Principal Cyber Security Engineer
Description:
SES Space & Defense is a trusted partner ensuring mission success for our customers by blanketing the globe with multi orbit end to end satellite and technology solutions which provide reliable, secure, and high bandwidth connectivity. We strive to be the only solution when success is critical, and we will take care of our employees because we recognize they are our competitive advantage.The SES S&D Team, along with our customers and partners, will achieve success through integrity, honor, and commitment.
Principal Cyber Security Engineer
Hybrid from Reston, VA or Tampa, FL
Position Summary
Are you passionate about cybersecurity and ready to take on a pivotal role in a dynamic and growing Cyber Organization? As a Principal Cyber Engineer, you'll be at the forefront of designing, integrating, and implementing cutting-edge security features, products, and procedures to ensure our systems achieve operational certification and authorization.
In this role, you'll be the go-to expert for assessing and mitigating system vulnerabilities, ensuring our defenses are robust and resilient. Your expertise will be crucial as you act as the Subject Matter Expert (SME) for our defined program cybersecurity efforts and activities.
Our ideal candidate will have adeep understanding of cybersecurity principles, particularly in RMF and NIST standards; be acollaborative team player who can work cross-functionally; and exhibit exceptional communication skills, both written and verbal, suitable for all levels of users.If you're ready to make a significant impact and help us safeguard our systems, we want to hear from you! Join us and be a part of a team that's shaping the future of cybersecurity.
Primary Responsibilities
Ensure system compliance within the Risk Management Framework (RMF) and associated policy, procedures, and guidelines
Provide hands-on cybersecurity expert support, guidance, and quality assurance for program and for team members
Must serve as Subject Matter Expert (SME) on system certifications and authorization matters for program
Provide review of customer required security plans to include Concept of Operations (CONOPS), Operations Security (OPSEC), standard practices, and procedures
Interfacing with Program Management ensuring compliance with established program security plans and customer directives
Review, prepare, and update Authority to Operate (ATO) packages in accordance with NIST Risk Management Framework (RMF) and customer policy, procedures, and guidelines
Identify and communicate changes that might affect Information System (IS) security authorization status
Performing self-inspections and investigations as required by government regulations
Participating in customer audits and inspections
Analyzing, interpreting, and verifying disaster recovery/contingency plans assuring the rapid recovery in the event of an emergency or disaster
Manager of vulnerability and patching program providing weekly status updates to managing organization
Developing, revising, and maintaining Plan of Action and Milestones documentation (POA&Ms)
Participate in the aligning and coordinating of patching and hardening efforts to complement schedules as necessary
Developing, revising, and maintaining continuous monitoring plans - schedule frequency and manning
As member of the Change Control Board (CCB), submit and defend change and configuration requirements in a timely manner
Developing, revising, and maintaining all system information security related policies and procedures
Preparing internal and external customer reports in a timely manner
Update job knowledge by participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations
Collaborate and support cross-functional engineering team
Support the hardening of critical infrastructure, site visit and validations (NOCs/SACs)
Required Qualifications
Must have one or more of the following DoD 8570.01-M required certifications: CISSP, CISM, CASP, or GSLC, SANS CEH, GIAC, etc
Bachelor's (BS) Degree in Computer Science or related field required
Eight (8) or more years of closely related experience/expertise in Information Assurance/Cybersecurity Systems Management; Vulnerability Analysis, Mitigation and Management; Systems Auditing, Information Systems or Engineering Management; and/or Security Test & Evaluation
U.S Citizen with an ability to obtain, and maintain,minimum TOP SECRET (TS)
Experience conducting Information System vulnerability scanning
Familiarity with Tenable NESSUS or Horizon3 NodeZero and SCTM, SCAP, and eMASS
Experience as an ISSO and ISSM
Innate ability to work in a dynamic environment and effectively interact with numerous DoD, military/civilian personnel, and industry partners
Preferred Qualifications
Active DOD Security Clearance, TS or higher
Military Satellite Communications experience
The base salary range for this full-time position is $145,000.00 - $165,000.00 + bonus + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training.
SES Space & Defense is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, pregnancy, genetic information, disability, status as a protected veteran, or any other protected category under applicable federal, state, and local laws. #LI-Hybrid #LI-DR1