Cybersecurity Systems Engineer

About The Position

Requirements

• Requires a Bachelor’s degree in Engineering, or a related Science, Technology or Mathematics field. Also requires 5+ years of job-related experience, or a Master's degree plus 3 years of job-related experience.
• Department of Defense Secret security clearance is obtainable within a reasonable amount of time after hire. Applicants selected will be subject to a U.S. Government security investigation and must meet eligibility requirements for access to classified information. Due to the nature of work performed within our facilities, U.S. citizenship is required.
• Strong expertise in systems engineering and cybersecurity frameworks like NIST SP 800-53
• Experience and working knowledge of the Risk Management Framework (RMF)
• Experience with STIGs, security policies, and vulnerability assessments for different systems and devices
• Proficiency in developing RMF documentation and performing compliance scans
• Excellent communication skills and the ability to work with diverse teams and stakeholders
• Familiarity with software engineering diciplines from requirements development to validation
• Must be able to obtain a Secret Clearance
• Proficient use and understanding of systems engineering concepts, principles, and theories
• Proficient understanding of cyber security specifications such as Risk Management Framework (RMF), DIACAP, STIGs and other government security specifications and guidelines
• Proficient knowledge of cyber security technology and trends
• Strong written and verbal communications skills
• Proficient ability in communicating issues, impacts, and corrective actions as they affect the cyber design and implementation
• Proficient ability to clearly report relevant cyber systems engineering design
• Works under limited direction

Nice To Haves

• Experience with the Navy implementation of RMF
• Experience with eMASS and VRAM
• Familiarity and experience with cybersecurity implementation within cloud and containerized environments
• CompTIA Security+, CISSP, AWS certifications
• Strong organizational and analytical skills as well as practical problem-solving and decision skills
• Participation in cybersecurity working groups and agile teams

Responsibilities

• Be a member of a cybersecurity team responsible for assessing Navy information systems for compliance with the NIST Risk Management Framework (RMF)
• Perform security assessments and tasks related to the RMF authorization process
• Prepare artifacts needed for Security Authorization packages, to include System Security Plans (SSPs), architectural overviews, system categorizations, Security Assessment Plans (SAPs), Security Assessment Reports (SARs), Risk Assessment Reports (RARs), Plans of Actions & Milestones (POA&M) summaries and continuous monitoring plans
• Perform system validations, assess NIST SP 800-53 security controls, peform security scans, implement Security Technical Implementation Guides (STIGs), and perform other continuous monitoring ativities
• Conduct vulnerability scans and compliance checks in a DevSecOps environment
• Collaborate with teams, customers, and stakeholders to solve complex cybersecurity challenges