Senior Cybersecurity Professional

About The Position

Requirements

• Firm understanding of the DoD 8500.1-M, National Institute of Standards and Technology (NIST) Special Publications (SP) 800-37, 800-53, 800-218, and 800-190
• Expertise in cloud “as a service” architecture components and how to assess against the NIST SP controls
• Strong understanding behind implementation details of DOW end-to-end zero trust architecture solutions.
• Ability to evaluate DevSecOps process, agile methodology and continuous integration/continuous delivery (CI/CD) pipeline to ensure cybersecurity requirements are baked-in early during development.
• Adept at working with software developers and engineers providing technical oversight and guidance to securely architect system components.
• Strong research skills and a desire to learn new (emerging OR existing but unfamiliar) technologies such as public and private cloud solutions in multi-level environments.
• Demonstrated ability to assess and articulate risk, including to non-technical audiences.
• Demonstrated history finding unique mitigations to varied systems’ security challenges.
• Demonstrated technical proficiency in at least one area of security (e.g. space systems, cloud, software, networking).
• Strong communication skills, written and oral.
• 14+ years' of related technical experience
• Bachelor's Degree in Computer Science or related technology is required.
• Specialized information assurance experience is required.
• Certified Information System Security Professional (CISSP)
• Certified Cloud Security Professional (CCSP)
• Certified Ethical Hacker (CEH)
• AWS or other cloud technology security certification
• Must have Active Secret Clearance with TS/SCI Eligibility.

Responsibilities

• Support information system security engineering activities to ensure security requirements are defined, implemented and tested for complex multi-level security architectures of an advanced USSF system.
• Apply cybersecurity risk management framework principles to the development of integrated weapon systems.
• Conduct assessment and authorization activities to make timely recommendations to the authorizing official based on requirements, security impact levels and projected operational environment.
• Evaluate the threats and vulnerabilities to integrated weapon and information systems to ensure security controls effectively mitigate the risk of exploits.
• Develop acquisition documentation that pertains to cybersecurity to support program management office and contracting officers.
• Conduct and report on independent assessments to verify compliance such as software Certification to Field (CTF).
• Guide the development and implementation of cybersecurity for an integrated weapon system.
• Develop/Test for Cloud Ground Environment and ensure Software Assurance of Mission Unique Software Support information system security authorization to operate.