Cybersecurity Engineer to support System Test and Resource Management (STaRS) on the Integrated Research and Development for Enterprise Solutions (IRES) contract at Schriever AFB, CO. Primary focus is supporting the National Institute of Standards and Technology (NIST)/Department of Defense (DoD) Risk Management Framework (RMF) process in all its phases. Apply system security engineering principles to provide realistic solutions designed to enhance security posture of STaRS infrastructure. Identify threats and develop appropriate protection measures, review system changes for security implications and recommend improvements, research and draft Cybersecurity policy and procedure information in accordance with NIST and DoD RMF and additional DoD and organizational guidance. Provide top tier support to the Cybersecurity operations staff for resolving complex Cybersecurity issues, including but not limited to MacAfee Host-Based Security System (HBSS) and Multifactor/Public Key Infrastructure (MFA/PKI) implementation support, DoD Cyber Tasking Orders (CTOs), auditing, and incident response. Utilize Assured Compliance Assessment Solution (ACAS) and related tools to discover system vulnerabilities to develop and maintain a system-level Plan of Actions and Milestones (POA&M) via the Enterprise Mission Assurance Support Service (eMASS). Successful candidate will be able to evaluate different network and enclave configurations with respect to Defense Information Systems Agency (DISA) Secure Technical Implementation Guides (STIG), NIST 800-53 Security Controls and ISO/IEC 15408 Common Criteria to formulate and implement effective RMF accreditation packages, and be accountable for quality work products.
Basic Requirements: High School and 8 years of general experience or an Associate's degree and 6 years general experience or a BS/BA with 4 years of experience. Requires 4 years directly related experience to cybersecurity. Should possess excellent verbal and written communication skills. Must be able to prioritize and execute tasks and enjoy working in a collaborative team environment. Strong writing skills to produce coherent and concise documentation required for certification evaluation. Ability to create and work within schedules and timelines. Must hold an active DoD Security Clearance of Secret or higher and 8570 IA Workforce Improvement Program IAM Level I Approved Baseline Certification. Current certifications that fall into this category are: CAP, GSLC, and Security+. Active DoD Secret Clearance.
Desired Requirements: Masters' degree in an Engineering or IT technical field. Active DoD Security Clearance of Top Secret or TS/SCI and 8570 IA Workforce IAM Level II Approved Baseline Certification. Current certifications that fall into this category are: CAP, GSLC, CISM, CASP CE, Associate CISSP, and CISSP. Working knowledge of Linux Red Hat and Microsoft operating systems. Understanding of boundary protection devices, including firewalls and IPS devices and their relationship to network topologies. Understanding of project management basics.