Remote: Hybrid/Remote work may be an option
Salary: $80-90/hr
Location: Dulles, VA
Clearance: Secret
We are seeking a Senior Cyber Engineer to collaborate with the Customer’s SE&I team to Perform risk assessment of proposed system architecture for compliance with security best practices.
Required Education: BS Cyber Security Engineering, Systems Engineering, Computer Science, Computer Engineering, Computer Information Systems, OR a related field. Two years of related work experience may be substituted for each year of degree level education.
Required Certifications: – AWS Certified Security-Specialty Certification or AWS Certified Solutions
Desired Certifications: – DoD 8570.1 IAT Level II – Certified Systems Engineering Professional (CSEP) – SAFe certification (SA, SP, SSM/SASM, RTE, POPM, SPD, ASE, or SPC)
- Two years of related work experience may be substituted for each year of degree level education.
- A Master’s degree in a related discipline may substitute for two (2) years of experience.
- A PhD may substitute for four (4) years of experience.
Qualifications:
- Must be a US Citizen
- Must have an active SECRET clearance with ability to obtain a TS/SCI
- Must be able to obtain DHS Suitability prior to starting employment
- 10+ years of related experience directly relevant cyber security engineering experience
- Experience applying compliance & Cloud security standards (Especially AWS Guardrails) across the enterprise IT landscape
- Proven experience building security reference architecture for all-in cloud deployments and hybrid scenarios
- Expertise in AWS Security, IAM policies and configuration
- Experience applying networking principles for system development or support
- Experience applying security standards meeting enterprise standards and/or Federal (e.g. FedRAMP)
- Experience with tools and scripting for infrastructure automation and configuration management tools –
- Experience with Secure Elastic Container Services and knowledge of securing OpenShift 4
- Significant technical expertise in Cloud Computing technologies, scripting languages
- Experience Integrating 3rd party monitoring tools, encryption tools and best practices, and forensics.
- Implementation experience with enterprise security solutions such as WAF, IPS, endpoint security and SIEM
- Deep understanding of enterprise risk management methods and techniques to drive successful outcomes in a multi-national environment
- Knowledgeable about the key security risks that are present when using AWS and how these can be prevented, detected and remediated
- Experience with and technical understanding of cybersecurity attack-mitigation techniques and cybersecurity architectures
- Possesses or quickly develops a comprehensive understanding of Government Information Security policies, regulations, and guidelines
- Must be able to work collaboratively across agencies and physical locations.
Desired Skills:
- Knowledge and experience with Scaled Agile Framework (SAFe) or similar lean Agile framework
- Agile Systems Engineering and/or development experience
- DevSecOps or DevOps experience
- Experience and/or familiarity with architectural views including operational, technical standards, and system/services views and business, data, applications, and technology architectures using applicable standards (e.g., DODAF, FEAF)
- Experience and/or familiarity of the Risk Management Framework (RMF) and security and privacy controls (NIST 800-37 and NIST 800-53)
- DHS experience.
Responsibilities:
- Develops security systems for any manual or automated systems environments
- Responsible for ensuring the protection of organization data against unauthorized disclosure, accidental or intentional loss of data, or unauthorized modification.
- Comfortable working with a variety of different tools and appliances, security problems, and troubleshooting various complex issues.