Cyber Security Engineer
Job DescriptionThis position is CONTINGENT upon funding, an open position, customer approval, completion of a favorable background investigation, and the ability to obtain and maintain a USPS sensitive clearance. A Cyber Security Engineer (NIST IAL2 Specialist) is needed to join the Digital Integration Identity Verification Services (IVS) team. The candidate must be very knowledgeable in NIST Information Assurance Level (IAL2) level standard. Location : Washington, DC Responsibilities: * Apply knowledge of Cybersecurity governance, policy, compliance, and risk management to strengthen the security posture of a large organization. * Leverage knowledge of Cybersecurity Frameworks, including NIST and Access Control Frameworks. * Demonstrate knowledge of industry best practices to analyze the development of Digital Identity Verification Services. Basic Qualifications: * Must be eligible to obtain a sensitive clearance - Position of Public Trust - and may be required to obtain a higher security clearance. * Lead the security assessment effort for an Identity proofing solution - compliance with NIST 800-53 moderate control requirement * Manage and track security project tasks, including security controls development and implementation, security testing and remediation, compliance tracking, and documentation. * Work with technical POCs to ensure system documentation reflects current system security configurations to include hardware and software components, data flow, interconnections, and ports, protocols, and services, etc. * Assist in estimating Level of Effort (LOE) involved in performing Audit activities * Help document residual risks and provide the cybersecurity risk analysis and mitigation determination results * 6+ years of experience with security governance and security assessments * 6+ years of experience developing security documents to meet RMF requirements * Experience with leading working groups and obtaining consensus and buy-in across varying stakeholders * Knowledge of effective communication concepts, tools, and techniques * Knowledge of the Risk Management Framework (RMF) * Knowledge of NIST 800-53 and NIST 800 - 63 guidelines * Ability to understand and apply the NIST 800-53 security families to the current agency security posture * Working knowledge of NIST 800-63 * Experience in preparing for / performing an IT assessment and reviews * Experience in developing and/ or updating procedural documents in accordance with organization policy and NIST standards * Ability to obtain a security clearance Additional Qualifications: * Experience with Identity and Access Management implementations, toolsets, or policy preferred * Experience with security policy analysis, metrics capture and analysis, security education, application vulnerability assessments, risk analysis and compliance testing, and project management * Ability to apply Cybersecurity and privacy principles to define organizational requirements relevant to confidentiality, integrity, availability, authentication, and non-repudiation * 6+ years of security assessment / audit readiness / networking and/or security engineering experience * Possession of excellent interpersonal, analytical, problem-solving, organizational, issue resolution, and customer relationship management skills * Possession of excellent oral and written communication skills- Ability to communicate orally and in writing with and executive-level clientele Required Education: Bachelor's Degree in related field. Two years of related work experience may be substituted for each year of degree level education. Desired Certifications: CISSP or CISM Certification preferred 173805 Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender orientation, gender identity, national origin, disability, or protected Veteran status.