Senior Cyber Lead Engineer

About The Position

Requirements

• BA or BS degree in engineering, physics, chemistry, mathematics, computer science, network, and telecommunications; information systems, information technology, or computer information systems
• 25+ years of work experience in Information Assurance/Cybersecurity
• 25+ years of experience leading teams to mission success in a dynamic fast paced environment
• 15 years of experience working in a military organization cybersecurity role with military tactical, space, or enterprise systems
• 5 years experience writing measurable and testable cyber security system requirements to ensure the defense industrial complex delivers cyber survivable systems in support of national defense
• 5+ years experience working in a military system program office fielding new capabilities
• Cybersecurity certification (IAM Level III) in accordance with DoD 8570.01-M guidance
• Experience creating reviewing and updating artifacts in support of NIST SP 800-37 Risk Management Framework (RMF) in accordance with DODI 8510.01
• Senior developer or reviewer of system security plans, Security Assessment Plans/Reports, Risk Assessment Plan/Report, Plan of Action and Milestones (POA&M), and associated cybersecurity artifacts
• Experience identifying Common Criteria and National Information Assurance Partnership (NIAP) certified technologies and the DISA Approved Products List (APL)
• AN ACTIVE DOD TOP SECRET SECURITY CLEARANCE IS REQUIRED FOR THIS POSITION WITH THE ABILITY TO OBTAIN TOP SECRET/SCI SECURITY CLEARANCE, FOR WHICH YOU MUST BE A U.S. CITIZEN

Nice To Haves

• Master’s degree in Computer Science/Engineering with emphasis in Cyber Security
• 25+ years of work experience in Cyber Security
• 15+ years of work experience in System Engineering Architecture/Design
• Previous experience supporting military satellite communications programs such as Milstar, AEHF, GPS, SMART-T
• Security Test and Evaluation (ST&E)
• Active DoD Top Secret with SCI Clearance
• Required Certifications: IAM Level III

Responsibilities

• Proposing, coordinating, implementing, and enforcing all Department of the Air Force information system security policies, standards, and methodologies
• Understanding of vulnerability assessments using the Assured Compliance Assessment Solution (ACAS), Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG), and the Security Content Automation Protocol (SCAP) Compliance Checker, incorporating automated Benchmarks in support of an Risk Management Framework (RMF) Approval to Operate decision
• Experience reviewing security control continuous monitoring, security audits, risk analysis and developing mitigation strategies for DoD information systems
• Ensures software, hardware, and firmware complies with appropriate security configuration guidelines (e.g., security technical implementation guides /security requirement guides)
• During system development, recommends protective or corrective measures, in coordination with the ISSM, when a security incident or vulnerability is discovered
• During system development advises acquisition program leadership on RMF process and artifacts required to obtain an ATO
• Coordinates activities of cyber security staff to support program cyber security requirements and generate artifacts to obtain a system ATO
• Recommends exceptions, deviations, or waivers to cybersecurity requirements
• Preparing certification letters and Memoranda of Agreement (MoA), Authorization to Connect (ATC) packages, Interconnection Security Agreement (SIA), and Security Impact Assessments with system owners for interface and networking implementations
• Support SSC program offices with ensuring security, quality, timeliness, mission partner support, completeness, and regulatory compliance of ATO RMF documentation
• Support the following responsibilities: security control assessor (SCA) and Security Technical Implementation Guide (STIG) curated to DOD/DAF/USSF baselines, audit standards, and plan of actions and milestones (POAM)
• Attend cleared expert threat briefings; have oversight of security program design, incident response plans, cyber risk assessments, and attack surface assessments, conduct tabletop exercises, and breach readiness reviews
• Completes and maintains required cybersecurity certification in accordance with (IAW) AFMAN 17-1303

Benefits

• At ENSCO, a positive working environment and a competitive salary are only part of the reason for choosing a career here. We offer a comprehensive benefits package that creates a stimulating and supportive environment where you can thrive - visit ensco.com/careers/benefits to learn more.