Cyber Security Engineer (SCAR) - 303628

Delaware Nation Investments/Emerging Technologies is seeking a highly qualified and motivated Cyber Security Engineer/Security Controls Assessor Representative (SCAR) to join our team as a contracted cybersecurity professional. We work with the Air Force Sustainment Center (AFSC) located at Tinker AFB, Hill AFB, Robins AFB, and Wright Patterson AFB Advisory & Assistance for cybersecurity, network operations, and system administration for specified informational technology (IT) and operational technology (OT) within the Industrial Depot Maintenance (IDM) and Depot Support Services (DSS) authorizing official (AO) boundary. Network Operations support will include design, implement, and maintain OT networks and connected devices at Tinker, Hill and Robins Air Force bases. Cybersecurity effort will utilize the Risk Management Framework (RMF) per DoDI 8510.01, RMF for DoD Information, AFI 17-101, and RMF for Air Force Information Technology (IT), support AFSC in maintaining RMF compliance under AO guidance and acceptance of risk.

As a SCAR, you will play a crucial role in assessing security controls for information systems, working closely with the Project Manager (PM), Information System Security Manager (ISSM), Information System Security Officer (ISSO), and the Risk Management Framework (RMF) team. The SCAR is responsible for providing advice and guidance, ensuring security controls are implemented in accordance with established plans and assessing them within the framework of security authorization packages.

Requirements

·        Conduct hands-on, comprehensive evaluations of both technical and non-technical security controls for information systems.

·        Collaborate with the RMF team to ensure compliance with security plans and validate assessment results.

·        Work closely with the PM, ISSM, ISSO, and RMF team to assess security controls and provide expert advice.

·        Collaborate with other entities, such as Authorizing Officials and ISSMs, while maintaining a focus on SCAR independence.

·        Complete training and maintain appropriate cybersecurity certifications in accordance with AFMAN 487 17-1303, ensuring compliance with DoD 8570.01-M.

·        Stay current with industry standards, DoD regulations, and cybersecurity best practices.

·        Validate assessment results and provide comprehensive reports to the Security Controls Authorizer (SCA).

·        Ensure accurate and timely reporting of cybersecurity certification data as required by DoD regulations.

·        Participate in and lead hunt and harden missions

Certifications:

·        Ability to obtain a security clearance is REQUIRED.

·        This position is 100% onsite.

·        Possess and maintain valid cybersecurity certifications meeting IAM level II such as CISSP.

·        Obtain any additional certifications necessary for the assigned cybersecurity workforce position.

·        CEH not required but would be nice to have

Experience:

·        Demonstrated experience in hands-on security control assessments and evaluations.

·        Familiarity with NIST SP 800-37r2, CNSSI 1253, and other relevant cybersecurity frameworks.

Compliance:

·        Understand and adhere to all DoD 8570.01-M compliance requirements.

·        Sign and uphold a formal statement of assigned cybersecurity responsibilities.

Communication:

·        Strong communication skills with the ability to collaborate effectively with cross-functional teams.

·        Ability to maintain independence as per NIST SP 800-37r2/CNSSI 1253 and report directly to the SCA.

Benefits

Benefits Include:

• Covers 100% of employee benefit premiums, including Medical (PPO or HDHP Option), Vision, Dental
• Matching 401K
• Short- and Long-Term Disability
• Pet Insurance
• Professional Development/Education Reimbursement
• Parking and Transit Benefits for NY, NJ, ATL, and DC Metro areas

Other Duties:

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.