Chenega MIOS SBU
Information System Security Engineer IV
Chenega MIOS SBU, Huntsville, Alabama, United States, 35824
Overview
Information System Security Engineer IV Huntsville, AL (Chenega MIOS SBU) Join our team of professionals who support large-scale government operations by leveraging cutting-edge technology and take your career to the next level! Responsibilities
Act as a senior technical lead to design and implement secure enterprise-level security architecture. Oversee and ensure compliance with an organizations cybersecurity policies and regulatory frameworks. Manage risk, secure IT systems, and implement security controls to protect sensitive data. Work with leadership, auditors, and IT teams to maintain security and respond to threats. Develop, implement, and enforce cybersecurity policies and procedures in accordance with regulatory frameworks. Manage all aspects of cyber security for systems maintained on site. Work closely with program managers, system engineering and other engineering disciplines. Brief senior management on all aspects of security engineering. Lead and support frequent interaction with government customers. Ensure security requirements are addressed in all phases of the system development lifecycle (SDLC). Participate in network design reviews and security testing for the customers networks. Coordinate with system development teams to ensure network security standards are being followed and implemented correctly. Identify additional security requirements, based on RMF or as the result of security issues that put the customers systems at risk. Review and analyze new systems (hardware and software) and provide recommendations concerning their security. Provide A&A and RMF guidance to system owners to ensure accreditation success. Provide insight and recommendations leading up to and during the customer's information assurance readiness review process. Deep understanding of cybersecurity frameworks, documentation, and technical validation processes, working closely with stakeholders and control assessors to ensure security and compliance. Oversee the cybersecurity lifecycle from inception to completion. Develop, review, and update documentation to ensure compliance with RMF and Continuous Monitoring requirements. Maintain and update system security documentation (SSPs, POA&Ms, etc.). Assist with the preparation of test plans and conduct security control testing in accordance with NIST SP 800-53. Other duties as assigned. Qualifications
Bachelor's degree in science, Technology, Engineering, Mathematics, IT, or business-related programs 8+ years of experience in Information System Security practices 5+ years experience supporting DoD or federal programs highly desirable Experience with RMF (NIST 800-53), ATO packages, POA&M development, system categorization is required Baseline and Full Computing Environment Certifications for IAT-II IAW DoD 8570.01-M (Security+ certification) desired Cybersecurity certifications like CISSP, CISA, or CISM required Must have active Secret clearance with ability to obtain TS with SCI eligibility Knowledge, Skills And Abilities
Experience with IA vulnerability testing and related network and system test tools Experience with Splunk Experience with cloud platforms like AWS, Microsoft Azure, etc. and migrating customers/projects to the cloud Experience working in Unix/Linux environment Experience working in cloud infrastructures Proficiency in the Microsoft Office suite (Word, Excel, PowerPoint, Outlook) Understanding of cloud technologies (AWS, Azure, GCP, Oracle) and hybrid cloud environments Agile Scrum certifications desired Experience developing and documenting system security requirements and conducting requirements gap analysis Experience with network technologies and knowledge of network protocols, communications systems and architectures Strong communication and collaboration skills Ability to work independently and in a team; meet deadlines Ability to travel up to 10%
#J-18808-Ljbffr
Information System Security Engineer IV Huntsville, AL (Chenega MIOS SBU) Join our team of professionals who support large-scale government operations by leveraging cutting-edge technology and take your career to the next level! Responsibilities
Act as a senior technical lead to design and implement secure enterprise-level security architecture. Oversee and ensure compliance with an organizations cybersecurity policies and regulatory frameworks. Manage risk, secure IT systems, and implement security controls to protect sensitive data. Work with leadership, auditors, and IT teams to maintain security and respond to threats. Develop, implement, and enforce cybersecurity policies and procedures in accordance with regulatory frameworks. Manage all aspects of cyber security for systems maintained on site. Work closely with program managers, system engineering and other engineering disciplines. Brief senior management on all aspects of security engineering. Lead and support frequent interaction with government customers. Ensure security requirements are addressed in all phases of the system development lifecycle (SDLC). Participate in network design reviews and security testing for the customers networks. Coordinate with system development teams to ensure network security standards are being followed and implemented correctly. Identify additional security requirements, based on RMF or as the result of security issues that put the customers systems at risk. Review and analyze new systems (hardware and software) and provide recommendations concerning their security. Provide A&A and RMF guidance to system owners to ensure accreditation success. Provide insight and recommendations leading up to and during the customer's information assurance readiness review process. Deep understanding of cybersecurity frameworks, documentation, and technical validation processes, working closely with stakeholders and control assessors to ensure security and compliance. Oversee the cybersecurity lifecycle from inception to completion. Develop, review, and update documentation to ensure compliance with RMF and Continuous Monitoring requirements. Maintain and update system security documentation (SSPs, POA&Ms, etc.). Assist with the preparation of test plans and conduct security control testing in accordance with NIST SP 800-53. Other duties as assigned. Qualifications
Bachelor's degree in science, Technology, Engineering, Mathematics, IT, or business-related programs 8+ years of experience in Information System Security practices 5+ years experience supporting DoD or federal programs highly desirable Experience with RMF (NIST 800-53), ATO packages, POA&M development, system categorization is required Baseline and Full Computing Environment Certifications for IAT-II IAW DoD 8570.01-M (Security+ certification) desired Cybersecurity certifications like CISSP, CISA, or CISM required Must have active Secret clearance with ability to obtain TS with SCI eligibility Knowledge, Skills And Abilities
Experience with IA vulnerability testing and related network and system test tools Experience with Splunk Experience with cloud platforms like AWS, Microsoft Azure, etc. and migrating customers/projects to the cloud Experience working in Unix/Linux environment Experience working in cloud infrastructures Proficiency in the Microsoft Office suite (Word, Excel, PowerPoint, Outlook) Understanding of cloud technologies (AWS, Azure, GCP, Oracle) and hybrid cloud environments Agile Scrum certifications desired Experience developing and documenting system security requirements and conducting requirements gap analysis Experience with network technologies and knowledge of network protocols, communications systems and architectures Strong communication and collaboration skills Ability to work independently and in a team; meet deadlines Ability to travel up to 10%
#J-18808-Ljbffr