Today
Secret
Mid Level Career (5+ yrs experience)
$115000.00 - $122000.00 per year
No Traveling
Unspecified
Engineering - Mechanical
Bridgeton, MO (On/Off-Site)
Job Title: Senior Cybersecurity Engineer
Job Location: Bridgeton MO 63044
Onsite Requirements:
* Security
* NIST
* Engineer
Job Description:
* Client is seeking a full time Senior Cybersecurity Engineer for our Bridgeton, MO facility.
* We are seeking a highly motivated and experienced individual to join our team, focusing on the security assessment and risk management of IT systems embedded within tactical vehicles.
* This role will be critical in ensuring the confidentiality, integrity, and availability of sensitive data and systems operating in challenging and dynamic environments.
* The ideal candidate will possess a deep understanding of the Risk Management Framework (RMF) and have demonstrable experience applying it to complex, real-world systems.
* This role requires hands-on technical expertise, strong analytical skills, and the ability to work both independently and collaboratively within a team.
Job Responsibilities:
* Risk Management Framework (RMF) Implementation: Lead and execute the RMF process for IT systems within tactical vehicles, from system categorization (SP 800-60) through security control selection (SP 800-53), implementation, assessment, authorization, and continuous monitoring.
* Security Assessments: Conduct comprehensive security assessments of tactical vehicle IT systems, including hardware, software, and network configurations. This includes vulnerability scanning, penetration testing (where appropriate and authorized), security architecture reviews, and configuration analysis.
* Documentation: Prepare and maintain detailed RMF documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessments, Plans of Action and Milestones (POA&Ms), and other required artifacts. Ensure documentation is compliant with relevant standards and regulations.
* Security Control Implementation and Validation: Work with engineering and IT teams to implement and validate security controls on tactical vehicle systems. This may involve hands-on configuration of systems, development of security hardening guidelines, and collaboration on system design.
* Vulnerability Management: Identify, analyze, and prioritize vulnerabilities discovered through assessments or continuous monitoring. Develop and recommend remediation strategies, working with technical teams to implement solutions.
* Compliance: Ensure that all security activities and documentation comply with relevant Department of Defense (DoD) instructions, NIST publications (specifically 800-series), and other applicable regulations and policies (e.g., DoDI 8510.01, DoDI 8500.01).
* Collaboration: Work effectively with cross-functional teams, including engineers, system administrators, program managers, and government representatives, to ensure security is integrated throughout the system lifecycle.
* Continuous Improvement: Stay current with the latest cybersecurity threats, vulnerabilities, and technologies relevant to tactical vehicle systems. Recommend improvements to security processes and technologies.
* Travel: This position may require travel to test facilities, potentially up to 25% travel, occasional travel for 1-2 week periods.
* Additional Responsibilities: Support, communicate, reinforce and defend the mission, values and culture of the organization. Attend appropriate engineering, customer or business meetings. Lead less-experienced engineers.
Qualifications:
* Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Electrical Engineering, or a related technical field
* 5+ years of experience in cybersecurity engineering, with a demonstrated focus on applying the Risk Management Framework (RMF). This experience must include performing security assessments of IT systems.
* Strong understanding of NIST SP 800-37, SP 800-53, SP 800-60, SP 800-160, and other relevant NIST publications
* Experience conducting security assessments, including vulnerability scanning and security architecture review
* Experience with vulnerability scanning tools, specifically Nessus or ACAS
* Experience with a variety of security assessment tools, such as static code analyzers, dynamic application security testing (DAST) tools, or network analysis tools
* Proficiency in both Linux and Windows operating systems
* Experience with scripting in one or more common scripting languages (e.g., Python, PowerShell, Bash, Perl)
* Experience with the configuration, security hardening, and/or troubleshooting of network hardware
* Experience with security hardening techniques for operating systems (e.g., Windows, Linux), network devices, and applications
* Excellent written and verbal communication skills, with the ability to clearly articulate technical information to both technical and non-technical audiences
* Ability to work independently and as part of a team
* Strong problem-solving and analytical skills
* S. Citizenship required and must have the ability to obtain a DoD security clearance now or within 6 months
* Ability to travel up to 25% as required
* ** This client is a US Federal Government contractor and is legally required to hire US Citizens. US Citizens will only be considered for this role. **
Job Location: Bridgeton MO 63044
Onsite Requirements:
* Security
* NIST
* Engineer
Job Description:
* Client is seeking a full time Senior Cybersecurity Engineer for our Bridgeton, MO facility.
