CND.
• Skills:
  • Strong analytical skills for interpreting vulnerability data and network traffic anomalies.
  • Excellent written and verbal communication skills for reporting and briefing technical and non-technical stakeholders.
  • Ability to lead inspections and manage time efficiently to meet deadlines.
  • Capable of mentoring junior team members and facilitating collaborative problem solving.
• Abilities:
  • Lead security inspection initiatives and coordinate with multiple stakeholders across technical and management levels.
  • Translate technical security findings into actionable remediation steps and risk communication.
  • Adapt to rapidly changing environments and emerging cyber threats.
  • Work independently and as part of a multidisciplinary inspection team.
• Certifications: Obtain an IAT-III or Maintain IAT Level III Certification in compliance with DoD 8570.01-M and DoD Directive 8140 Cyberspace Workforce Management.
  • CASP+ CE
  • CCNP Security
  • CISA
  • CISSP (or Associate)
  • GCED
  • GCIH
  • CCSP

CLEARANCE:

• Top Secret Security Clearance with SCI eligibility