4023 Cyber Engineer

OVERVIEW:

Perform Cybersecurity / Information Assurance for all customer managed systems, applications, and hardware. Design, implement, and maintain Department of Defense provided Security and Vulnerability tools including Host Based Security System (HBSS), Splunk, and Microsoft Defender for Endpoints. Support authorization/reauthorization efforts in alignment with the Department of Defense Risk Management Framework (RMF), NIST 800-53 (e.g., develop and apply Active Directory Group Policy Objects, develop deployment packages, etc.). Analyze new security requirements, define courses of action, and design enterprise solutions, coordinating with engineering and operations teams to implement within the environment. Formalize and execute a process for communicating vulnerability results in a manner understood by technical and non-technical stakeholders based on risk tolerance and impact to the environment. Leverage vulnerability database sources to understand each weakness, its probability and remediation options, including vendor-supplied fixes and workarounds.

REQUIRED QUALIFICATIONS:

• Ability to design, implement, and maintain scripts used in asset discovery and vulnerability status.
• Able to conduct continuous independent discovery and vulnerability scans/security assessments of enterprise-wide assets and proactive control testing.
• Ability to set up and execute Nessus scans; establish automated reporting.
• Ability to document, prioritize, and formally report asset and vulnerability state, along with remediation recommendations and validation.
• Able to coordinate with system owners and system administrators/technical points of contact to identify system vulnerabilities, conduct vulnerability analysis, and formulate remediation strategies.
• Able to develop packages for complex remediation efforts and coordinate with vulnerability remediation specialists for deployment.
• Support and monitor patch management compliance across the infrastructure to align to audit requirements, including the ability to identify and apply DISA Security Technical Implementation Guide (STIG) benchmarks and conduct manual STIG reviews.
• Able to support preparation of Plan of Action & Milestones (POAM) development to support compliance and authorization/reauthorization activities.
• Able to prepare and disseminate regular Cyber Compliance/vulnerability reporting; interact with the customer to explain results and address issues.
• Ability to contribute to the development of Standard Operating Procedures, Work Instructions, User Guides, and checklists.
• Ability to work as a team to consistently learn and share advanced skills and foster team excellence.
• Able to actively collaborate with the ISSO to develop, maintain, and enhance cyber security controls.
• Able to collaborate with security groups such as red teams, threat intelligence and risk management to form a holistic team dedicated to thwarting attackers and reducing attack surface.
• Possess a thorough understanding of NIST 800-53 Security Controls and how they are used to harden computers, databases, and network devices.
• At least 6-8 years of IT experience with a bachelor's degree in an IT, Cybersecurity, Systems Engineering, Engineering, or other related field. An additional four (4) years of experience as a Cybersecurity Engineer or other similar position may be substituted for the bachelor's degree.
• Possess a DoD 8750 IAT Level II Certification (CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP).
• Have experience operating and maintaining a Nessus environment.
• Experience with Computer Network Defense (CND) compliance, inspection Site Assist Visits (SAVs), and other cybersecurity related inspections (e.g., CSSP, CCRI, CCORI, etc.).

CLEARANCE:

TS/SCI minimum