Active Secret clearance required with ability to obtain Top Secret; TS/SCI eligibility required.
Bachelor's degree in Cybersecurity or related field with around 7 years of experience OR 11 years in DoD IT environments.
Significant experience as ISSO and with RMF and eMASS supporting DoD or Army acquisition programs.
Certification in CISSP required, alongside DoDM 8570.01 IAM Level I baseline certification.
Strong knowledge of DoD, Federal, and U.S. Army cybersecurity policy and IA requirements.
Responsibilities
Provide cybersecurity and Information Assurance inputs following relevant policies and regulations across PM PNT lifecycles.
Plan and maintain acquisition documentation for PM PNT, including Cybersecurity Strategy and updates.
Serve as the cybersecurity functional lead for Configuration Management and approve Engineering Change Proposals.
Provide ISSE recommendations to enhance system security and compliance for vendors.
Coordinate and support cybersecurity testing activities, including various assessments.
Benefits
Health Care Plan (Medical, Dental & Vision)
Retirement Plan (401k, IRA)
Life Insurance (Basic, Voluntary & AD&D)
Paid Time Off (Vacation, Sick & Public Holidays)
Family Leave (Maternity, Paternity)
Short Term & Long Term Disability
Training & Development
Full Job Description
Credence has an immediate need for a Cybersecurity Engineering (EMASS) at the senior level to support the Army Positioning, Navigation and Timing (PM PNT) System Engineering and Technical Assistance (SETA) Program at Aberdeen Proving Grounds, MD.
This job is onsite at Aberdeen Proving Grounds, MD.
Responsibilities include, but are not limited to the duties listed below:
Provide classified and unclassified cybersecurity and Information Assurance (IA) inputs, recommendations, and documentation in accordance with DoDI 8500.01, DoDI 8510.01, AR 25-1, AR 25-2, applicable laws, regulatory requirements, and PM PNT procedures across PM PNT product lifecycles.
Plan, create, review, coordinate, and maintain classified and unclassified PM PNT IA and cybersecurity acquisition documentation, including Cybersecurity Strategy, Clinger-Cohen Act documentation, SEP, TEMP, and acquisition strategy updates.
Serve as the cybersecurity functional lead in Configuration Management, reviewing and approving Engineering Change Proposals (ECPs).
Provide Information System Security Engineering (ISSE) recommendations to vendors to enhance system security, resilience, and compliance.
Coordinate, lead, and support cybersecurity developmental and operational testing activities, including CTTX, CVI, ACDT, CVPA, and Adversarial Assessments (AA).
Serve as the appointed Information Systems Security Officer (ISSO) for Combat Ready PNT and maintain PM PNT in-house RMF packages in eMASS, ensuring POA&M updates, package currency, and required documentation remain accurate and timely.
Plan, document, and execute Government Assessment and Authorization processes, including RMF activities, technical risk assessments, risk analysis, vulnerability and susceptibility analysis, POA&M development, and implementation and validation of assigned security controls.
Identify, analyze, and resolve PM PNT information assurance, software assurance, and cybersecurity issues across the PM PNT product line and in support of PNT-supported client systems.
Integrate cybersecurity requirements into system engineering processes, including requirements, interface documentation, engineering plans, training plans, and test plans.
Participate in system architecture design and reviews to ensure scalability, reliability, and secure network operations.
Draft network transition plans and support enterprise network operations and troubleshooting across geographically dispersed environments.
Serve as the primary cybersecurity point of contact, collaborating with cross-functional teams, vendors, and stakeholders.
Attend and provide classified and unclassified IA and cybersecurity support at PM PNT IPT meetings, working groups, PNT forums, and technical reviews, including SSR, SRR, system functional review, PDR, CDR, PRR, FCA, and PCA events.
Coordinate cybersecurity reporting and operational impact analysis with PEOs, ASA(ALT), and ARCYBER, including cyber event tracking.
Analyze Army cyber operational orders and ensure reporting of emerging threats and mission impacts.
Assist in drafting SOOs, SOWs, PWSs, performance specifications, and associated solicitation documentation, and provide technical advice and assistance regarding proposal evaluations.
Provide and review scheduling inputs to PM PNT program integrated master scheduling efforts.
Participate in classified Secret and Top Secret meetings, as required.
Monitor cyber defensive measures and support formal Information Assurance program development and execution.
Leverage automation and AI-enabled solutions to improve cybersecurity engineering processes and efficiency.
Requirements
Education, Requirements, and Qualifications:
Education, Requirements, and Qualifications:
Active Secret clearance required with the ability to obtain Top Secret; TS/SCI eligibility required.
Bachelor's degree in Cybersecurity, Information Technology, or related field with approximately 7 years of experience OR 11 years of cybersecurity experience supporting DoD IT environments and systems.
Significant ISSO, RMF, and eMASS experience supporting DoD or Army acquisition programs, including the ability to manage multiple RMF packages, maintain POA&Ms, and keep security documentation current.
Meets DoDM 8570.01 IAM Level I baseline certification requirements, including one of the following:
CAP - (ISC)² - Authorized Authorization Professional
Cloud+ - CompTIA - Cloud Computing Management
GSLC - GIAC - Security Leadership
Security+ CE - CompTIA - Continuing Education
HCISPP - (ISC)² - Healthcare Information Security and Privacy
CISSP certification required.
Strong knowledge of DoD, Federal, and U.S. Army cybersecurity policy, IA requirements, RMF, and acquisition frameworks, including DoDI 8500.01, DoDI 8510.01, AR 25-1, and AR 25-2.
Hands-on experience with RMF, eMASS, STIGs, and ACAS.
Experience supporting Configuration Management processes and ECP reviews within an acquisition environment.
Knowledge of information security, information assurance, and auditing practices.
Experience with cybersecurity and information assurance tools and methodologies.
Familiarity with acquisition documentation and lifecycle processes.
Excellent written and verbal communication skills with the ability to collaborate across technical and non-technical stakeholders.
Security+ CE is the most commonly held certification; Cloud+ is also frequently accepted for IAM Level I roles.
