Sr. Cybersecurity Engineer I (6500)
About The Position
As Sr. Cybersecurity Engineer I, you’ll serve as the principal advisor to the Information System Owner (SO), Business Process Owner, and the Chief Information Security Officer (CISO) / Information System Security Manager (ISSM) on all matters, technical and otherwise, involving the security of an information system. ISSOs are responsible for ensuring the implementation and maintenance of security controls in accordance with the Security Plan (SP) and Department of Homeland Security (DHS) policies. We know that you can’t have great technology services without amazing people. At MetroStar, we are obsessed with our people and have led a two-decade legacy of building the best and brightest teams. Because we know our future relies on our deep understanding and relentless focus on our people, we live by our mission: A passion for our people. Value for our customers. If you think you can see yourself delivering our mission and pursuing our goals with us, then check out the job description below!
Requirements
- Ability to obtain and maintain a DHS suitability clearance
- Minimum five (5) years of IT experience as a Security Lead or Information Security Analyst, with a focus on evaluating, implementing, and managing security practices for new and existing technologies
- Have, at a minimum, a Bachelor’s degree in Computer Science or other comparable degree or experience
- Hold ISSO certifications
- Experience with Amazon Web Services (AWS) Architecture
- Experience with Continuous Monitoring and reporting monthly status reports
- Experience analyzing and reporting cyber security vulnerability scans
- Experience with requirements analysis, architect, design, and documentation development of cybersecurity and information security solutions
- Experience performing vulnerability risk analysis on the deficiencies found during RMF control testing
- Experience with cybersecurity tools and scanners used to evaluate the security posture of the system/enclave (preferred tool experience: Palo Alto Prisma Cloud, BurpSuite, Checkmarx, NexusIQ, SonarQube)
- Expertise in Agile and DevSecOps approaches
- Knowledge of web, databases, containers, and application security scanning and reporting for RMF processes, procedures, and governance
- Knowledge of Cybersecurity, Network, Systems, and Software Engineering best practices
- Have technical understanding of cloud technologies (i.e., AWS, microservices, zero trust, data streaming, data pipelines, containers, etc.) and their implementation within the customer’s network environments
Responsibilities
- Communicate regularly with DHS customers and internal engineering teams to lead required RMF process/steps to assess and authorize a system obtaining and maintaining a full ATO (Authority to operate)
- Perform monthly continuous monitoring reporting to include analysis of scans, logs, accounts, etc
- Support writing and reviewing of Risk Management Framework (RMF) documentation packages to support risk assessments
- Design and execute the security testing plan of all requirements and analysis required to complete a RMF package document for submittal and approval
- Use vulnerability scanning tools and frameworks to evaluate the security posture of a system
- Assist the customer in preparing training and table top exercises for contingency planning, incident response and disaster recovery
- Complete ISSO USCIS provided training as required
Benefits
- Health, dental, and vision insurance
- 401(k) retirement plan with company match
- Paid time off (PTO) and holidays
- Parental Leave and dependent care
- Flexible work arrangements
- Professional development opportunities
- Employee assistance and wellness programs
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
251-500 employees
