Posted today
Secret
Senior Level Career (10+ yrs experience)
Unspecified
IT - Security
San Diego, CA (On/Off-Site)
TECHEAD is celebrating over thirty-five years of incredible heritage, talent, and accomplishments! To learn more about TECHEAD, visit us at TECHEAD.com or on Glassdoor.
The Cybersecurity Engineer III will be responsible for supporting Assessment and Authorization (A&A) accreditation efforts.
This role maintains cybersecurity monitoring operations, performs triage to assess the scope and impact of incidents, identifies vulnerabilities, and recommends remediation strategies.
The role requires in-depth knowledge of the Risk Management Framework.
Key Responsibilities:
Test and apply security controls based on security categorization, the application of overlays (privacy, classified, intel, etc.) and security control tailoring (AI, NOFORN, etc.).
Conduct active and passive reconnaissance of data, with the ability to assess and author Plans of Milestones and Actions (POA&Ms) containing accurate and verifiable mitigation statements, milestone tracking, and applying to the most relevant security control.
Development of comprehensive required A&A documentation, including System Security Plan (SSP), Security Assessment Plan (SAP), Security Assessment Reports (SARs), etc.
Adherence to the eMASS scheduled tasking within the accreditation cycle, including Quarterly Independent Verification and Validation (IV&V), quarterly STIG checks, Annual Security Review (ASR), monthly POA&M updates, and resubmission for ATO, ATC, IATC and IATT as applicable.
Maintenance of DISA circuit connections (CCSDs), inheritance from accredited systems and cloud service providers, and the workflow schedule on accreditations.
Requirements:
Clearance Level:Secret
Certification IAT III
One of the following:CASP+CCNP Security CISA CISSP (or Associate) GCED GCIH Required.
Qualifications:· 10+ years of experience in cybersecurity or incident response.
Certifications preferred: Certified Information Systems Security Professional (CISSP).
Skills & Competencies:· Cybersecurity Monitoring and Incident Response· Security Testing, Auditing, and Remediation.
Data Analytics and Risk Assessment.
Proficiency with IT Security Software and Web Security Tools
TECHEAD's mission is to make our on-site associates successful by placing them in the right environment so they can grow and prosper. How we treat and respond to our clients and employees is a reflection of who we are and makes us stand out from the rest. Keeping our business focused on building and maintaining relationships with our employees and clients is the key to our success. We won't strive for anything less.
TECHEAD provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.
For more information on TECHEAD please visit www.techead.com.
No second parties will be accepted.
The Cybersecurity Engineer III will be responsible for supporting Assessment and Authorization (A&A) accreditation efforts.
This role maintains cybersecurity monitoring operations, performs triage to assess the scope and impact of incidents, identifies vulnerabilities, and recommends remediation strategies.
The role requires in-depth knowledge of the Risk Management Framework.
Key Responsibilities:
Test and apply security controls based on security categorization, the application of overlays (privacy, classified, intel, etc.) and security control tailoring (AI, NOFORN, etc.).
Conduct active and passive reconnaissance of data, with the ability to assess and author Plans of Milestones and Actions (POA&Ms) containing accurate and verifiable mitigation statements, milestone tracking, and applying to the most relevant security control.
Development of comprehensive required A&A documentation, including System Security Plan (SSP), Security Assessment Plan (SAP), Security Assessment Reports (SARs), etc.
Adherence to the eMASS scheduled tasking within the accreditation cycle, including Quarterly Independent Verification and Validation (IV&V), quarterly STIG checks, Annual Security Review (ASR), monthly POA&M updates, and resubmission for ATO, ATC, IATC and IATT as applicable.
Maintenance of DISA circuit connections (CCSDs), inheritance from accredited systems and cloud service providers, and the workflow schedule on accreditations.
Requirements:
Clearance Level:Secret
Certification IAT III
One of the following:CASP+CCNP Security CISA CISSP (or Associate) GCED GCIH Required.
Qualifications:· 10+ years of experience in cybersecurity or incident response.
Certifications preferred: Certified Information Systems Security Professional (CISSP).
Skills & Competencies:· Cybersecurity Monitoring and Incident Response· Security Testing, Auditing, and Remediation.
Data Analytics and Risk Assessment.
Proficiency with IT Security Software and Web Security Tools
TECHEAD's mission is to make our on-site associates successful by placing them in the right environment so they can grow and prosper. How we treat and respond to our clients and employees is a reflection of who we are and makes us stand out from the rest. Keeping our business focused on building and maintaining relationships with our employees and clients is the key to our success. We won't strive for anything less.
TECHEAD provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.
For more information on TECHEAD please visit www.techead.com.
No second parties will be accepted.
group id: 10202776
