Cybersecurity Systems Security Engineer (SME)

Location
Aberdeen Proving Grounds, Maryland
Posted
Jun 24, 2022
Closes
Jul 09, 2022
Ref
22075
Function
IT
Hours
Full Time
Summary

The Cybersecurity Systems Security Engineer (SME) will provide the support task requirements for Cybersecurity System Engineering Support, Cybersecurity Network Domain Certification and Accreditation Support, and Cross Domain Solution (CDS) Assessment and Authorization (A&A) Support. The Cybersecurity Systems Security Engineer (SME) will perform the tasks in coordination with government personnel to provide the cybersecurity support services and solutions necessary to analyze, assess, integrate, enhance, improve, modernize, implement, test, sustain, and maintain the DCGS-A cybersecurity posture and capabilities. The Cybersecurity Systems Security Engineer (SME) will also serve as the technical PM onsite.

Responsibilities
  • Provide cybersecurity system engineering support for the DCGS-A program that consists of accurate identification, documentation, and testing of security controls for system assessments.
  • Perform the engineering analysis, design, implementation, development of interoperability artifacts, documentation updates, and maintenance of the DCGS-A Cross Domain Solutions (CDS) which are the Top Secret and Below Interoperability (TSABI) and Secret and Below Interoperability (SABI) CDS Subsystems.
  • Perform analysis and evaluate all system designs and implementations that are consistent and compliant with the DoD and Army policies, requirements, and directives.
  • Develop and recommend action plans to address system security issues, audit readiness, and compliance requirements and issues.
  • Perform the daily execution of technical cybersecurity operations for the various network domain environments and production baselines to ensure operational readiness.
  • Assess cybersecurity impacts for proposed changes, assess conformance and compliance with cybersecurity requirements for the new release capabilities, and ensure the infrastructure will support all DCGS-A cybersecurity implementations.
  • Analyze and evaluate the DCGS-A baseline for compliance with National Institute of Standards & Technology (NIST) security implementation guidelines (NIST SP 800 Series), Defense Information Systems Agency (DISA), Security Technical Implementation Guidance (STIG), Department of Army Information Assurance Best Business Practice (BBP) Checklists, and Security Requirements Guides (SRG).
  • Perform the security assessments of the DCGS-A systems in the fielded environment to assess the security posture of the systems and the technical compliance with the requirements and validate security relevant configurations of the systems.
  • Will support the engineering team to remediate existing issues and/or to develop compensating controls that minimize the impact, likelihood, and/or risk.
  • Monitoring employee productivity and provide constructive feedback and coaching to ensure program success.
  • Other duties as assigned

Qualifications
  • MA/MS degree and 10+ years of experience or BA/BS degree with 12+ years of experience
  • 5+ years of working experience directly related to DoD cybersecurity certification and accreditation or cybersecurity engineering activities
  • Demonstrated experience and familiarity with DoD and Army Cybersecurity Polices and Regulations and Certification and Accreditation (C&A) process, including the provisions of ICD 503 and the planning and execution of Security Test and Evaluation (STE) and Cybersecurity Test and Evaluation (CTE) events
  • DoD 8570 IAM III certified
  • Linux+ or Red Hat Linux Administrator within 30 days of hire
  • Possess and maintain a valid state operator's license.
  • TS/SCI clearance required
  • Must be able to travel up to 30% of the time
  • The position requires a COVID vaccination or an approved accommodation/exemption for a disability/medical condition or religious belief

Knowledge, Skills and Abilities
  • A broad knowledge and understanding of DoD and Army Cybersecurity policies, tools, and techniques.
  • Understanding of the Risk Management Framework (RMF) process.
  • A deep understanding of Enterprise Mission Assurance Support Service (eMASS) and/or XACTA.
  • Ability to validate risk assessments and develop Plans of Actions and Milestones (POA&M) to assist the PM and ISOs in the mitigation of cybersecurity weaknesses, providing solutions and mitigation actions for each assessed item.
  • Ability to review and monitor the DCGS-A IS and networks A&A status, including success or failures to obtain Authority to Operate (ATO) or Interim Authority to Test (IATT), as appropriate.
  • Ability to work independently without direct supervision or guidance.
  • Ability to occasionally work after hours and/or on-call support.
  • Ability to meet minimum security clearance requirements.

#Chenega Decision Sciences, LLC

Chenega Corporation and family of companies is an EOE.

Equal Opportunity Employer/Veterans/Disabled

Native preference under PL 93-638.

We participate in the E-Verify Employment Verification Program

Similar jobs