Chenega Corporation Cybersecurity Engineer Senior in Aberdeen, Maryland

CHENEGA DECISION SCIENCES

Company Job Title:

Cybersecurity Engineer Senior

Clearance:

Top Secret

Location:

Aberdeen Proving Ground, MD

Reports To:

Director of Operations

FLSA Status:

Exempt, Full Time, Regular

Summary:The Cybersecurity Engineer Senior will provide the support task requirements for Cybersecurity System Engineering Support, Cybersecurity Network Domain Certification and Accreditation Support, and Cross Domain Solution (CDS) Assessment and Authorization (A&A) Support. The Cybersecurity Engineer Senior will perform the tasks in coordination with government personnel to provide the cybersecurity support services and solutions necessary to analyze, assess, integrate, enhance, improve, modernize, implement, test, sustain, and maintain the DCGS-A cybersecurity posture and capabilities.

Essential Duties and Responsibilities:(Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this position)

  • Provide support of cybersecurity network domain Certification and Accreditation (C&A) support and execution activities that includes DCGS-A network domain operations requirements for the following networks; Joint WorldwideIntelligence Communications System(JWICS), Secret Internet Protocol Router Network (SIPRNET), National Security Agency Network (NSANET), Non-Secure Internet Protocol Router Network (NIPRNET) and other special or specific Coalition networks.

  • Perform the necessary efforts to analyze,assess, evaluate, integrate, improve,implement, test, sustain, and maintain the DCGS-A cybersecurity posture and capabilities required by the network domain operations compliance requirements.

  • Develop and prepare the required security control documents or artifacts, and conduct security control assessments, and security test and evaluation required by the respective network authorities and C&A processes such as the Risk Management Framework (RMF).

  • Perform all necessary cyber domain activities to ensure the DCGS-A baselines follow the respective network domain mandated standards, and authorization to connect requirements.

  • Develop and documentsecurity design artifacts and the associated security controls that are meetingthe security acceptance criteria and package the accreditation and authorization documents in support of each domain Certification and Accreditation process.

  • Prepare and document the risk mitigations, and maintain and update the Plan of Action and Milestones (POA&M) as required by the network domain Authorizing Official (AO).

  • Perform technical vulnerability scanning and secure configuration assessments, penetration testing and analyze the scan results, recommend the plans of action, and update the POA&M accordingly.

  • Support Assessment and Authorization (A&A) or other RMF and cybersecurity Compliance and Auditing processes and inspections for all enterprise systems and networks; ensures validity and accuracy review of all associated documentation.

  • Perform compliance reviews of computer security plans, performs risk assessments, and validates and performs security test evaluations and audits.

  • Analyze and define security requirements for information protection for enterprise systems and networks.

  • Assist in the development of security policies.

  • Analyze the sensitivity of information and performs vulnerability and risk assessments based on defined sensitivity and information flow.

  • Assess security risk, research and recommend countermeasures in accordance with Army and DoD requirements, conduct formal security engineering assessments and security assessments.

  • Be an integral member of the team of cybersecurity validators to ensure that US Army systems are compliant with NIST Special Publication 800-53 cybersecurity controls.

  • Support on-site accreditation testing for PM DCGS-A networks at CONUS and OCONUS locations.

Non-Essential Duties:Other duties as assigned

Supervisory Responsibilities:

  • This position does not have formal supervisory responsibilities; however, it will require mentoring of junior staff.

Minimum Qualifications:(To perform this job successfully, an individual must be able to perform each essential duty satisfactorily.)

  • Bachelor’s degree required. Additional years of experience can be used in lieu of degree,

  • 8 years of relevant work experience.

  • Minimum of 5 years of working experience directly related to DoD cybersecurity Certification and Accreditation or cybersecurity engineering activities.

  • Demonstrated experience, and familiarity with DoD and Army Cybersecurity Polices and Regulations, and Certification and Accreditation (C&A) process to include the provisions of ICD 503, and the planning and execution of Security Test and Evaluation (STE) and Cybersecurity Test and Evaluation (CTE) events.

  • Minimum CISSP, CISM, or equivalent certifications.

  • DoD 8570 IAM II Certified.

  • Top Secret Clearance required.

Knowledge, Skills and Abilities:

  • A broad knowledge and understanding of DoD and Army Cybersecurity policies, tools, and techniques.

  • Understanding of the Risk Management Framework (RMF) process.

  • A deep understanding of Enterprise Mission Assurance Support Service (eMASS) and/or XACTA.

  • Ability to validate risk assessments and develop Plans of Actions and Milestones (POA&M) to assist the PM and ISOs in the mitigation of cybersecurity weaknesses, providing solutions and mitigation actions for each assessed item.

  • Ability to review and monitor the DCGS-A IS and networks A&A status, to include success or failures to obtain Authority to Operate (ATO) or Interim Authority to Test (IATT), as appropriate.

  • Ability to work independently without direct supervision or guidance.

  • Ability to occasionally work after hours and/or on-call support.

  • Ability to meet minimum security clearance requirements.

  • Possess and maintain a valid state operator's license.

Diversity:

  • Shows respect and sensitivity for cultural differences; Educates others on the value of diversity; Promotes a harassment-free environment; Builds a diverse workforce.

Ethics:

  • Treats people with respect; Keeps commitments; Inspires the trust of others; Works with integrity and ethically; Upholds organizational values.

Physical Demands:

  • The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

  • While performing the duties of this Job, the employee is regularly required to sit and talk or hear. The employee is frequently required to walk; use hands to finger, handle, or feel and reach with hands and arms. The employee is occasionally required to stand; climb or balance and stoop, kneel, crouch, or crawl. The employee must occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision.

Work Environment :

  • The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job.

  • The employee will normally work in a temperature-controlled office environment, with frequent exposure to electronic office equipment.

  • During visits to areas of operations, may be exposed to extreme cold or hot weather conditions. Is occasionally exposed to fumes or airborne particles, toxic or caustic chemicals, and loud noise.

Chenega Corporation and family of companies is an EOE.

Equal Opportunity Employer Minorities/Women/Veterans/Disabled/Sexual Orientation/Gender Identity

Native preference under PL 93-638.

We participate in the E-Verify Employment Verification Program.

M#

Minimum Qualifications:(To perform this job successfully, an individual must be able to perform each essential duty satisfactorily.)

  • Bachelor’s degree required. Additional years of experience can be used in lieu of degree,

  • 8 years of relevant work experience.

  • Minimum of 5 years of working experience directly related to DoD cybersecurity Certification and Accreditation or cybersecurity engineering activities.

  • Demonstrated experience, and familiarity with DoD and Army Cybersecurity Polices and Regulations, and Certification and Accreditation (C&A) process to include the provisions of ICD 503, and the planning and execution of Security Test and Evaluation (STE) and Cybersecurity Test and Evaluation (CTE) events.

  • Minimum CISSP, CISM, or equivalent certifications.

  • DoD 8570 IAM II Certified.

  • Top Secret Clearance required.

Job: General Engineering

Organization: Chenega Decision Science (CDS)

Title: Cybersecurity Engineer Senior

Location: Maryland-Aberdeen

Requisition ID: 1700001718