infosec-jobs.com

Information Systems Security Engineer - Secret Required

Reston, VA

Full Time Mid-level / Intermediate Clearance required USD 50K - 93K *
cFocus Software Incorporated logo

cFocus Software Incorporated

Our exclusive ATO as a Service™ software & expert services automate FISMA RMF & FedRAMP compliance.

View company page

Apply now Apply later

cFocus Software is seeking an Information Systems Security Engineer to join our Cross Domain Solution program in Reston, VA. Active Secret Clearance Required.

Responsibilities:
  • Advise on in-depth security design review and threat/risk assessments.
  • Provide inputs to technical artifacts, including Plans of Action and Milestones (POA&Ms), Security Control Traceability Matrices (SCTM), and Risk Assessment Reports (RARs).
  • Conduct site visits and assessments to inspect IA plans and security control implementations and support Incident Response Team (IRT) activities.
  • Work as part of a team reviewing and assessing Risk Management Framework (RMF) authorization body of evidence for classified information systems, to include: System Security Plan (SSP), Security Control Traceability Matrix (SCTM), Continuous Monitoring Plan, Incident Response Plan, Access Control Plan, Security Assessment Plan, etc.
  • Be the technical expert for cyber security in the government program management office.
Requirements:
  • DoD 8570 IAT Level II certification or higher (Sec+, CISSP, CASP, etc.)
  • 5+ years of experience with Windows and Linux environments.
  • 5+ years of experience with Xacta
  • 2+ years of using information security and assurance practices and principles.
  • 5+ years of experience with virtualization or cloud environments
  • 5+ years of implementing NIST 800-53, Rev 4 and the Risk Management Framework (RMF)
  • Active Secret Clearance
Nice to have:
  • Bachelor's Degree in Cyber Security, Computer Science, Information Technology, or related field
  • Other Security related certification (Cloud, SIEM, forensics, Linux, Windows, etc)
  • Experience working in a DevSecOps project environment.
  • Formerly or currently a system administrator, developer, or engineer.
  • Experience with MS Active Directory, Splunk, ACAS/Nessus, McAfee, Windows, Linux, AWS Security, etc.
  • Strong verbal and written communication skills. Able to engage with users in a professional manner and present technical concepts plainly to semi-technical customers. Ability to interface with seasoned Government personnel.
  • Ability to work in a matrixed team environment and support multiple different efforts as needed.
  • Desire to learn new technologies and tools and willing to share your experience with the team.
Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: ACAS Active Directory AWS CASP+ CISSP Clearance Clearance Required Cloud Computer Science DevSecOps DoD DoDD 8570 Forensics Incident response ISSE Linux Monitoring Nessus NIST NIST 800-53 Risk assessment Risk Assessment Report Risk management RMF SCTM Security assessment SIEM Splunk System Security Plan Windows

Region: North America
Country: United States
Job stats:  5  1  0
Category: Security Engineering Jobs

More jobs like this

« Back to job search To the top ↑

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.