Cyber Security Engineer with Secret Clearance
Elizabeth City, NC, United States
Full Time Mid-level / Intermediate Clearance required USD 100K - 187K *
VOSAGO
Vosago specializes in IT Staffing, IT Federal Subcontracting, and Executive Recruiting.The Information Systems Security Officer (ISSO) / Cybersecurity Engineer will report directly to the CCM Project Manager, while independently engaging in enterprise and system level cybersecurity-related tasks.
Position: Full-Time
Location: Remote and 2 days onsite in Elizabeth City NC. All new hires will work Monday through Friday on-site for no less than 30 days before being granted telework privileges up to 3 days a week.
Clearance: Active DoD Secret Clearance
Citizenship: U.S. citizenship is required
- Conduct reviews of NIST, OMB, DHS, DoD, FISMA policies, mandates, and vendor publications related to enterprise technologies and recommend changes to organizational policy and procedures affected by new guidance.
- Support authoritative order review, research, impact assessment, distribution, compliance determination, tracking, and reporting.
- Monitor identified vulnerabilities throughout their lifecycle from discovery to mitigation using ACAS, HBSS, STIG Viewer or other industry tools.
- Support the Plan of Actions and Milestones (POA&M) program to ensure customer systems have accurately and fully provided information for POA&M activities.
- Support the collection and use of data for our critical Information Assurance Vulnerability Management (IAVM) Program using various security tools (i.e. ACAS, HBSS, ADUC, Burp Suite, etc).
- Develop and implement hardware and software evaluation (sandboxing) capability and procedures prior to introduction to network computing environment.
- Support security impact analysis and risk management decision cycle.
- Maintain a thorough understanding of computer hardware, network devices, components, security appliances etc. to enable review of vulnerabilities and validate developer mitigation courses of action.
Communications/Documentation Responsibilities
- Provide detailed security-related reports including data, analyses, and conclusions upon completion of tests, scans, and assessments, including mitigations and, if indicated, appropriate escalation of identified risks and vulnerabilities.
- Lead and/or participate in the development of information system security policy and standards, including writing guidelines, standards, procedures, and other technical documentation (technical roadmaps, project plans, etc.).
Leadership Responsibilities
- Maintain communication with project-level stakeholders and manage project scope and expectation to ensure requirements are understood, enabling swift delivery.
- Maintain proficiency of their knowledge of the latest security engineering techniques and technologies, advances in combating unauthorized access to information systems, and industry best practices.
- Assist CCM team members with keeping up to date on latest security engineering techniques and technologies, advances in combating unauthorized access to information systems, and industry best practices.
Required Qualifications & Skills
- U.S. citizenship
- Secret Clearance
- Bachelor’s degree or higher in an Information Technology field or equivalent work experience.
- Possession of one of these IAT Level II Security Certifications:
- Cisco Certified Network Associate - Security (CCNA Security)
- CompTIA Cybersecurity Analyst (CySA+)
- Global Industrial Cyber Security Professional (GICSP)
- GIAC Security Essentials (GSEC)
- CompTIA Security+ (SEC+ CE)
- Certified Network Defender (CND)
- ISC2 Systems Security Certified Practitioner (SSCP)
- Cisco Certified Network Associate - Security (CCNA Security)
- Experience with Security Automation Framework (SAF) tools and scripting in Ruby a plus (but not required).
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: ACAS Automation Burp Suite Clearance CND Compliance CompTIA CySA+ DoD FISMA GIAC GICSP GSEC Industrial NIST POA&M Risk management Ruby Scripting Security Impact Analysis SSCP Vulnerabilities Vulnerability management
Perks/benefits: Career development
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.