Senior CyberSecurity Engineer (Must be US Citizen and Clearable)

Job Description

• Must Be Local To DC,VA,MD and also Must be an US Citizen and clearable
• Architects, plans, configures, deploys, maintains, and upgrades COTS/GOTS and custom toolsets to address vulnerabilities and/or implement security controls.
• Applies a combination of expert engineering knowledge of enterprise IT and security solutions to design, develop and/or implement solutions to ensure they are consistent with enterprise architecture security policies and support full spectrum military cyberspace operations.
• Designs, tests, and implements secure operating systems, networks, security monitoring, tuning and management of IT security systems and applications, incident response, digital forensics, loss prevention, and eDiscovery actions. Includes security control design and solution planning at the system, mission, and enterprise level, security-in-depth/defense-in-depth, and other related IAM/ISSO/ISSE support functions.
• Involved in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access.
• Researches and evaluates cyber capabilities and new security tools and products against operational requirements and introduces them to the enterprise in alignment with IT security strategy, and to support the offensive and defensive capability design and troubleshoot and problem solve technical and non-technical issues.
• This is senior technical staff dedicated to transforming customer environments into a more secure operating environment in a holistic manner.

• Problem Complexity:Develops technical solutions to complex problems, which require the regular use of ingenuity and creativity.

• Impact:Guides the successful completion of major programs. Erroneous decisions or recommendations would typically result in failure to achieve major organizational objectives.

• Liaison:Represents organization as prime technical contact on contracts and projects. Interacts with senior external personnel on significant technical matters often requiring coordination between organizations.Specific duties
  mayinclude:

• Assist in assessing the data Impact Level (IL) of migrating applications in accordance with the NOAA Cloud policy.
• Work with the government to implement and evolve phased ATO process for the environment using A&A automation and maximize the use of inheritance/reciprocity
• Develop approaches support strong authentication and multi-factor authentication to implement data access authorization based on user identity
• Ability to provide timely remediation recommendations for audit findings
• Ability to support POA&M reviews and recommendations
• Ability to support Code Review Security Vulnerabilities Remediation
• Ability to support the updates to Risk Management Framework Artifacts
• Ability to create a Microsoft Visio based topology diagram template.

Qualifications

• Bachelors and Ten (10) years or more experience; Masters and Eight (8) years or more experience.
• Ability to obtain and maintain NOAA security clearance is required.
• Minimum Information Assurance System Architecture and Engineering (IASAE) Level II certified IAW DoD 8570.01M
• Experience with Risk Management Framework (RMF) and updating of security artifacts
• Experience with compliance verification methods including DISA STIG, SRGs, and best practices
• Experience with DevSecOps
• Knowledge of cloud environments provided by AWS and Azure
• Working knowledge of Microsoft Office Suite including Microsoft Visio

Additional Information

All your information will be kept confidential according to EEO guidelines.