Logo
VMD Corp

Cyber Security Engineer - TS/SCI

VMD Corp, WorkFromHome

Save Job

Join to apply for the Cyber Security Engineer - TS/SCI role at VMD Corp

1 day ago Be among the first 25 applicants

Join to apply for the Cyber Security Engineer - TS/SCI role at VMD Corp

Cyber Security Engineer – TS/SCI
Xcelerate Solutions is seeking a Cyber Security Engineer working across several Task Orders under the DOMEX Technology Platform (DTP) contract supporting NMEC. Have impact as part of a mission focused, solutions oriented, and adaptive team that values innovation, collaboration, and professional development.

Cyber Security Engineer – TS/SCI
Xcelerate Solutions is seeking a Cyber Security Engineer working across several Task Orders under the DOMEX Technology Platform (DTP) contract supporting NMEC. Have impact as part of a mission focused, solutions oriented, and adaptive team that values innovation, collaboration, and professional development.
As a Cyber Security Engineer, your job will be to design, develop, and implement secure systems in on-premises infrastructure. You will leverage on your experience with security technologies and industry best practices to ensure that security is integrated into system design, development, testing, and deployment and that all security requirements are compliant with the DoD Risk Management Framework. This exciting and challenging work will help you expand your capabilities in security and will provide you with the skills and experience you need to achieve additional levels of the DoD 8570 IAT and IASAE Certifications. While most work is conducted on-site at our client location in Bethesda, MD, we offer a flexible schedule and, occasionally, some tasks may be performed remotely. Percentage of remote work will vary based on client requirements/deliverables. Come join our award-winning organization and work with some of the most talented and brightest minds in the GovCon industry.
Location:
Bethesda, MD
Security Clearance:
Active TS/SCI
Responsibilities:

