Logo
Softworld, a Kelly Company

Softworld, a Kelly Company is hiring: Principal Cybersecurity Engineer in Bridge

Softworld, a Kelly Company, Bridgeton, MO, United States, 63044

Save Job

Overview

We are seeking a full-time Principal Cybersecurity Engineer for our Bridgeton, MO facility. The selected candidate will focus on the security assessment and risk management of IT systems embedded within tactical vehicles. This senior technical role will be critical in ensuring the confidentiality, integrity, and availability of sensitive data and systems operating in challenging and dynamic environments. The ideal candidate will be a recognized subject matter expert in the Risk Management Framework (RMF), with a proven track record of applying it to complex, real-world systems. This role requires advanced hands-on technical expertise, exceptional analytical skills, and the ability to act as a mentor and technical authority within the team.

Base pay

$160,000.00/yr - $170,000.00/yr

Direct message the job poster from Softworld, a Kelly Company

Due to federal contract requirements, only U.S. Citizens are eligible for consideration. Sponsorship is not available for this role.

Job Summary

We are seeking a full-time Principal Cybersecurity Engineer for our Bridgeton, MO facility. The selected candidate will be focusing on the security assessment and risk management of IT systems embedded within tactical vehicles. This senior technical role will be critical in ensuring the confidentiality, integrity, and availability of sensitive data and systems operating in challenging and dynamic environments. The ideal candidate will be a recognized subject matter expert in the Risk Management Framework (RMF), with a proven track record of applying it to complex, real-world systems. This role requires advanced hands-on technical expertise, exceptional analytical skills, and the ability to act as a mentor and technical authority within the team.

Key Responsibilities

  • Risk Management Framework (RMF) Implementation: Provide senior technical guidance and oversight for the RMF process for IT systems within tactical vehicles, from system categorization (SP 800-60) through security control selection (SP 800-53), implementation, assessment, authorization, and continuous monitoring.
  • Security Assessments: Lead comprehensive security assessments of tactical vehicle IT systems, including hardware, software, and network configurations. This includes vulnerability scanning, penetration testing (where appropriate and authorized), security architecture reviews, and configuration analysis.
  • Documentation: Develop and review detailed RMF documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessments, Plans of Action and Milestones (POA&Ms), and other required artifacts. Ensure documentation complies with, and sets the standard for, relevant regulations.
  • Security Control Implementation and Validation: Serve as a senior technical advisor to engineering teams, driving the implementation and validation of security controls on tactical vehicle systems. This may involve hands-on configuration of systems, development of security hardening guidelines, and influencing system design.
  • Vulnerability Management: Direct the identification, analysis, and prioritization of vulnerabilities discovered through assessments or continuous monitoring. Develop and champion remediation strategies, providing expert guidance to technical teams to implement solutions.
  • Compliance: Serve as a subject matter expert on all security activities and documentation, ensuring compliance with relevant DoD instructions, NIST publications (800-series), CMMC, and other applicable regulations and policies (e.g., DoDI 8510.01, DoDI 8500.01).
  • Collaboration: Drive cross-functional collaboration with engineers, system administrators, program managers, and government representatives, acting as a key liaison to ensure security is integrated throughout the system lifecycle. Mentorship: Actively mentor and guide junior engineers, fostering their professional growth and expanding the team’s overall technical capabilities. Continuous Improvement: Stay current with the latest cybersecurity threats, vulnerabilities, and technologies relevant to tactical vehicle systems. Recommend improvements to security processes and technologies.
  • Travel: This position may require travel to test facilities, potentially up to 25% travel, occasional travel for 1–2-week periods.
  • Education and Experience: Master’s degree in Cybersecurity, Computer Science, Information Technology, Electrical Engineering, or a related technical field. Minimum of 8 years of experience in cybersecurity engineering, with a demonstrated focus on applying RMF and performing security assessments.
  • Certifications and Skills: Relevant cybersecurity certifications (e.g., CASP+, CISM, CISA, CRISC, Security+, (ISC)2 CAP, GSLC, CCNA, Network+). Proficiency in Linux and Windows, scripting (Python, PowerShell, Bash, Perl), and experience with security hardening of operating systems and network devices.
  • Clearance: Ability to obtain and maintain a security clearance.

Qualifications

  • Master’s degree in Cybersecurity, Computer Science, Information Technology, Electrical Engineering, or a related field.
  • 8+ years of experience in cybersecurity engineering with RMF and security assessments.
  • Strong knowledge of NIST SP 800-37, 800-53, 800-60, 800-160 and related publications.
  • Experience with vulnerability scanning tools (e.g., Nessus, ACAS) and various security assessment tools.
  • Proficiency in Linux and Windows; scripting skills (Python, PowerShell, Bash, Perl).
  • Excellent written and verbal communication; ability to present to technical and non-technical audiences.
  • Ability to work independently and in a team; strong problem-solving and analytical skills.
  • Ability to obtain and maintain a security clearance.

Seniority level

  • Mid-Senior level

Employment type

  • Full-time

Industry

  • Defense and Space Manufacturing
#J-18808-Ljbffr