Cyber Security Engineer

Applied Research Solutions is seeking a full-time Cyber Security Engineer, located at Wright-Patterson AFB, OH support the ISR Crosscutter program.

Why Work with us? 

Applied Research Solutions (ARS) is respected as a world-class provider of technically integrated solutions as we deliver premier talent and technology across our focused markets for unparalleled, continuous mission support. Awarded a Best Places to Work nominee since 2020, ARS recognizes that without our career- driven, loyal professionals, we would not be able to deliver state-of-the-art results for our mission partners. We firmly believe that prioritizing our employees is of the upmost importance. We provide a culture where our employees are challenged to meet their career goals and aspirations, while still obtaining a work/life balance. ARS employees are motivated through our industry competitive benefits package, our awards and recognition program, and personalized attention from ARS Senior Managers.  

Responsibilities Include: 

• The Contractor shall provide expert weapons system cybersecurity guidance and recommendations to program engineers, program managers, acquisition security program executive officer, Milestone Decision Authority (MDA), and AO.
• The Contractor shall have current and demonstrated background related to supply chain risk management to prevent an adversary subverting weapon systems and critical networks.
• The Contractor shall translate and provide comprehensive NIST 800-53 requirements to ensure SSE and procurement solutions are incorporated into an integrated program protection scheme based upon known or anticipated risks. Knowledge of systems engineering principles, network architecture analysis, verification and validation of requirements, and understanding the risk management process and understanding of the operational context of weapon systems employment is critical.
• The Contractor shall provide subject matter expertise to support the AFPEO’s intent to execute RMF to support assessment & authorization of assigned systems including generating required artifacts such as Interim Authority to Test (IATT), Authority to Connect (ATC), and Authority to Operate (ATO) packages as well as associated reports and presentations.
• The Contractor shall have verifiable experience with Authorization Officials (AOs), their associated action officers and their processes, preferably for platform systems.
• The Contractor shall execute risk reduction based policies and procedures, and develop system specific comprehensive cybersecurity processes to include implementation of continuous monitoring.
• The Contractor shall document system architectures, utilizing original equipment manufacturer documentation and system interface specifications, to support the cyber analysis, identification, selection, and tailoring of security and privacy controls necessary to protect the system.
• The Contractor shall provide expert level evaluation of designs and proposed implementation solutions to defend weapon systems and critical networks against malicious and non-malicious exploitation throughout the full acquisition lifecycle of portfolio programs. The Contractor shall evaluate threat data and develop residual risk recommendations and mitigations to senior DoD and AF leadership based on identification and analysis of weapons vulnerabilities.
• The Contractor shall review and analyze interoperability requirements and shall review, develop and evaluate resultant specifications and internal and external Interface Control Documents (ICDs).
• The Contractor shall review and propose technical recommendations at both the strategic and operational levels regarding critical technologies requiring protection, Program Protection Plans (PPP), and anti-tamper (AT) plans, cyber findings, vulnerabilities, and risks.
• The Contractor shall conduct technical evaluations on vendors' proposals to ensure that cybersecurity requirements are properly addressed.
• The Contractor shall assist and advise various working groups, planning teams and IPTs by preparing and reviewing agendas, coordinating topics and speakers, and researching, tracking and closing action items.
• The Contractor shall support multiple systems security working groups to develop a secure, resilient aircraft based on SSE principles.
• The Contractor shall provide expert identification, documentation, and assessment of threats, cyber findings, vulnerabilities, attack scenarios, impacts if exploited, and likely timelines for exploitation.
• The Contractor shall provide stakeholders with on-time deliverables, RMF artifacts, cyber impact assessments, and approaches to meet growing ISR & SOF requirements. 
• The Contractor shall deliver solutions which are ready for the AO approval under significantly reduced timelines required by special operations and quick reaction capability programs.
• The Contractor shall ensure that contractual documentation, such as statements of work, CDRLs, and SRDs, incorporate cybersecurity requirements that support the development of the assessment and authorization process.
• The Contractor shall be able to support up to 33% of contract time on travel to support remote site, site visits, site audits, design reviews and engineering implementation reviews of network architectures.
• Other duties as assigned

Qualifications/Technical Experience Required:

• Must be a US Citizen 
• Top Secret clearance required

• The Contractor must have demonstrated expert level DoD acquisition processes experience related to acquisition platform and sensor cybersecurity engineering along with an expert understanding of Risk Management Framework (RMF), Cybersecurity strategies, developing cyber resilient systems of systems (SoS), systems engineering, network engineering, and technical interface design to ensure weapon systems meet cyber resilient and Systems Security Engineering (SSE) criteria.

• Senior level cybersecurity positions will require IAT level 3 and/or level 2 certifications. be DoD 8570 certified and have a current T-5 special sensitive eligibility on the first day of the task order. 

• The DoD directive 8570 Information Assurance Technical Level 3 (IAT III) or Information Assurance Management Level 3 (IAM III) certification must be achieved within one year of the task order start date; and maintained throughout the period of performance.

Senior:  Possesses the advanced knowledge, experience and recognized ability to be considered an expert in their technical/professional field, possess the ability to perform tasks and oversee the efforts of junior and journeyman personnel within the technical/professional discipline. Will demonstrate advanced knowledge of their technical/professional discipline as well as possess a comprehensive understanding and ability to apply associated standards, procedures and practices in their area of expertise. (Program Office, Enterprise and Staff Level Support interface)

Functionally Aligned Minimum Recommended Education and Experience:

• Advanced Degree (Master of Arts (MA) / Master of Science (MS)) and 12 years of experience in the respective technical / professional discipline being performed, five years of which must be in the DoD
• OR, BA/BS degree and 15 years of experience in the respective technical/professional discipline being performed, five of which must be in the DoD
• OR, 20 years of directly related experience with proper certifications as described in the Functionally Aligned Job Descriptions, eight of which must be in the DOD.

All positions at Applied Research Solutions are subject to background investigations. Employment is contingent upon successful completion of a background investigation including criminal history and identity check.

This contractor and subcontractor shall abide by the requirements of 41 CFR 60-741.5(a). This regulation prohibits discrimination against qualified individuals based on disability, and requires affirmative action by covered prime contractors and subcontractors to employ and advance in employment qualified individuals with disabilities.

This contractor and subcontractor shall abide by the requirements of 41 CFR 60-300.5(a). This regulation prohibits discrimination against qualified protected veterans, and requires affirmative action by covered contractors and subcontractors to employ and advance in employment qualified protected veterans.