Cybersecurity Engineer

Location: Quantico, VA

Overview:

IntelliBridge is an award-winning national security company looking for a Cybersecurity Engineer to verify compliance with Federal Information Security Management Act (FISMA), National Institute of Standards and Technology, and other regulatory security compliance articles associated with data center infrastructure and platform design, deployment, testing, certification, patching, addressing, or mitigating computer security issues, for all infrastructure and system components for a federal law enforcement agency customer.  

As a direct employee of IntelliBridge, you would receive a benefit package that includes health/dental/vision insurance coverage, 401K with company match, PTO & paid holidays, and annual tuition/training assistance. For more information, please visit our website.    

Clearance:  

• Active TS Required

Required Responsibilities/Duties:   

• Minimum of 2 years of cybersecurity and information assurance activities and support at cleared facilities.

• Identify information protection needs for information systems and network environment.
• Define information systems and network environment security requirements in accordance with applicable cybersecurity requirements.
• Design security architectures for use within the information systems and network environment.
• Design and develop cybersecurity-enabled products for use within an information systems and network environment.
• Develop and implement security designs for new or existing information systems and network environment. Ensure that the design of hardware, operating systems, and software applications adequately address cybersecurity requirements for the information systems and network environment.
• Design, develop, and implement network security measures that provide confidentiality, integrity, availability, authentication, and non-repudiation.
• Design, develop, and implement specific cybersecurity countermeasures for the information systems and network environment. 
• Develop interface specifications for the information systems and network environment.
• Develop approaches to mitigate information systems and network environment vulnerabilities and recommend changes to network or network system components as needed.
• Ensure that network system(s) designs support the incorporation of agency/customer directed cybersecurity vulnerability solutions.
• Familiarity with the use and operation of security tools including Cisco, RSA, Tenable Nessus Manager/Professional, Tenable.sc, Trustwave AppDetectivePro, Qualys, BigFix, Titania Nipper, Nmap, Rapid7 Metasploit, CrowdStrike, Trustwave AppDetective, Microsoft Defender MDE Portal, Microfocus WebInspect and Fortify, Splunk, GRC tools [JCAM, Xacta, and RiskVision], SQL Server, Windows, and Linux, and/or similar applications. 
• Assist in conducting Security Audits of production environments within the accreditation boundary. 
• Demonstrate mastery of IT functions, security policies, technical security safeguards, and operational security measures.
• Demonstrate mastery of information security procedures and best practices.
• Apply new developments to previously unsolvable problems.
• Demonstrate expertise of, and skill in applying, advanced IT principles, concepts, methods, standards, and practices sufficient to develop and interpret policies, procedures, and strategies governing the planning and delivery of services throughout the agency.
• Provide expert technical advice, guidance, and recommendations to management and other technical specialists on critical IT issues.
• Make recommendations that significantly influence important agency IT policies or program.
• Demonstrate expertise of and skill in applying total infrastructure protection environment.
• Demonstrate expertise of and skill in applying systems security certification and accreditation requirements and processes.
• Demonstrate expertise of and skill in applying Federal information systems security protocols.
• Integrate information systems security with other security disciplines.
• Ensure coordination and/or collaboration on security activities.
• Develop long-range plans for IT security systems that anticipate, identify, evaluate, mitigate, and minimize risks associated with IT systems vulnerabilities.
• Coordinate the implementation of security programs across platforms.
• Establish vulnerability reporting criteria.
• Review and evaluate security incident response policies.
• Identify need for changes based on new security technologies or threats.
• Test and implement new policies and institute measures to ensure awareness and compliance.
• Review proposed new systems, networks, and software designs for potential security risks.
• Integrate security programs across disciplines.
• Define the scope and level of detail for security plans and policies applicable to the security program.
• Assess new systems design methodologies to improve software quality
• Accurately represent customer requirements.
• Present recommendations for adoption of new methodologies and lead implementation.
• Demonstrate working knowledge of Federal government assessment and authorization (A&A) practices and policies, particularly Federal Information Security Management Act (FISMA), and National Institute of Standards and Technology (NIST) 800-53.
• Demonstrate working knowledge of forensic and vulnerability assessment tools.
• Demonstrate experience performing vulnerability analysis and working with the system administrators to resolve the vulnerabilities or to develop a system corrective action plan.
• Release security incident information to Engineering and Operations team members for remediation of vulnerabilities.
• Ensures all security patches are implemented in a timely manner and coordinate patching with Operations team.
• Write documentation and implementation plans detailing the security posture and the proper security configuration of new software and hardware.
• Evaluate new projects for FISMA and NIST requirements and coordinate with Operations team in security technical implementation guides (STIG) making recommendations to Engineering team on security measures needed prior to introducing new systems into the production environment.
• Configure, upgrade, and maintain the intrusion detection system (IDS) and intrusion prevention system (IPS) equipment, signatures and sensors and monitor for new system and security patches.
• Collect and evaluate system logs for all devices and applications, looking for intrusion attempts and report incidents to customer.
• Evaluate cyber alerts from the Law Enforcement and Intelligence Communities and apply appropriate defense measures.
• Coordinate team resources to diagnose and resolve operational issues that involve possible security threats, working closely with Operations and Engineering teams.

Required Qualifications:

• Bachelor’s degree in Computer Information Systems or related discipline, or equivalent education and experience.

About Us:   

IntelliBridge delivers IT strategy, cloud, cybersecurity, application, data and analytics, enterprise IT, intelligence analysis, and mission operation support services to accelerate technical performance and efficiency for Defense, Civilian, and National Security & Federal Law Enforcement clients.