Senior Cyber Security Engineer
ENSCO
- Colorado Springs, CO
- $125,000-143,000 per year
- Permanent
- Full-time
- Assist ISSM gaining and maintaining RMF accreditation packages for current and future SCN networks.
- Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy.
- Passive evaluations such as compliance audits and active evaluations such as vulnerability assessments.
- Establishing strict program control processes to ensure mitigation of risks and support obtaining certification and accreditation of systems.
- Support of process, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections and periodic audits.
- Assist in the implementation of the required government policy (i.e., NISPOM, NIST 800, JSIG), make recommendations on process tailoring, participate in and document process activities.
- Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards.
- Support the formal Security Test and Evaluation required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports.
- Document the results of assessment and authorization activities and technical or coordination activity and prepare the system Security Plans and update the Plan of Actions and Milestones.
- Periodically conduct a complete review of each system's audits and monitor corrective actions until all actions are closed.
- Prepare and review Security test and Evaluation (ST&E) plans and test reports, analytical evaluation of systems' applicable RMF controls and mitigations, system hardening procedures, and development of Cyber requirements.
- Demonstrated extensive experience developing policies and procedures that mitigate risk from a Cybersecurity perspective.
- Proven success with Assessment and Authorization process for Space Force and/or Air Force Space Command.
- Current eMASS and/or Xacta user. Extensive experience using these applications.
- Previous A&A experience supporting Space Force systems.
- Evaluating security vulnerabilities and mitigation strategies for networked and non-networked systems.
- IASAE Level III certification (CISSP-ISSEP, CISSP-ISSAP)
- Current TS-SCI Security Clearance.
- Bachelor's Degree in Systems Engineering Field, Software Engineering, Computer Science, and/or equivalent with 5 years of specific experience supporting DOD Cyber/ Information Systems Security.
- Demonstrated understanding and experience with DoD Cyber Security policy and instructions related to RMF.
- Understanding of the system certification process.
- Experience with information assurance risk assessments.
- 8140 IAT Level III or IAM Level II or higher-level certification.
- Understanding of information security principles, DoD STIGs, and A&A processes for systems.
- Current working knowledge of eMASS.
- Strong written and verbal communication skills.
- Strong problem-solving skills.
- AN ACTIVE DOD SECRET SECURITY CLEARANCE IS REQUIRED FOR THIS POSITION FOR WHICH, YOU MUST BE A U.S. CITIZEN
- Annual education tuition reimbursement
- 401(k) Plan with up to 6% dollar-for-dollar company match
- Medical, dental and vision insurance
- Spending Accounts - FSA, Dependent Care FSA, and HSA
- Leave available for holidays, bereavement, jury duty, military service, family medical leave, and as required by State law
- Paid Time Off
- 100% Company paid Employee Assistance Program and life, disability, accidental death and dismemberment, business travel accident, and professional liability insurance (employee only)
- Other voluntary programs, including supplemental life, auto and home insurance, and legal program
- Computer purchase discount
- Recognition and reward programs
- Patent awards
- Technical paper awards for presentations and publications
- Recruitment awards
- Length of service awards
- Community service recognition