Trace3

Cyber A&A Engineer (26-205)

Trace3$105K — $122K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 5-7 years of experience in Cybersecurity/A&A engineering roles
  • In-depth knowledge of cybersecurity policies specific to DoD and federal environments
  • Familiarity with Risk Management Framework (RMF) lifecycles and controls
  • Experience using Enterprise Mission Assurance Support Service (eMASS)
  • Proficient in software assurance practices and vulnerability analysis

Responsibilities

  • Process and track user account forms and required training for systems
  • Conduct annual account validations and coordinate with admins for account management
  • Assess systems in virtual environments for compliance with policies
  • Execute compliance audits using tools like STIG Viewer and ACAS
  • Develop and implement STIG assessment plans for multiple operating systems
  • Update and maintain RMF artifacts to ensure compliance
  • Coordinate with stakeholders to address deficiencies found during assessments

Benefits

  • Medical, dental, and vision plans for employees and dependents
  • 401(k) retirement plan with employer match
  • 529 College Savings Plan and Health Savings Account
  • Life insurance and long-term disability coverage
  • Training and development opportunities
  • Work-life balance with generous paid time off
  • Promotes a collaborative and engaging company culture
Full Job Description
JOB SUMMARY:

The Cyber A&A Engineer supports Assessment and Authorization (A&A) activities within the Risk Management Framework (RMF) by evaluating cybersecurity controls, identifying system vulnerabilities, and developing required artifacts to achieve and maintain system authorization. This role also performs functions aligned to an Information System Security Officer (ISSO), with a focus on cybersecurity policies, technologies, and compliance within DoD environments.

SUMMARY OF ESSENTIAL JOB FUNCTIONS:
  • Process and track DD Form 2875 user account forms and required training for privileged and non-privileged accounts.
  • Perform annual account validation and coordinate with system administrators on account creation, modification, and removal.
  • Assess systems and networks in virtual environments to identify deviations from approved configurations, enclave policy, or local policy.
  • Conduct compliance audits using passive tools (e.g., STIG Viewer, SCAP) and perform active vulnerability assessments using ACAS.
  • Execute Security Technical Implementation Guide (STIG) assessments and system hardening for Windows, Red Hat Enterprise Linux (RHEL), and networking equipment using ConfigOS.
  • Develop test plans for STIG checks and demonstrate expected outcomes.
  • Update Risk Management Framework (RMF) artifacts to track and remediate system hardening non-compliance.
  • Establish program control processes to mitigate risk and support system assessment and authorization.
  • Support compliance activities including analysis, coordination, certification testing, documentation, inspections, audits, and technology evaluation.
  • Assist in implementing government cybersecurity policies (e.g., NISPOM, NIST, DoD) and recommend process improvements.
  • Validate cybersecurity controls and recommend appropriate safeguards through vulnerability analysis.
  • Support program test milestones through pre-test preparation, participation, analysis of results, and artifact development for authorization activities.
  • Prepare and maintain authorization documentation including:
    • Test Results (TR)
    • Authorization Boundary Diagrams (ABD)
    • Network topologies and flow diagrams
    • Hardware/software inventories
    • Ports, protocols, and services documentation
    • Plan of Actions and Milestones (POA&M)
  • Conduct periodic reviews of system audits and track corrective actions through closure.
  • Coordinate with program stakeholders to resolve deficiencies identified during RMF assessments.

REQUIRED SKILLS AND EXPERIENCE:
  • Security engineering skills with working knowledge of cybersecurity technologies and DoD/Federal cybersecurity policies (e.g., DoDI 8500.01, NIST SP 800-53).
  • Experience with Enterprise Mission Assurance Support Service (eMASS).
  • Understanding of the Risk Management Framework (RMF) cybersecurity lifecycle, including:
    • Controls and overlays
    • Development of testable requirements
    • Resilient architecture design
    • Configuration, execution, and scripting of audit tools
    • Vulnerability analysis and verification testing for compliance
  • Knowledge of Software Assurance (SwA), including static and dynamic code analysis (e.g., Fortify, SonarQube).


Preferred Qualifications
  • Experience performing ISSO-related functions in a DoD or federal environment.
  • Windows and Red Hat Enterprise Linux (RHEL) system administration experience.
  • Experience working in virtual environments.
  • Experience working with Docker and containers.
  • Experience administering ACAS and ESS (formerly HBSS).
  • Experience using ConfigOS.


EDUCATION: Bachelors with 3+ or Master with 1+ Years of Experience

LOCATION: Full Time/ On-Site Schriever Base in Colorado Springs, CO

CLEARANCE REQUIRMENT: Top Secret

DOD 8570 REQUIREMENT: IAT - Level II

SALARY RANGE: $105,000 to $122,400

PHYSICAL DEMANDS:

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodations may be made to enable individuals with disabilities to perform these functions.

While performing the duties of this job, the employee is regularly required to:
  • Remain in a stationary position for extended periods of time.
  • Operate a computer, keyboard, and other office equipment using hands and fingers.
  • Communicate effectively in person, over the phone, and through electronic means.
  • Occasionally move about the office to access files, office equipment, and meeting spaces.
  • Lift and/or move up to 15 pounds as needed.
  • Maintain specific vision abilities, including close vision and the ability to adjust focus.

WORK ENVIRONMENT:

This position is performed within a secure, classified workspace. Employees must comply with all applicable security protocols and access control procedures, including restrictions on personal electronic devices and the handling of sensitive information.

Actual salary will be based on a variety of factors, including location, experience, skill set, performance, licensure and certification, and business needs. The range for this position in other geographic locations may differ. Certain positions may also be eligible for variable incentive compensation, such as bonuses or commissions, that is not included in the base salary.

Estimated Pay Range

$105,000-$122,400 USD

The Perks
  • Comprehensive medical, dental and vision plans for you and your dependents
  • 401(k) Retirement Plan with Employer Match, 529 College Savings Plan, Health Savings Account, Life Insurance, and Long-Term Disability
  • Competitive Compensation
  • Training and development programs
  • Major offices stocked with snacks and beverages
  • Collaborative and cool culture
  • Work-life balance and generous paid time off


About Trace3

Trace3, Inc. is an Irvine, CA-based Information technology company and managed service provider. The company provides IT Operations Analytics, cloud computing, cybersecurity, machine learning, artificial intelligence, big data intelligence, Internet of Things consulting and data center services for businesses.
Learn more about Trace3

Similar Jobs

More Jobs at Trace3

More Information Technology Jobs

Find similar Cyber A&A Engineer (26-205) jobs: