Sr. Cyber Security Engineer
Bethesda, MD
Hatch IT
hatch I.T. is a specialized technology recruiting firm supporting emerging tech startups that need to grow their engineering, data, and product teams.
hatch I.T. is partnering with cyDaptiv to find a Senior Cyber Security Engineer (CSE). See details below:
About The Role:cyDaptiv Solutions is seeking a Senior Cyber Security Engineer (CSE) with experience supporting Federal and DoD cyber security and information assurance projects. The CSE must have knowledge of the Risk Management Framework (RMF), security principles, concepts, policies and regulations and be able to identify risks in information systems and work with system administrators and engineers to resolve security weaknesses.The successful candidate will have experience assessing security control implementation and system configurations using automated tools and manual check lists; determining compliance/risk severity; recommending remediations; and have ability / skillset to implement fixes. The candidate must also have experience working with stakeholders at various organizational levels and be able to manage and coordinate assessment activities in a collaborative manne
About the Company:cyDaptiv Solutions, Inc. is a firm specializing in Systems Engineering, Cybersecurity Solutions Integration, Risk Management & Compliance, IT Services, and Project Management. cyDaptiv’s Information Technology professionals have significant experience delivering services for enterprise-scale IT systems in a variety of DoD environments. Led by PMP-certified Project Managers, cyDaptiv’s skilled and experienced technology professionals deliver high-impact results in short-term focused engagements and long-term IT service and support delivery in both CONUS and OCONUS locations. We have dynamic teams supporting projects in the US (including Hawaii), Korea, Japan, and Germany
About The Role:cyDaptiv Solutions is seeking a Senior Cyber Security Engineer (CSE) with experience supporting Federal and DoD cyber security and information assurance projects. The CSE must have knowledge of the Risk Management Framework (RMF), security principles, concepts, policies and regulations and be able to identify risks in information systems and work with system administrators and engineers to resolve security weaknesses.The successful candidate will have experience assessing security control implementation and system configurations using automated tools and manual check lists; determining compliance/risk severity; recommending remediations; and have ability / skillset to implement fixes. The candidate must also have experience working with stakeholders at various organizational levels and be able to manage and coordinate assessment activities in a collaborative manne
About the Company:cyDaptiv Solutions, Inc. is a firm specializing in Systems Engineering, Cybersecurity Solutions Integration, Risk Management & Compliance, IT Services, and Project Management. cyDaptiv’s Information Technology professionals have significant experience delivering services for enterprise-scale IT systems in a variety of DoD environments. Led by PMP-certified Project Managers, cyDaptiv’s skilled and experienced technology professionals deliver high-impact results in short-term focused engagements and long-term IT service and support delivery in both CONUS and OCONUS locations. We have dynamic teams supporting projects in the US (including Hawaii), Korea, Japan, and Germany
Responsibilities:
- Implementing the DoD Assess and Authorize (A&A) process IAW DoDI 8510.01 Risk Management Framework (RMF) for DoD Information Technology (IT).
- Ability to manage RMF Artifacts in eMASS.
- Assess systems using automated tools such as ACAS / Nessus, and Security Content Automation Protocol (SCAP), and Manual STIGs reviews.
- Experience testing and implementing DoD STIGs and devising mitigation strategies, applying Information Assurance Vulnerability Management (IAVM) patches to systems and complete security compliance scans upon applying patches or updates to the system.
- Experience drafting Architecture Diagram, Hardware Software Inventory List, Ports Protocols Services Registration, and Data Flow diagram.
- Introduce new team members to project tasks and expectations.
- Additional details of the position will be provided to qualified applicants
Qualifications:
- Bachelor’s degree or higher in Computer Science, Information Systems/Technology or engineering discipline preferred.
- Strong technical understanding of the network and systems operations in secured DoD environments.
- Strong understanding of SDLC process in a DoD environment.
- 7 years of relevant experience in Federal and DoD network and computing environments.
- 4 years of experience supporting DoD Risk Management Framework (RMF) and implementation of technical controls.
- Meet DOD 8570/8140 certification requirements for IAT Level II. Includes: CCNA Sec, GISCP, GSEC, Security+ CE, CND, or SSCP.
- Hands-on experience with tools such as NMAP, ACAS/Nessus, and Security Content Automation Protocol (SCAP), and STIGViewer.
- Experience using DoD SRGs/STIGs and other manual system configuration review methods, developing mitigation strategies, and applying systems and vulnerability patches.
- Strong written and verbal communication skills to provide IA / cybersecurity guidance to relevant project stakeholders.
- Ability to work independently with minimal supervision
- Must hold an Active Secret or clearable at the Secret Level
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Category:
Security Engineering Jobs
Tags: ACAS Automation CND Compliance Computer Science DoD DoDD 8140 DoDD 8570 eMASS GSEC Nessus Nmap Risk management RMF SCAP SDLC SSCP STIGs Vulnerability management
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Penetration Tester jobsInformation Security Specialist jobsSenior Cybersecurity Engineer jobsInformation Security Officer jobsInformation Systems Security Officer jobsSenior Cyber Security Engineer jobsPrincipal Security Engineer jobsInformation System Security Officer jobsSenior Network Security Engineer jobsCloud Security Architect jobsChief Information Security Officer jobsSecurity Consultant jobsSenior Penetration Tester jobsStaff Security Engineer jobsSecurity Specialist jobsSenior Information Security Analyst jobsCyber Security Specialist jobsIT Security Engineer jobsThreat Intelligence Analyst jobsCyber Security Architect jobsInformation System Security Officer (ISSO) jobsSecurity Operations Analyst jobsCybersecurity Consultant jobsSenior Product Security Engineer jobsSenior Information Security Engineer jobs
CI/CD jobsEncryption jobsSDLC jobsMalware jobsRMF jobsSQL jobsIPS jobsGDPR jobsForensics jobsIDS jobsEDR jobsSplunk jobsTop Secret jobsFinance jobsDoDD 8570 jobsBash jobsITIL jobsCRISC jobsCompTIA jobsTerraform jobsOWASP jobsUNIX jobsIntrusion detection jobsGIAC jobsDocker jobs
TCP/IP jobsData Analytics jobsSANS jobsActive Directory jobsThreat detection jobsBanking jobsCCSP jobsPolygraph jobsClearance Required jobsOSCP jobsIT infrastructure jobsOracle jobsAnsible jobsSOX jobsVPN jobsSOC 2 jobsJavaScript jobsSecurity strategy jobsSOAR jobsCyber defense jobsDNS jobsJira jobsSAP jobsHIPAA jobsArtificial Intelligence jobs