Feb 21
Secret
Unspecified
Unspecified
IT - Security
Huntsville, AL (On-Site/Office)
Title: Senior Cyber Engineer
Location: Huntsville, AL, United States
Schedule: Full-time - On Site
Minimum Clearance Required: Secret
Job Description:
We are seeking a Senior Cyber Engineer to support our Department of Defense (DoD) client in implementing cutting-edge cybersecurity solutions. This position will focus on securing mission-critical software, performing technical security assessments, and supporting Risk Management Framework (RMF) compliance.
The ideal candidate will have hands-on experience with cybersecurity best practices, compliance frameworks, and vulnerability management tools.
Key Responsibilities:
• Conduct technical evaluations of software requirements to ensure cybersecurity standards are met. • Implement, maintain, and monitor technical security controls, including STIGs, SRGs, and security hardening guidelines.
• Review and analyze code, configurations, and system design changes for security risks, providing approval or remediation recommendations.
• Validate security controls for operating systems, applications, and network appliances, making enhancements as needed.
• Perform vulnerability scanning, track findings, and develop mitigation plans using ACAS and other cybersecurity tools.
• Conduct static and dynamic code analysis, documenting security weaknesses and recommending improvements.
• Assist in updating RMF system artifacts, such as system diagrams, hardware/software inventories, and interface listings.
• Maintain knowledge of emerging cybersecurity threats and industry best practices to enhance security postures.
Required Qualifications:
• Education: Bachelor's degree in Cybersecurity, Computer Science, or a related field (or 6+ years of equivalent work experience).
• Experience: Minimum of 5+ years in cybersecurity engineering, security compliance, and risk management.
• Certifications: Security+ CE or higher (CISSP, CEH, or equivalent preferred).
• Technical Skills: o Experience with C, C++, Java, YAML for secure coding and system development. o Working knowledge of DISA STIGs/SRGs and STIG tools for compliance. o Experience with static and dynamic code analysis tools (e.g., Parasoft, Coverity, Fortify). o Hands-on experience with vulnerability assessment and remediation using ACAS/Nessus. o Familiarity with RMF documentation and security compliance frameworks. o Strong analytical skills for evaluating security risks and recommending solutions.
Preferred Qualifications:
• Experience supporting DoD cybersecurity programs.
• Knowledge of Zero Trust security architectures.
• Familiarity with cloud security (AWS, Azure, or Google Cloud).
• Proficiency with automation tools like Ansible, Terraform, or scripting (Python, PowerShell, Bash).
• Experience with DevSecOps and secure software development lifecycle (SDLC) best practices
Location: Huntsville, AL, United States
Schedule: Full-time - On Site
Minimum Clearance Required: Secret
Job Description:
We are seeking a Senior Cyber Engineer to support our Department of Defense (DoD) client in implementing cutting-edge cybersecurity solutions. This position will focus on securing mission-critical software, performing technical security assessments, and supporting Risk Management Framework (RMF) compliance.
The ideal candidate will have hands-on experience with cybersecurity best practices, compliance frameworks, and vulnerability management tools.
Key Responsibilities:
• Conduct technical evaluations of software requirements to ensure cybersecurity standards are met. • Implement, maintain, and monitor technical security controls, including STIGs, SRGs, and security hardening guidelines.
• Review and analyze code, configurations, and system design changes for security risks, providing approval or remediation recommendations.
• Validate security controls for operating systems, applications, and network appliances, making enhancements as needed.
• Perform vulnerability scanning, track findings, and develop mitigation plans using ACAS and other cybersecurity tools.
• Conduct static and dynamic code analysis, documenting security weaknesses and recommending improvements.
• Assist in updating RMF system artifacts, such as system diagrams, hardware/software inventories, and interface listings.
• Maintain knowledge of emerging cybersecurity threats and industry best practices to enhance security postures.
Required Qualifications:
• Education: Bachelor's degree in Cybersecurity, Computer Science, or a related field (or 6+ years of equivalent work experience).
• Experience: Minimum of 5+ years in cybersecurity engineering, security compliance, and risk management.
• Certifications: Security+ CE or higher (CISSP, CEH, or equivalent preferred).
• Technical Skills: o Experience with C, C++, Java, YAML for secure coding and system development. o Working knowledge of DISA STIGs/SRGs and STIG tools for compliance. o Experience with static and dynamic code analysis tools (e.g., Parasoft, Coverity, Fortify). o Hands-on experience with vulnerability assessment and remediation using ACAS/Nessus. o Familiarity with RMF documentation and security compliance frameworks. o Strong analytical skills for evaluating security risks and recommending solutions.
Preferred Qualifications:
• Experience supporting DoD cybersecurity programs.
• Knowledge of Zero Trust security architectures.
• Familiarity with cloud security (AWS, Azure, or Google Cloud).
• Proficiency with automation tools like Ansible, Terraform, or scripting (Python, PowerShell, Bash).
• Experience with DevSecOps and secure software development lifecycle (SDLC) best practices
group id: cxjudgpa
