OSC Edge
Overview
OSC Edge As the Senior Security Engineer, this individual will play a critical role in shaping the direction of the security products team by translating real-world DoD compliance requirements into practical solutions, ranging from product features and technical checks to automation logic and customer-facing documentation. In this role, the Senior Security Engineer will ensure the team's work directly supports DoD sites in meeting STIGs, KIORs, RMF artifacts, and CORA audit requirements, enabling faster, more accurate, and audit-ready compliance preparation. Responsibilities
Acts as the DoD compliance SME within the Security product team Translates RMF, STIG, and CORA requirements into actionable product features and scanning logic Defines technical data models for audit evidence: POA&Ms, SSPs, SARs, RBM mappings Guides engineers in integrating ACAS, STIG, SCAP, and vulnerability data Builds and maintains a library of RMF control mappings, KIOR categories, and audit checklists for use inside the security product team Ensures dashboards, reports, and modules align with DoD assessment workflows Develops templates and automation to support audit readiness packages Validates that automated STIG checks, RBM-based risk scoring, and KIOR tracking reflect DoD cyber posture priorities Assists in architecting integrations with ACAS, HBSS, STIG Viewer, and other DoD compliance tools Provides technical oversight on security configuration benchmarks: Linux/Windows OS, databases, applications Serves as the internal voice of the DoD customer, ensuring the security products team meets mission needs Contributes to white papers, use cases, and demonstrations tailored for DoD stakeholders Support security products team is aligned with DISA, JFHQ-DODIN, and DoD CIO cyber initiatives Required Qualifications/Education and Experience
Active DoD Secret 7+ years in DoD cybersecurity engineering, compliance, or audit-prep roles Deep expertise in RMF documentation, STIG implementation, KIOR identification, and CORA/CCRI prep Prior hands-on work with DISA STIGs, ACAS/Tenable, SCAP, and related compliance tools Familiarity with CORA Key Performance Parameters (KPPs) and Risk Based Metrics (RBM Ability to bridge compliance frameworks with technical product design Strong documentation and technical writing: RMF artifacts, control mappings, audit evidence Solid understanding of Linux (RHEL), Windows, databases (MySQL), and network security practices Preferred Qualifications/Education and Experience
Top Secret clearance Experience building compliance automation tools or contributing to DoD audit platforms Knowledge of CCRI, ATO workflows, and DISA/JITC testing environments Relevant certifications: CISSP, CAP, Security+, or other DoD 8570 baseline certs Strong communication and customer-facing experience presenting to DoD cyber teams Benefits
Medical/ Dental/ Vision Life insurance and AD&D Flexible Spending Accident, Critical Illness and Hospital Indemnity coverage 401(k) and ROTH retirement options and company match Pet Insurance Identify Theft and Fraud Protection coverage About OSC Edge
Founded in 2008, what started as a small business has grown into a diverse and innovative global team owned by Cook Inlet Region, Inc. an Alaska Native Regional Corporation. As a US Federal contractor, we are a dedicated IT Service Provider supporting the Departments of the Army, Navy, Air Force, DoD Educational Institutions, and large corporate entities. Our expertise is in Cloud Computing, Cyber Security, Compliance Management, Enterprise Architecture, IT Support, and CSfC. If you are passionate about making a difference and thrive in a dynamic and collaborative environment, we invite you to apply to join our team. Equal Opportunity Employer/Veterans/Disabled
#J-18808-Ljbffr
OSC Edge As the Senior Security Engineer, this individual will play a critical role in shaping the direction of the security products team by translating real-world DoD compliance requirements into practical solutions, ranging from product features and technical checks to automation logic and customer-facing documentation. In this role, the Senior Security Engineer will ensure the team's work directly supports DoD sites in meeting STIGs, KIORs, RMF artifacts, and CORA audit requirements, enabling faster, more accurate, and audit-ready compliance preparation. Responsibilities
Acts as the DoD compliance SME within the Security product team Translates RMF, STIG, and CORA requirements into actionable product features and scanning logic Defines technical data models for audit evidence: POA&Ms, SSPs, SARs, RBM mappings Guides engineers in integrating ACAS, STIG, SCAP, and vulnerability data Builds and maintains a library of RMF control mappings, KIOR categories, and audit checklists for use inside the security product team Ensures dashboards, reports, and modules align with DoD assessment workflows Develops templates and automation to support audit readiness packages Validates that automated STIG checks, RBM-based risk scoring, and KIOR tracking reflect DoD cyber posture priorities Assists in architecting integrations with ACAS, HBSS, STIG Viewer, and other DoD compliance tools Provides technical oversight on security configuration benchmarks: Linux/Windows OS, databases, applications Serves as the internal voice of the DoD customer, ensuring the security products team meets mission needs Contributes to white papers, use cases, and demonstrations tailored for DoD stakeholders Support security products team is aligned with DISA, JFHQ-DODIN, and DoD CIO cyber initiatives Required Qualifications/Education and Experience
Active DoD Secret 7+ years in DoD cybersecurity engineering, compliance, or audit-prep roles Deep expertise in RMF documentation, STIG implementation, KIOR identification, and CORA/CCRI prep Prior hands-on work with DISA STIGs, ACAS/Tenable, SCAP, and related compliance tools Familiarity with CORA Key Performance Parameters (KPPs) and Risk Based Metrics (RBM Ability to bridge compliance frameworks with technical product design Strong documentation and technical writing: RMF artifacts, control mappings, audit evidence Solid understanding of Linux (RHEL), Windows, databases (MySQL), and network security practices Preferred Qualifications/Education and Experience
Top Secret clearance Experience building compliance automation tools or contributing to DoD audit platforms Knowledge of CCRI, ATO workflows, and DISA/JITC testing environments Relevant certifications: CISSP, CAP, Security+, or other DoD 8570 baseline certs Strong communication and customer-facing experience presenting to DoD cyber teams Benefits
Medical/ Dental/ Vision Life insurance and AD&D Flexible Spending Accident, Critical Illness and Hospital Indemnity coverage 401(k) and ROTH retirement options and company match Pet Insurance Identify Theft and Fraud Protection coverage About OSC Edge
Founded in 2008, what started as a small business has grown into a diverse and innovative global team owned by Cook Inlet Region, Inc. an Alaska Native Regional Corporation. As a US Federal contractor, we are a dedicated IT Service Provider supporting the Departments of the Army, Navy, Air Force, DoD Educational Institutions, and large corporate entities. Our expertise is in Cloud Computing, Cyber Security, Compliance Management, Enterprise Architecture, IT Support, and CSfC. If you are passionate about making a difference and thrive in a dynamic and collaborative environment, we invite you to apply to join our team. Equal Opportunity Employer/Veterans/Disabled
#J-18808-Ljbffr