This job has expired.
Job Title: Cyber Security Engineer
Duration: 09 Months Temp to Hire
Physical address of worksite: Camden, NJ 08103
Job Description:
This position has technical responsibility for cyber security of projects from conception to delivery and maintenance for computer based applications used primarily in United States Military applications.
Duties and Responsibilities
• Serve as Cybersecurity Subject Matter Expert (SME) for project teams
• Work with customers, management, and project teams to gather, comprehend, and clearly articulate security-related requirements, success criteria, and metrics
• Develop DOD security authorization package documentation including Platform IT (PIT) Designation requests, PIT Risk Acceptance (PRA), and Authority to Operate (ATO) under RMF for DOD projects
• Develop supporting documentation including System Security Plans (SSP), POA&Ms, Ports, Protocols, and Services (PPS) reports, and artifact collections such as scan reports and checklists
• Review and assess compliance of L3 development projects against RMF security controls, assessing and documenting applicability/non-applicability, how the controls have been implemented, and risk mitigations
• Use automated scanning tools (i.e., Nessus and DISA SCC tool) and perform manual checks to assess security baseline of L3 developed projects against relevant DISA STIGs and SRGs
• Configure and apply antivirus tools to L3 developed systems as required
• Work with development teams to assess and remediate vulnerability findings when possible by applying patches and configuration settings
• Document open vulnerabilities (STIGs and patches) with justifications and/or remediation recommendations and create, track, and report POA&Ms to resolution
• Serve as liaison between L3 project teams and partner, customer, and DOD security personnel to clarify security requirements, report progress, and resolve issues
• Estimate and plan work efforts, evaluate risks, and develop and report key metrics for reporting to management
• Monitor, evaluate, and continuously improve L3 project teams' security efforts by being a trusted advisor, facilitator, and problem solver
• Rigorously document work procedures and train others to perform tasks as required
• Share best practices and identify opportunities to implement improvements to company engineering organization cybersecurity-related work instructions and project team procedures
• Continuously monitor developments in DOD cybersecurity policies and procedures
Education and Experience
• Bachelor's degree in Engineering, Computer Science, IT, or Cybersecurity
• 4 or more years of experience in cybersecurity related work
• Prior experience with vulnerability scanning and antivirus tools including Tenable Nessus, STIG viewer (and STIGs), DISA SCC tool and benchmarks, and McAfee
• Prior hands-on experience imaging, installing, patching, and configuring physical and virtual Windows and Linux operating systems and network devices
• Knowledge of DOD/DON cybersecurity compliance processes including DoD 8500.01, DODI 8510.01 / RMF Framework and controls, OPNAVINST 5239.1D, and DISA STIGs / SRGs
• Prior experience developing DOD/DON compliance documentation including PIT Designation, PRA, System Security Plans (SSP), and POA&Ms
Skills, Knowledge and Conditions
• Excellent computer skills with strong proficiency in Microsoft Windows™, Microsoft Office™ package (Outlook®, Excel®, Word®, PowerPoint®, Project®, Access®, Visio®). Working knowledge of project management systems and AutoCAD Electrical.
• Works well individually or in a group setting
• Effectively works well with other employees
• Ability to work under pressure and time constraints
• Willingness to travel (15%)
• Must be able to obtain a security clearance, if required
Subscribe to job alerts and upload your resume!
*By registering with our site, you agree to our
Terms and Privacy Policy.
|
|
|