  • Support the secure architecture, design, and implementation of DoD systems in accordance with DoDI 8510.01, NIST SP 800-53, and other DoD security guidance.
  • Lead the integration of RMF activities into the system development lifecycle (SDLC), including selecting, implementing, and validating security controls.
  • Develop and maintain key security documentation such as System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessments, and Plan of Action and Milestones (POA&Ms).
  • Collaborate with ISSOs, ISSMs, developers, and system owners to ensure systems are developed and maintained with approved security configurations.
  • Apply Security Technical Implementation Guides (STIGs) to systems and validate compliance using tools such as SCAP, STIG Viewer, and ACAS.
  • Maintain application, network, and database scanning infrastructure (application/product updates, database maintenance, benchmark/audit files, application/server builds, rule pack/content updates, scanner, or agent deployment etc.)
  • Analyze vulnerability scans and ensure timely mitigation or acceptance of risks based on DoD policies.
  • Provide technical input to support and maintain system authorization.
  • Participate in system reviews, architecture assessments, and engineering design reviews to embed cybersecurity from the outset.
  • Develop and implement automation or security tools to improve the compliance and monitoring of systems.
  • Support security incident response and forensics analysis in coordination with ISSMs and Security points of contact.
Minimum Requirements:
  • BS degree and 8+ years of experience in cybersecurity. Additional relevant years of experience in lieu of degree is accepted.
  • An active TS/SCI clearance with ability to obtain a Poly
  • Have at least one of the following DoD 8570.01-M IASAE Level II certifications: CISSP, CISSP-ISSAP, CISSP-ISSEP, CSSLP, or CASP+ CE. NOTE: the CISSP Associate is not acceptable
  • Developer experience is preferred in a least one scripting / programming language.
  • Experience with reviewing cybersecurity vulnerabilities for risk and relevance as well as in vulnerability mitigations/remediation planning, for identified systems, network, application and database vulnerabilities
  • Ability to architect, design, troubleshoot, maintain, and deploy vulnerability scanning solutions such as (OWASP, Fortify, Sonarqube, Tenable, etc.)
  • Experience with XACTA, EMass, or similar tool
  • Strong in-depth understanding of including Microsoft Windows and Linux/UNIX operating systems
  • Experience with middleware / web technologies (Apache, tomcat, IIS, etc.)
  • Experience with Databases (Postgres, MS SQL, MySQL, ElasticSearch, etc.)
  • Understanding of TCP/IP networking.
  • Experience with Continuous Integration and Continuous Delivery Platforms (Jenkins, Bamboo, GitlabCI TFS, etc.)
  • Familiar with NIST 800-171, 800-172, NIST SSDF, and CMMC requirements.
  • Experience with NIST Special Publications e.g. NIST SP 800-27, 30, 37, 53, 60, 171, NIST SSDF, CMMC requirements, and CNSS publication CNSSI 1253
  • Experience supporting DoD/IC systems through the entire Risk Management Framework Plus (RMF) process
  • Experience establishing a System Security Engineering management process to integrate security and privacy controls into complex hardware and software systems
  • Experience developing and reviewing security concept of operations, systems security plans, security risk assessments, contingency plans, configuration management plans
  • Experience with incident response plans, plan of actions and milestones, risk management plans, and vulnerability management plans
  • Strong communication skills; able to successfully communicate with management personnel, technical personnel and third parties.
Preferred Qualifications:
  • Software development/coding experience with programming languages such as Python, Java, and React
  • Successfully achieved ATO under RMF+
  • Experience with big data applications
  • Experience with tools for ticketing and documentation (e.g., Gitlab, Jira, Confluence).
  • Experience working in an Agile environment
  • Experience with OIDC or Oauth2
  • Experience with any of the following technologies:
    • Kubernetes, Rancher, Strimzi, or Cloudera
    • Active Directory
    • Scripting languages like bash, python, or PowerShell
About Xcelerate Solutions:
Founded in 2009 and headquartered in McLean, VA, Xcelerate Solutions ( is one of America's fastest-growing companies. Xcelerate’s culture is defined by our diversified workforce of dynamic and versatile professionals, supported with growth and development opportunities that contribute to individual and company growth. This strong commitment to our employees has been recognized by our inclusion on the Washington Business Journal’s “50 Best Places to Work” list as well as being a “Great Place to Work” certified company with a 4.6 star, and a 99% CEO approval Glassdoor rating. Come find out why Xcelerate Solutions is one of the DC Metro top employers!
Xcelerate Solutions is an Equal Employment Opportunity/Affirmative Action Employer. We evaluate qualified applicants without regard to race, color, national origin, religion, age, equal pay, disability, veteran status, sex, sexual orientation, gender identity, genetic information, or expression of another protected characteristic. As part of this commitment to the full inclusion of all qualified individuals, Xcelerate provides reasonable accommodations if needed because of an applicant's or an employee's disability.
Pay Transparency Notice: Xcelerate Solutions will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant.

Seniority level

  • Seniority level

    Mid-Senior level

Employment type

  • Employment type

    Full-time

Job function

  • Job function

    Information Technology

  • Industries

    Airlines and Aviation, IT Services and IT Consulting, and Security and Investigations

Referrals increase your chances of interviewing at VMD Corp by 2x

Sign in to set job alerts for “Cyber Security Engineer” roles.

Cybersecurity Engineer/Analyst (Junior Level | 1-2 years exp.)- Fairfax County

FBI Special Agent: Cybersecurity/IT Expertise

Arlington, VA $99,461.00-$128,329.00 1 week ago

Arlington, VA $90,000.00-$110,000.00 2 weeks ago

Reston, VA $70,000.00-$100,000.00 1 week ago

Washington, DC $110,000.00-$125,000.00 1 month ago

2027452 Cyber Security Engineer $215,000.00

Bethesda, MD $10,000.00-$215,000.00 3 weeks ago

Washington, DC $120.00-$125.00 1 month ago

Washington, DC $130,000.00-$170,000.00 2 months ago

Washington, DC $80,000.00-$85,000.00 10 hours ago

Herndon, VA $80,000.00-$85,000.00 1 day ago

District of Columbia, United States $90,000.00-$145,000.00 9 months ago

Rockville, MD $67,600.00-$122,200.00 13 hours ago

Information Systems Security Engineer (Hybrid)

Fort Belvoir, VA $120,000.00-$160,000.00 1 month ago

Maryland, United States $90,000.00-$155,000.00 9 months ago

Information Security Analyst (SOC 2 Compliance)

Fairfax, VA $92,400.00-$115,000.00 1 month ago

Washington, DC $120.00-$125.00 2 months ago

District of Columbia, United States 3 weeks ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr