Yesterday
Top Secret/SCI
Mid Level Career (5+ yrs experience)
$150,000 and above
No Traveling
Full Scope Polygraph
IT - Security
Fort Meade, MD (On-Site/Office)
Cybersecurity Engineer – FSP
Essential responsibilities and activities include but are not limited to:
• Perform Cybersecurity/Information Assurance for all managed systems, applications, and hardware
• Design, implement, and maintain Department of Defense provided Security and Vulnerability tools including Host Based Security System (HBSS), Splunk, and Microsoft Defender for Endpoints
• Support authorization/reauthorization efforts in alignment with the Department of Defense RMF, NIST 800-53 (e.g. develop and apply Active Directory Group Policy Objects, develop deployment packages, etc.)
• Analyze new security requirements, define courses of action, and design enterprise solutions, coordinating with engineering and operations teams to implement within the environment
• Formalize and execute a process for communicating vulnerability results in a manner understood by technical and non-technical stakeholders based on risk tolerance and impact to the environment
• Leverage vulnerability database sources to understand each weakness, its probability and remediation options, including vendor-supplied fixes and workarounds
• Design, implement, and maintain, scripts used in asset discovery and vulnerability status
• Conduct continuous independent discovery and vulnerability scans/security assessments of enterprise-wide assets and proactive control testing
• Set up and execute Nessus scans; establish automated reporting
• Document, prioritize, formally report asset, vulnerability state with remediation recommendations/validation.
• Coordinate with system owners and system administrators/technical points of contact to identify system vulnerabilities, conduct vulnerability analysis, and formulate remediation strategies
• Develop packages for remediation efforts, coordinate with vulnerability remediation specialists for deployment
• Support/monitor patch management compliance across infrastructure to align to audit requirements
• Identify and apply DISA Security Technical Implementation Guide (STIG) benchmarks + STIG reviews.
• Support preparation of Plan of Action & Milestones (POAM) development to support compliance and authorization/reauthorization activities
• Prepare and disseminate regular Cyber Compliance/vulnerability reporting with customer to explain.
• Contribute to Standard Operating Procedures, Work Instructions, User Guides and checklists
• Work as a team to consistently learn and share advanced skills and foster team excellence
• Actively collaborate with the ISSO to develop, maintain, and enhance cyber security controls
• Collaborate with security groups such as red teams, threat intelligence and risk management to form a holistic team dedicated to thwarting attackers and reducing attack surface
Position / Candidate Requirements.
• DoD 8750 IAT Level II Certification (CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP)
• Experience operating and maintaining a Nessus environment
• Comply with DOD 8140.01 "Cyberspace Workforce Management" and maintain an appropriate and current IA certification to perform IA functions in accordance with Department of Defense (DoD) 8570.01-M, "Information Assurance Workforce Improvement Program"
• Exp developing/implementing h/w and s/w solutions for data center and virtual infrastructure technologies.
Desired / Advantageous Qualifications
• Exp with Hyperconverged architectures such as Cisco Hyper Flex, Nutanix, etc.; Exp with Cisco Unified Computing System (UCS), Fabric Interconnects and other similar technologies; Exp with Virtualized Desktop Infrastructure, e.g., Citrix ZenDesktop, and/or VMware Horizon
• Large on-premise storage engineering/administration exp with NetApp, Dell/EMC, Pure Storage, etc.
• Exp designing and deploying Collaboration Platforms such as Microsoft SharePoint
• Exp designing and deploying SQL Database Infrastructure such as Microsoft SQL Server
• Exp engineering and implementing data center and campus area networks and security stacks.
• Exp engineering and implementing platforms and services in a software-defined network environment
• Exp with DoD IT security requirements including DISA STIG/SRGs.
• Understanding of Department of Defense standards and best practices
Essential responsibilities and activities include but are not limited to:
• Perform Cybersecurity/Information Assurance for all managed systems, applications, and hardware
• Design, implement, and maintain Department of Defense provided Security and Vulnerability tools including Host Based Security System (HBSS), Splunk, and Microsoft Defender for Endpoints
• Support authorization/reauthorization efforts in alignment with the Department of Defense RMF, NIST 800-53 (e.g. develop and apply Active Directory Group Policy Objects, develop deployment packages, etc.)
• Analyze new security requirements, define courses of action, and design enterprise solutions, coordinating with engineering and operations teams to implement within the environment
• Formalize and execute a process for communicating vulnerability results in a manner understood by technical and non-technical stakeholders based on risk tolerance and impact to the environment
• Leverage vulnerability database sources to understand each weakness, its probability and remediation options, including vendor-supplied fixes and workarounds
• Design, implement, and maintain, scripts used in asset discovery and vulnerability status
• Conduct continuous independent discovery and vulnerability scans/security assessments of enterprise-wide assets and proactive control testing
• Set up and execute Nessus scans; establish automated reporting
• Document, prioritize, formally report asset, vulnerability state with remediation recommendations/validation.
• Coordinate with system owners and system administrators/technical points of contact to identify system vulnerabilities, conduct vulnerability analysis, and formulate remediation strategies
• Develop packages for remediation efforts, coordinate with vulnerability remediation specialists for deployment
• Support/monitor patch management compliance across infrastructure to align to audit requirements
• Identify and apply DISA Security Technical Implementation Guide (STIG) benchmarks + STIG reviews.
• Support preparation of Plan of Action & Milestones (POAM) development to support compliance and authorization/reauthorization activities
• Prepare and disseminate regular Cyber Compliance/vulnerability reporting with customer to explain.
• Contribute to Standard Operating Procedures, Work Instructions, User Guides and checklists
• Work as a team to consistently learn and share advanced skills and foster team excellence
• Actively collaborate with the ISSO to develop, maintain, and enhance cyber security controls
• Collaborate with security groups such as red teams, threat intelligence and risk management to form a holistic team dedicated to thwarting attackers and reducing attack surface
Position / Candidate Requirements.
• DoD 8750 IAT Level II Certification (CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP)
• Experience operating and maintaining a Nessus environment
• Comply with DOD 8140.01 "Cyberspace Workforce Management" and maintain an appropriate and current IA certification to perform IA functions in accordance with Department of Defense (DoD) 8570.01-M, "Information Assurance Workforce Improvement Program"
• Exp developing/implementing h/w and s/w solutions for data center and virtual infrastructure technologies.
Desired / Advantageous Qualifications
• Exp with Hyperconverged architectures such as Cisco Hyper Flex, Nutanix, etc.; Exp with Cisco Unified Computing System (UCS), Fabric Interconnects and other similar technologies; Exp with Virtualized Desktop Infrastructure, e.g., Citrix ZenDesktop, and/or VMware Horizon
• Large on-premise storage engineering/administration exp with NetApp, Dell/EMC, Pure Storage, etc.
• Exp designing and deploying Collaboration Platforms such as Microsoft SharePoint
• Exp designing and deploying SQL Database Infrastructure such as Microsoft SQL Server
• Exp engineering and implementing data center and campus area networks and security stacks.
• Exp engineering and implementing platforms and services in a software-defined network environment
• Exp with DoD IT security requirements including DISA STIG/SRGs.
• Understanding of Department of Defense standards and best practices
group id: 90910578
