Chenega MIOS SBU
Information System Security Engineer III
Chenega MIOS SBU, Huntsville, Alabama, United States, 35824
Information System Security Engineer III
Huntsville, AL The Information System Security Engineer III performs complex technical validation of security controls and supports POA&M mitigation. Responsibilities
Act as mid-level technical lead to design and implement secure enterprise-level security architecture. Assist Senior technical lead with managing all aspects of cyber security for systems maintained on site. Work closely with program managers, system engineering and other engineering disciplines. Brief senior management on all aspects of security engineering. Ensure security requirements are addressed in all phases of the system development lifecycle (SDLC). Participate in network design reviews and security testing for the customers networks. Coordinate with system development teams to ensure network security standards are being followed and implemented correctly. Identify additional security requirements, based on RMF or as the result of security issues that put the customers systems at risk. Review and analyze new systems (hardware and software) and provide recommendations concerning their security. Provide A&A and RMF guidance to system owners to ensure accreditation success. Provide insight and recommendations leading up to and during the customer's information assurance readiness review process. Deep understanding of cybersecurity frameworks, documentation, and technical validation processes, working closely with stakeholders and control assessors to ensure security and compliance. Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. Track timely and high quality completion of process tasks and milestones, and report on status of key milestones to performers and senior stakeholders. Oversee the cybersecurity lifecycle from inception to completion. Develop, review, and update documentation to ensure compliance with RMF and Continuous Monitoring requirements. Maintain and update system security documentation (SSPs, POA&Ms, etc.). Assist with the preparation of test plans and conducts security control testing IAW with NIST SP800-53. Other duties as assigned. Qualifications
Bachelor's degree in science, Technology, Engineering, Mathematics, IT, or business-related programs 6+ years of experience in Information System Security practices 3+ years experience supporting DoD or federal programs highly desirable Experience with RMF (NIST 800-53), ATO packages, POA&M development, system categorization is required Baseline and Full Computing Environment Certifications for IAT-II IAW DoD 8570.01-M (Security+ certification) desired Cybersecurity certifications like CISSP, CISA, or CISM required Must have active Secret clearance with ability to obtain TS with SCI eligibility Knowledge, Skills And Abilities
Experience with IA vulnerability testing and related network and system test tools Experience with Splunk Experience with cloud platforms like AWS, Microsoft Azure, etc. and migrating customers/projects to the cloud Experience working in Unix/Linux environment Experience working in cloud infrastructures Proficiency in the Microsoft Office suite (Word, Excel, PowerPoint, Outlook) Understanding of cloud technologies (AWS, Azure, GCP, Oracle) and hybrid cloud environments Agile Scrum certifications desired Experience developing and documenting system security requirements and conducting requirements gap analysis Experience with network technologies and knowledge of network protocols, communications systems and architectures Strong visual storytelling skills with focus on design, usability, and user experience Knowledge of data visualization tools to deliver information that supports quick understanding and action Knowledge and experience with data analysis and data management, engineering, and science Effective time management and organizational skills Ability to work independently and within a team Ability to work effectively in a team environment to encourage collaboration, innovation, and continuous improvement Ability to meet minimum clearance requirements Ability to work nights, weekends, and holidays as required Ability to travel up to 10% Growth and Benefits
At Chenega MIOS, our professional development plan focuses on helping team members identify and use their strengths to do their best work every day. We offer opportunities to sharpen skills and gain hands-on experience in a global, fast-changing business world through on-the-job learning and formal development programs. Benefits: Chenega MIOS offers a broad range of benefits to team members. Learn more about what working at Chenega MIOS can mean for you. Company Information
Chenega MIOS is part of Chronos Operations, LLC. #J-18808-Ljbffr
Huntsville, AL The Information System Security Engineer III performs complex technical validation of security controls and supports POA&M mitigation. Responsibilities
Act as mid-level technical lead to design and implement secure enterprise-level security architecture. Assist Senior technical lead with managing all aspects of cyber security for systems maintained on site. Work closely with program managers, system engineering and other engineering disciplines. Brief senior management on all aspects of security engineering. Ensure security requirements are addressed in all phases of the system development lifecycle (SDLC). Participate in network design reviews and security testing for the customers networks. Coordinate with system development teams to ensure network security standards are being followed and implemented correctly. Identify additional security requirements, based on RMF or as the result of security issues that put the customers systems at risk. Review and analyze new systems (hardware and software) and provide recommendations concerning their security. Provide A&A and RMF guidance to system owners to ensure accreditation success. Provide insight and recommendations leading up to and during the customer's information assurance readiness review process. Deep understanding of cybersecurity frameworks, documentation, and technical validation processes, working closely with stakeholders and control assessors to ensure security and compliance. Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. Track timely and high quality completion of process tasks and milestones, and report on status of key milestones to performers and senior stakeholders. Oversee the cybersecurity lifecycle from inception to completion. Develop, review, and update documentation to ensure compliance with RMF and Continuous Monitoring requirements. Maintain and update system security documentation (SSPs, POA&Ms, etc.). Assist with the preparation of test plans and conducts security control testing IAW with NIST SP800-53. Other duties as assigned. Qualifications
Bachelor's degree in science, Technology, Engineering, Mathematics, IT, or business-related programs 6+ years of experience in Information System Security practices 3+ years experience supporting DoD or federal programs highly desirable Experience with RMF (NIST 800-53), ATO packages, POA&M development, system categorization is required Baseline and Full Computing Environment Certifications for IAT-II IAW DoD 8570.01-M (Security+ certification) desired Cybersecurity certifications like CISSP, CISA, or CISM required Must have active Secret clearance with ability to obtain TS with SCI eligibility Knowledge, Skills And Abilities
Experience with IA vulnerability testing and related network and system test tools Experience with Splunk Experience with cloud platforms like AWS, Microsoft Azure, etc. and migrating customers/projects to the cloud Experience working in Unix/Linux environment Experience working in cloud infrastructures Proficiency in the Microsoft Office suite (Word, Excel, PowerPoint, Outlook) Understanding of cloud technologies (AWS, Azure, GCP, Oracle) and hybrid cloud environments Agile Scrum certifications desired Experience developing and documenting system security requirements and conducting requirements gap analysis Experience with network technologies and knowledge of network protocols, communications systems and architectures Strong visual storytelling skills with focus on design, usability, and user experience Knowledge of data visualization tools to deliver information that supports quick understanding and action Knowledge and experience with data analysis and data management, engineering, and science Effective time management and organizational skills Ability to work independently and within a team Ability to work effectively in a team environment to encourage collaboration, innovation, and continuous improvement Ability to meet minimum clearance requirements Ability to work nights, weekends, and holidays as required Ability to travel up to 10% Growth and Benefits
At Chenega MIOS, our professional development plan focuses on helping team members identify and use their strengths to do their best work every day. We offer opportunities to sharpen skills and gain hands-on experience in a global, fast-changing business world through on-the-job learning and formal development programs. Benefits: Chenega MIOS offers a broad range of benefits to team members. Learn more about what working at Chenega MIOS can mean for you. Company Information
Chenega MIOS is part of Chronos Operations, LLC. #J-18808-Ljbffr