Cybersecurity Engineer (Journeyman)

Torch Technologies Thank you for your interest in employment with Torch Technologies. We are a 100% employee-owned, Certified Great Place To Work and named Best Places to Work in Huntsville/Madison County, headquartered in Huntsville, AL with over 1200 employee-owners. Our team provides superior research, development, and engineering services to the Federal Government and Department of Defense. As one of the nation’s top 100 defense companies, the services we provide directly support the men and women who serve our country. Our corporate mission sums up the pride our employee-owners take in the work we do: “Lighting the Pathway of Freedom”. And, as a Certified Evergreen ESOP, we have made the commitment to grow and sustain our company for the next 100 years! Come grow with us! Torch Technologies has an exciting opportunity for a Cybersecurity Engineer (Journeyman) to support the Air Force Life Cycle Management Center/PEO Digital Directorate (AFLCMC/HB) at Hanscom AFB MA. As a Cybersecurity Engineer (Journeyman), your duties will include the following but are not limited to: Assist with development of System Security Management Plans, Program Protection Plans, Security Risk Analyses, OPSEC Plans, Computer Certification and Accreditation, Security Vulnerability and Countermeasures Analyses, Security Concepts of Operations, and other system security engineering-related documents identified in MIL-STD 1785, DoDI 5000.02, Operation of the Adaptive Acquisition Framework, and DoDI 8510.01 Support the system/application Authorization and Accreditation (A&A) effort to include assessing and guiding the quality and completeness of A&A activities, tasks and resulting artifacts mandated by governing DoD and Air Force policies (i.e., Risk Management Framework (RMF) Update, monitor, and manage information in systems for the program office Process and manage system user account requests and process tools Process and manage system port/protocol and access control list requirements Process and manage system Public Key Infrastructure (PKI) identification and authorization requirements Manage the distribution, implementation, remediation, and tracking of system security updates and configurations as required by the DoD Recommend policies and procedures to ensure information systems reliability and accessibility to prevent and defend against unauthorized access to systems, networks, and data Conduct risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risk, and protection needs Promote awareness of security issues among management and ensuring sound security principles are reflected in organizations’ vision and goals Conduct systems security evaluations, audits and reviews Recommend systems security contingency plans and disaster recovery procedures Recommend and implementing programs to ensure that systems, network, and data users are aware of, understand, and adhere to systems security policies and procedures Participate in network and systems design to ensure implementation of appropriate systems security policies Recommend initial, or updates to, software and configurations to new or existing system security mechanisms Obtain waivers to mandated security mechanisms/policies which would be detrimental to system performance and impact the system’s mission Facilitate the gathering, analysis and preservation of evidence used in the prosecution of computer Provide leadership assistance in the analysis of the design, development, integration, implementation and testing of cybersecurity requirements Develop risk-based strategies to address identified gaps Review and assess implementations of cybersecurity (i.e. RMF security controls) throughout the open systems architecture and associated services, derived requirements specifications, design documents & design implementation Collaborate with stakeholders (Government and commercial) to ensure the system is approved by all Authorizing Officials via the RMF A&A process Provide technical advice in systems security across all systems and supports.