Information Systems Security Engineer - Secret Required
Reston, VA
Full Time Mid-level / Intermediate Clearance required USD 50K - 93K *
cFocus Software Incorporated
Our exclusive ATO as a Service™ software & expert services automate FISMA RMF & FedRAMP compliance.Responsibilities:
- Advise on in-depth security design review and threat/risk assessments.
- Provide inputs to technical artifacts, including Plans of Action and Milestones (POA&Ms), Security Control Traceability Matrices (SCTM), and Risk Assessment Reports (RARs).
- Conduct site visits and assessments to inspect IA plans and security control implementations and support Incident Response Team (IRT) activities.
- Work as part of a team reviewing and assessing Risk Management Framework (RMF) authorization body of evidence for classified information systems, to include: System Security Plan (SSP), Security Control Traceability Matrix (SCTM), Continuous Monitoring Plan, Incident Response Plan, Access Control Plan, Security Assessment Plan, etc.
- Be the technical expert for cyber security in the government program management office.
- DoD 8570 IAT Level II certification or higher (Sec+, CISSP, CASP, etc.)
- 5+ years of experience with Windows and Linux environments.
- 5+ years of experience with Xacta
- 2+ years of using information security and assurance practices and principles.
- 5+ years of experience with virtualization or cloud environments
- 5+ years of implementing NIST 800-53, Rev 4 and the Risk Management Framework (RMF)
- Active Secret Clearance
- Bachelor's Degree in Cyber Security, Computer Science, Information Technology, or related field
- Other Security related certification (Cloud, SIEM, forensics, Linux, Windows, etc)
- Experience working in a DevSecOps project environment.
- Formerly or currently a system administrator, developer, or engineer.
- Experience with MS Active Directory, Splunk, ACAS/Nessus, McAfee, Windows, Linux, AWS Security, etc.
- Strong verbal and written communication skills. Able to engage with users in a professional manner and present technical concepts plainly to semi-technical customers. Ability to interface with seasoned Government personnel.
- Ability to work in a matrixed team environment and support multiple different efforts as needed.
- Desire to learn new technologies and tools and willing to share your experience with the team.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: ACAS Active Directory AWS CASP+ CISSP Clearance Clearance Required Cloud Computer Science DevSecOps DoD DoDD 8570 Forensics Incident response ISSE Linux Monitoring Nessus NIST NIST 800-53 Risk assessment Risk Assessment Report Risk management RMF SCTM Security assessment SIEM Splunk System Security Plan Windows
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Penetration Tester jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Sr. Security Engineer jobs
- Open Senior Network Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open DoD-related jobs