Senior Cyber Security Engineer
Description:
This position is supporting the next generation in developing mission critical systems for our national defense. You would be a part of creating the most effective and state of the art technologies for Intelligence, Surveillance and Reconnaissance supporting the Army, Navy, Air Force, Special Forces, and other Federal Government agencies working with our military.
If you are interested in meaningful work on the newest innovations in defense,
we invite you to join our team!
Responsibilities:
Recognize and incorporate various security designs and lessons learned
Regular contact with senior levels of security work groups
Lead security work groups
Work under limited direction
Contact with project leaders and other professionals within the Engineering department and with project teams
Frequent contact with the external customers’ security professionals
Qualifications:
Bachelor’s degree in Engineering, or a related Science or Mathematics field. Also requires 8+ years of job-related experience, or a Master's degree plus 6 years of job-related experience.
TS/SCI Clearance
Experience with applying NIST Risk Management Framework
Experience with specific RMF overlays
Strong knowledge of cyber security technology and trends
Effective in communicating issues, impacts, and corrective actions as they affect the cyber design and implementation
Strong ability in reporting relevant cyber systems engineering design
Experience with FedRAMP, DoD Impact Levels, and cloud SRG and reference implementations
Strong security and administration skills in Linux and Windows
Familiarity with cloud native environments and tools such as containers and container orchestration (e.g. Kubernetes, Rancher)
Knowledge of standard DoD security tools – STIGs, ACAS / Nessus, HBSS / EPO, etc.
Hands-on knowledge with Identity Management systems – Active Directory, LDAP/Kerberos, SAML, OAuth, etc.
Strong knowledge of network security: DNS, TLS, firewalls, NAT, intrusion detection, etc. Software-Defined Networks (SDN) a plus.
Broad understanding of security standards such as CVE, CVSS, various NIST standards, FIPS 140 and 199, etc.
Experience working in a modern software development environment (Agile, CI/CD, DevSecOps)
Strong written and verbal communications skills
Good data analysis skills with, e.g., Word, Excel, Python, or other tools
Good communications skills: interpersonal, written, and public speaking / presentations
Experience with doc-as-code, markdown, ansible and test automation frameworks