Cybersecurity Engineer (FedRAMP)

Motorola Solutions•Washington, DC

8d•$90,000 - $100,000•Remote

About The Position

At Motorola Solutions, we believe that everything starts with our people. We’re a global close-knit community, united by the relentless pursuit to help keep people safer everywhere. We build and connect technologies to help protect people, property and places. Our solutions foster the collaboration that’s critical for safer communities, safer schools, safer hospitals, safer businesses, and ultimately, safer nations. Connect with a career that matters, and help us build a safer future. As one of the original FedRAMP accredited 3PAOs, we remain one of the few companies who have helped Cloud Service Providers successfully navigate the FedRAMP process. With successful assessments of IaaS, PaaS, and SaaS clouds, our experience covers every type of cloud environment. We also specialize in helping organizations engineer secure clouds to meet FedRAMP's demanding requirements. Join our team as a Cybersecurity Engineer, where you will execute and/or lead advanced security assessments for client information systems. You will apply deep technical and compliance expertise to evaluate, advise, and guide clients through FedRAMP, FISMA, and NIST RMF requirements. You will also lead technical discussions, mentor team members, and support secure cloud architecture and risk mitigation activities, with a primary focus on FedRAMP.

Requirements

High School diploma, Bachelor's Degree in Computer Science, Engineering, Information Systems, or Technology required.
Must be a U.S. citizen with the ability to obtain a necessary security clearance as required by our government customers.
Legal authorization to work in the U.S. indefinitely is required.
Employer work permit sponsorship is not available for this position.

Nice To Haves

Bachelor's Degree or 5+ years equivalent experience.
3+ years of experience in performing and/or participating in FISMA based security Assessment and Authorization (A&A) activities.
Must be a US Citizen and able to obtain an active SECRET Security Clearance.
Strong technical background in security engineering, secure architecture, system and network security, authentication protocols, applied cryptography, and application security.
Expert knowledge of Cloud Computing, FedRAMP, FISMA, NIST/DoD RMF, and NIST SP 800-series publications.
Intermediate experience with testing and assessment tools such as Nessus/ACAS, SCC, DISA STIGs/STIG Viewer, NMAP, and Acunetix.
Self-motivated and able to operate independently or as part of a team.
Ability to author original assessment reports, attestations, and compliance documentation.
Strong verbal communication, organizational, planning, and attention to detail skills.
Successful completion of the FedRAMP Baltimore Cyber Range.
Knowledge of the Software Development Lifecycle (SDLC) as it relates to Information Security and Information Assurance.
Able to travel up to 25% as required for various client engagements.
Must hold one other advanced certification such as CISA, CISM, etc. in accordance with the A2LA R311.
The candidate must have at least one industry certification from the following list: Cisco Certified Network Associate Security (CCNA Security). Cisco Certified Network Associate Security (CCNA Security) Cisco Certified Network Associate Cyber Security Operations (CCNA Cyber Ops) Cybersecurity Analyst (CySA+) GIAC Certified Incident Handler (GCIH) GIAC Systems and Network Auditor (GSNA) GIAC Certified Intrusion Analyst (GCIA) Certified Information Systems Auditor (CISA) Certified Information System Security Professional or Associate (CISSP or Associate) Certified Secure Software Lifecycle Professional (CSSLP) Certified Information Systems Security Officer (CISSO) CyberSec First Responder (CFR) CompTIA Advanced Security Practitioner Continuing Education (CASP+) Continuing Education (CE) CompTIA Cloud+ (Cloud+) Global Industrial Cyber Security Professional (GICSP) Securing Cisco® Networks with Threat Detection Analysis (SCYBER)

Responsibilities

Engage directly with clients through verbal communication to perform interviews, lead assessment discussions, and provide expert guidance and solutions.
Utilize expertise in security engineering, secure architecture design, system and network security, authentication protocols, applied cryptography, and application security.
Conduct comprehensive security assessments by analyzing cybersecurity documentation and performing evidence collection, interviews, and testing to evaluate compliance with relevant standards such as FISMA, NIST RMF, and FedRAMP.
Perform system and network vulnerability scanning and analysis using automated and manual techniques with tools such as Nessus, ACAS, DB Protect, WebInspect, NMAP, and DISA STIGs/STIG Viewer.
Perform identification and application of vulnerability remediations, fix procedures, and when necessary mitigation techniques.
Identify, recommend, and validate vulnerability remediation actions, fix procedures, and mitigation strategies.
Lead compliance-related and technical discussions, demonstrating expert understanding of security frameworks, architectures, and control requirements.
Coordinate and guide cross-functional teams, ensuring effective collaboration, delivery, and communication.
Prepare clear, accurate, and original reports, attestations, and customer-facing documentation.
Inform customers of cybersecurity issues and concerns that need to be resolved and explain how compliance to various standards and frameworks is achieved.
Work independently or as part of a client delivery team in a fast-paced, deadline-driven, remote environment.