Cyber Security Engineer

Job Summary:

Under the DES contract, we will be at the forefront of planning and designing the Department of Defense Network (DoDNet). We are seeking talented individuals across various IT disciplines to support the discovery, optimization, and transformation of information technology into a centralized, operational enterprise. Your expertise will be instrumental in creating a cohesive combat support capability that empowers our warfighters and ensures their success on the battlefield.

Job Duties and Responsibilities:

PRIMARY RESPONSIBILITIES: •Discover and document cybersecurity solutions and related tools implementations inclient environments to aid in service delivery and/or migration planning and architectures for clients.•Evaluate applicable information assurance/security standards and procedures in client environments.•Support Authorizing Official (AO) actions by collecting, reviewing, and evaluating information that includes supporting documents and artifacts in accordance with RMF as defined in NIST 800-37 revision 2 and related agency specific RMF requirements.•Discover and document deployed cybersecurity solutions, processes, and procedures related to operation and maintenance of those solutions.•Review and assess integration and implementation of Asset Management, Identity, Access Control Systems/Solutions, Compliance Monitoring and Remediation, Multi-Factor Authentication (MFA) and/or single sign-on (SSO) solutions in addition to other cybersecurity and/or cyber operations tools and solutions IAW DoDI 8520.02, DoDI 8520.03, and other applicable policies and regulations.•Review and assess security architectures and designs and related engineering documentation.•Perform gap analysis and use other analytic techniques to support recommendations regarding operations, maintenance, service delivery capability, and/or the migration feasibility of existing security architectures, designs, solutions and systems

Job Requirements (Education/Skills/Experience):

BASIC QUALIFICATIONS:Bachelor’s degree and 12 years of related experience; additional relevant experience may be substituted for education.•Must have DoD 8570 IAT III certification (CASP ).•8 years hands-on experience designing or implementing security solutions, including all related documentation and artifacts.•Analytical ability, problem-solving skills, and ability to break down complex problems into actionable steps.•Extensive experience in design and deployment of enterprise security tools and supporting architectures. Experience must include a wide range of work in creating diagrams and documentation covering all components that comprise IT systems, including, but not limited to, network topology and related systems architecture.•Strong knowledge and hands-on experience in secure enterprise architecture engineering and related operational support, with specializations in various combinations of tools and technologies within the following subset: Firewall/VPN, ACAS, HBSS, C2C, IAM, NDR, EDR, SIEM/SOAR, AI/ML, or other cybersecurity tools and resultant applications. Expertise with other cybersecurity solutions and tools will be also be considered, as appropriate.•Experience selecting effective methods, techniques, and evaluation criteria to achieve desired outcomes.•Experience developing solution designs, implementation plans, deployment plans, migration plans, and DR/COOP plans.•Comprehension of federal cybersecurity guidance such as FISMA NIST SP 800-37 - Guide for Applying the Risk Management Framework to Federal Information Systems: ASecurity Life Cycle Approach and NIST 800-137 - Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations.•Experience reviewing and/or developing detailed technical documentation, architectures, engineering diagrams, technical implementation plans, migration plans, cybersecurity vulnerability mitigation plans, roadmaps, and technical standards for the federal IT enterprise environment

•Experience driving technical projects to completion and working with a multi-discipline, cross-functional team of professionals.•Strong Systems and/or Network Security Engineering background.•Experience building vulnerability scanning, endpoint security, network security, and SIEM/SOAR solutions in federal or large commercial enterprise environments.•Strong technical project leadership skills•Additional certifications demonstrating cybersecurity/technical mastery.•Certified Information Systems Security Professional (CISSP)

This contractor and subcontractor shall abide by the requirements of 41 CFR 60–1.4(a), 60–300.5(a) and 60–741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.