SIERTEK LTD is hiring: Cybersecurity Engineer* in Beavercreek

SierTeK Ltd. is seeking a Cybersecurity Engineer to support a remote opportunity. The contractor shall enhance and maintain the cybersecurity posture of MMO products and services, to include AFSIM, and advise or assist in developing a comprehensive assurance strategy to continuously identify and mitigate potential security vulnerabilities or weaknesses and promote a secure software development lifecycle.

Responsibilities

• Cybersecurity Awareness: Conduct training sessions to promote secure software development practices and raise awareness among developers about vulnerabilities, weaknesses, and exploits that pertain to relevant programming languages, technologies, libraries, or platforms.
• Cybersecurity Strategy: Advise or assist in the design, implementation, and maintenance of a secure software development approach capable of satisfying diverse cybersecurity risk profiles (i.e., across managed DoD networks and classification domains). This approach should balance assurance with speed, promote a secure-by-design paradigm, and provide the necessary evidence to underwrite a continuous Authority to Operate (cATO).
• Continuous Monitoring: Implement continuous monitoring to maintain DoD enterprise software certifications or Certificates to Field (CtFs). These certifications streamline the approval to use MMO products and services on enterprise DoD information networks to include NIPR, DREN, SIPR, SDREN, JWICS, and SAP networks. Monitor codebase changes as part of automated quality gates.
• Security Audits and Third-Party Monitoring: Perform security audits to ensure the sufficiency of both manual and automated practices and procedures. Monitor third-party libraries for emerging vulnerabilities and weaknesses, particularly those identified in the public Common Vulnerabilities and Exposures (CVE) list. Participate in critical design or code reviews and inspections.
• Vulnerability or Weakness Remediation: Advise or assist in the tracking and remediation of potential vulnerabilities and weaknesses associated with MMO products or services. Perform security impact assessments and communicate risk to stakeholders through Information Assurance Vulnerability Management (IAVM) channels.
• Incident Management and Response: Advise or assist in the design, implementation, and maintenance of a cyber incident management and response plan. Coordinate MMO response activities during training events, tabletop exercises, or real-world incidents.
• Continuous Authorization and Compliance: Advise or assist in the preparation and generation of required cybersecurity assessment and/or authorization documentation related to MMO products and services. Engage with enterprise processes or coordinate with Authorizing Officials (AOs), as required to secure appropriate product certifications or certificates to field.

Minimum Position Requirements

• Bachelor's Degree in Cybersecurity, Information Technology, Computer Science, or a related discipline
• 7+ years of experience

Company/Equal Opportunity

SierTeK is an equal opportunity employer. Employment is decided based on qualifications, merit, and business need. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected Veteran status, gender identity and sexual orientation.

If you need assistance or accommodation due to a disability, you may contact us at 1+833.743.7835.

This job posting is to identify potential candidates for positions in order to respond to a request for proposal. This job posting, including but not limited to, qualifications, duties, compensation and benefits, is subject to change based on the terms and conditions of the awarded contract and is contingent on SierTeK being awarded the contract.