The Cybersecurity Engineer will support the IRES IT cybersecurity team working projects/service/accreditation. The position will be responsible for documenting the results of Assessment and authorization activities and technical or coordination activity. Prepare System Security Plans and update the Plan of Actions and Milestones POA&M.
Periodically conduct a complete review of each systems’ audits and monitor corrective actions until all actions are closed. Apply cybersecurity principals to provide realistic configuration management solutions designed to enhance MDA network security posture. Specific expertise shall include but not limited to utilizing DISA tools;
Infrastructure Design and STIG compliance; Systems Security and documentation development. Strong writing and project management skills necessary to participate in engineering projects and produce documentation required for certification evaluation. Strong interviewing skills in order to obtain answers for the implementation and Risk Assessment plan. Able to perform analysis of software risks.
Understand the Risk Management Framework Certification and accreditation process. Must be highly self- motivated and directed with keen attention to detail; have creative problem-solving abilities; ability to prioritize and execute tasks in a high-pressure environment; work with minimal oversight; enjoy working in a team-oriented, collaborative environment.
Current DoD 8570 compliant certification (Security+) and active DoD Secret clearance is required. Must be willing to travel to Huntsville, Alabama periodically to support in any CCRI efforts or other team efforts. 5 years’ Experience and Bachelor’s degree. Must be a US Citizen.
·Cisco CCNA and Microsoft Systems Certifications
· Must be able to thoroughly document work and adhere to enterprise processes & procedures.
· Limited systems administration experience with RedHat Linux, or Windows operating Systems
· Knowledge of NIST 800-53 accreditation documentation and processes.
·Some experience with TEMPEST enforcement” CAC/PKI technology; Common Criteria requirements; FIPS 140-2 standards; patch management
· Network design and implementation experience using DISA STIGs