* We are seeking a highly motivated and experienced individual to join our team, focusing on the security assessment and risk management of IT systems embedded within tactical vehicles.
* This role will be critical in ensuring the confidentiality, integrity, and availability of sensitive data and systems operating in challenging and dynamic environments.
* The ideal candidate will possess a deep understanding of the Risk Management Framework (RMF) and have demonstrable experience applying it to complex, real-world systems.
* This role requires hands-on technical expertise, strong analytical skills, and the ability to work both independently and collaboratively within a team.
Job Responsibilities:
* Risk Management Framework (RMF) Implementation: Lead and execute the RMF process for IT systems within tactical vehicles, from system categorization (SP 800-60) through security control selection (SP 800-53), implementation, assessment, authorization, and continuous monitoring.
* Security Assessments: Conduct comprehensive security assessments of tactical vehicle IT systems, including hardware, software, and network configurations. This includes vulnerability scanning, penetration testing (where appropriate and authorized), security architecture reviews, and configuration analysis.
* Documentation: Prepare and maintain detailed RMF documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessments, Plans of Action and Milestones (POA&Ms), and other required artifacts. Ensure documentation is compliant with relevant standards and regulations.
* Security Control Implementation and Validation: Work with engineering and IT teams to implement and validate security controls on tactical vehicle systems. This may involve hands-on configuration of systems, development of security hardening guidelines, and collaboration on system design.
* Vulnerability Management: Identify, analyze, and prioritize vulnerabilities discovered through assessments or continuous monitoring. Develop and recommend remediation strategies, working with technical teams to implement solutions.
* Compliance: Ensure that all security activities and documentation comply with relevant Department of Defense (DoD) instructions, NIST publications (specifically 800-series), and other applicable regulations and policies (e.g., DoDI 8510.01, DoDI 8500.01).
* Collaboration: Work effectively with cross-functional teams, including engineers, system administrators, program managers, and government representatives, to ensure security is integrated throughout the system lifecycle.
* Continuous Improvement: Stay current with the latest cybersecurity threats, vulnerabilities, and technologies relevant to tactical vehicle systems. Recommend improvements to security processes and technologies.
* Travel: This position may require travel to test facilities, potentially up to 25% travel, occasional travel for 1-2 week periods.
* Additional Responsibilities: Support, communicate, reinforce and defend the mission, values and culture of the organization. Attend appropriate engineering, customer or business meetings. Lead less-experienced engineers.
Qualifications:
* Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Electrical Engineering, or a related technical field
* 5+ years of experience in cybersecurity engineering, with a demonstrated focus on applying the Risk Management Framework (RMF). This experience must include performing security assessments of IT systems.
* Strong understanding of NIST SP 800-37, SP 800-53, SP 800-60, SP 800-160, and other relevant NIST publications
* Experience conducting security assessments, including vulnerability scanning and security architecture review
* Experience with vulnerability scanning tools, specifically Nessus or ACAS
* Experience with a variety of security assessment tools, such as static code analyzers, dynamic application security testing (DAST) tools, or network analysis tools
* Proficiency in both Linux and Windows operating systems
* Experience with scripting in one or more common scripting languages (e.g., Python, PowerShell, Bash, Perl)
* Experience with the configuration, security hardening, and/or troubleshooting of network hardware
* Experience with security hardening techniques for operating systems (e.g., Windows, Linux), network devices, and applications
* Excellent written and verbal communication skills, with the ability to clearly articulate technical information to both technical and non-technical audiences
* Ability to work independently and as part of a team
* Strong problem-solving and analytical skills
* S. Citizenship required and must have the ability to obtain a DoD security clearance now or within 6 months
* Ability to travel up to 25% as required
* ** This client is a US Federal Government contractor and is legally required to hire US Citizens. US Citizens will only be considered for this role. **
group id: softwinc
