Cyber Security Engineer

VES, LLC seeks a highly motivated Cyber Security Engineer with demonstrated success over a wide range of projects. You'll be on a team-building the next-generation in command and control systems.

At VES, LLC we're passionate about using technology to protect and make soldiers more effective. You can count on always working on a team of exceptionally smart people where you'll be designing and building cutting-edge technology, pushing the envelope of what is possible.

General Job Duties:

• Responsible for conducting independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by the assigned project.
• Determine the overall effectiveness of the controls, based on criteria from NIST 800-53 and CNSSI 1253 security controls.
• Ensure compliance with Security Technical Implementation Guidance (STIG), Security Requirements Guides (SRGs).
• Leverage automated testing tools and manual test methodologies to identify system vulnerabilities, noncompliance and mitigation strategies.

Required Skills:

• Experience performing technical security assessment using tools, such as Retina, Nessus, or Assured Compliance Assessment Solution (ACAS). Use scan results to identify required patches, Security Content Automation Protocol (SCAP) configurations.
• Experience in generating documents and implementing DoD RMF Controls and artifacts.
• Experience conducting cyber security audits and risk assessments to ensure appropriate implementation and compliance with security requirements
• Experience with performing manual testing methods and procedures employing manual STIGs configurations, SRGs testing, and security checklists
• Executes the testing and debugging custom plugins and scripts. Documents the script, captures results from testing, resolves issues discovered during testing.
• Extensive experience and understanding of Linux Operating Systems
• Experience with shell scripting
• Experience with the Agile Development Process

Desired Skills:

• Experienced in the development of custom plugins for ACAS Nessus tools using Nessus Attack Scripting Language (NASL) to run scans on custom Linux Distributions
• Experience writing security standards in SCAP format (OVAL XCCDF), compatible with OpenScap (OSCAP)
• Able to train others on use of OVAL/OSCAP and NASL development
• Experience with Atlassian suite of tools (Confluence, Jira, BitBucket, etc.)

Required Education and Experience:

• Bachelor's degree in Engineering, Computer Science or related technical discipline and 5-10 years of related work experience.
• Security related certifications are desired but not required
• Excellent oral and written communication skills across all levels of the organization
• Extensive familiarity and experience working with DoD or IC organizations.

VES offers a rich benefits package that includes:

• 401(k) match
• Highly Competitive Salary
• Health Benefits
• Up to 15 Paid Vacation days/year
• 10 Paid Holidays
• Flexible work environment

VES is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.