Cybersecurity Engineer

About the Mission You Will Join:

Do you want to help change the delivery of cybersecurity initiatives and operations in the Federal space? At VMD, we are looking for game-changers to help re-envision cybersecurity in the Federal space and leap takers to help execute on that vision. VMD's cybersecurity services and delivery leverage the following aspects:

• Utilizing fundamentals and embedding them into everyday culture
• Being agile and nimble to adjust responses as necessary
• Making decisions based on data
• Using threat intelligence to determine risk
• Removing manual dependencies from security-related processes where feasible 

This cybersecurity engineering position will be supporting the Transportation Security Administration (TSA) Office of Information Technology, Technology Solutions Division (TSD), specifically their mission critical systems.

Your Impact to the Mission:
As a Cybersecurity Engineer you will leverage technical knowledge and experience to support multiple IT projects, programs, and initiatives. You will be responsible for actively interacting and communicating with various departments, teams, and workgroups to provide hands-on technical cybersecurity support on potential security risks and recommendations. You will be interacting with technical staff to executive staff, adjusting the communication and feedback accordingly. The Cybersecurity Engineer will be responsible for:

• Supporting the response for planned and unplanned security assessments including documentation collection and review, documentation creation and maintenance, and artifact/evidence review and validation.
• Analyzing and investigating potential security threats against technologies in use as well as those planned for future use.
• Performing an ongoing review of industry/government best practices for system security to provide expert technical guidance for translating NIST, DHS, and TSA cybersecurity standards, policies and procedures into actionable tasks.
• Determining the security impact of new technologies or policies on the TSA information security program.
• Developing and presenting recommendations for changes to improve security posture.
• Implementing security improvements as needed for protecting mission critical systems.
• Leveraging existing government-provided security scan tools such as Tenable Security Center, Nessus, DbProtect, Venafi, RedSeal, Burp Suite Pro and others.
• Providing security engineering subject matter expertise in coordination with enterprise architecture and technical review boards.
• Developing and maintaining information security program strategic and tactical goals and objectives and program outreach/communication plans.
• Identifying, developing, and maintaining a performance management program, that includes performance measures, tracking metrics, and trend analysis.

Experience Needed to Be Successful:

•  8+ years of work experience in IT and cybersecurity, with a technical background in networking, operating system, and/or software development
•  5+ years of cybersecurity experience
•  Active Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) certification
•  Experience with security development lifecycle management, DevSecOps, and CI/CD integration
•  Ability to leverage programming languages where feasible such as Java, PHP, C, .NET, Go, or Python
•  Experience with various operating systems including Windows, Linux and Unix
•  Strong leadership and interpersonal skills to facilitate effective collaboration across a variety of stakeholders
•  Demonstrated ability to function independently and define the proper methods & procedures
•  Understanding of guiding cybersecurity principles and control guidance
•  Effective writing skills to capture issues and recommendations
•  Strong customer relationship building ability

Basic Qualifiers:

•  Education Requirement: Bachelor’s degree
•  Can Additional Years of Experience Substitute for Degree? Yes
•  Required Certification(s): Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM)
•  Minimum Years of Overall Experience: 8
•  Minimum Years of Specific Experience in Field: 5
•  Minimum Clearance to Start: Secret
•  Work Status Allowable: US Citizenship

The Type of Person That Will Excel: 

• You are curious, inquisitive, and have demonstrated a constant eagerness to learn through actions.
•  You have high attention to detail.
•  You demonstrate personal accountability and integrity in all actions.

Travel and Telecommuting:

• Travel: Little (less than 10%)
  Telecommute Options:  Hybrid Remote.  2-3 days onsite.  

What We Offer and Evaluation Process:VMD considers factors such as the scope and responsibilities of the position, the candidate's work experience, education/training, key skills, and market and business considerations. Hiring decisions are made in alignment with market conditions, business needs, and compliance with applicable laws. Our compensation and benefits offerings include: 

• Salary: $125,000.00 to $150,000.00
• Medical Insurance – Health/Dental/ Vision
• Vacation and Sick Time
• 11 Paid Holidays Per Year
• Flexible Spending Accounts (FSA)
• Voluntary Life/AD&D
• Group Life/Short & Long-Term Disability
• Generous Education and Professional Development Reimbursement
• Pre-Tax Commuter Benefit
• 401(k) Retirement Plan 

Candidates are evaluated based on work experience, key skills, education/training, and qualifications through resume reviews, technical assessments, and interviews. This job posting will remain open until the position is filled.
VMD provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable Federal, state and local laws. VMD maintains a drug-free workplace.