Torch Technologies has an exciting opportunity for a Principal Cybersecurity Engineer to support the Air Force Life Cycle Management Center/ISR SOF (AFLCMC/HB) at Hanscom AFB, MA. The Air Force Program Execution Office for Intelligence, Surveillance, Reconnaissance and Special Operations (PEO ISR SOF) has the collective Air Force Materiel Command (AFMC) mission responsibility to manage and execute the modernization, development, testing, production, fielding, and sustainment of the ISR SOF portfolio, which includes over 200 programs for the United States Air Force (USAF) and foreign allies. AFLCMC/PEO ISR SOF is headquartered at Wright Patterson Air Force Base, OH with geographically separated operating units CONUS and OCONUS. This position supports the AWACS (E3) and Wedgetail (E7) Division; AFLMC (WIW). The WIW Division located at Tinker AFB (OK), and Hanscom AFB (MA), with dispersed support at Eglin AFB, Seattle WA, San Antonio TX and several OCONUS positions.

As a Principal Cybersecurity Engineer your duties include, but are not limited to:

• Provide expert-level support to Department of War (DoW) programs by assisting government leadership with decision-making, planning, and execution throughout the acquisition lifecycle.
• Lead development and review of system security documentation including System Security Management Plans, Program Protection Plans, Security Risk Analyses, OPSEC Plans, and security CONOPS in accordance with DoWI 5000.02, DoWI 8510.01, MIL-STD-1785, and the Adaptive Acquisition Framework
• Support system and application Authorization & Accreditation (A&A) activities under the Risk Management Framework (RMF), ensuring completeness, quality, and compliance of all artifacts
• Manage RMF implementation activities including ATO/ATC, reciprocity, and ongoing continuous monitoring
• Administer and manage eMASS system packages
• Provide technical leadership in network and system architecture design with an emphasis on cybersecurity, including DoW and joint networking environments
• Support cross-domain solutions (CDS), Commercial Solutions for Classified (CSfC), and NSA approval processes
• Assess and mitigate system, network, and application vulnerabilities, including ACAS scanning and STIG implementation
• Recommend security configurations, software changes, and compensating controls to mitigate risk
• Conduct cybersecurity risk and vulnerability assessments across planned and fielded systems
• Develop risk-based mitigation strategies and advise leadership on security tradeoffs impacting mission execution
• Recommend and update cybersecurity policies, procedures, and contingency plans, including disaster recovery
• Support waivers and deviations for mandated security controls when required to meet mission performance needs
• Provide acquisition program security support throughout the system lifecycle, including source selections
• Maintain and audit classified information databases, visit records, clearance tracking, and classified holdings
• Evaluate contractor classified data submissions for compliance with System Security Classification Guides (SSCGs)
• Update security classification guides and prepare acquisition security documentation
• Advise government leadership on cybersecurity design, implementation, and compliance
• Collaborate with government and commercial stakeholders to achieve RMF authorization approvals
• Develop and deliver cybersecurity awareness and training programs
• Support Foreign Military Sales (FMS) activities and interface with U.S. Government and international partners

Required Qualifications:

• U.S. Citizenship
• Bachelor's degree in a related technical discipline and 20 years of directly related experience, 10 of which must be in the DoW.

Preferred Qualifications:

• Master's degree in a professional engineering discipline from an ABET-accredited educational program along with at least 10 years of experience in the respective technical/professional discipline being performed, 5 of which must be in the DoW
• Understanding of cybersecurity in DoW cloud infrastructure
• Understanding of Agile methods, including CI/CD, DevSecOps, and DevOps
• Possess the ability to effectively communicate in both written and verbal forms on highly technical topics
• Ability to interface professionally with all levels of DoW and Foreign Civilian and Military
• Must have one of the following certifications:
• CISM
• CISSO
• FITSP-D
• GCIA
• GCSA
• GCLD
• GDSA
• GICSP
• CISSP-ISSAP, or
• CISSP-ISSEP
• Commercial solutions for classified (CSfC) and/or NSA approval process
• Cross domain solution (CDS) design and approval
• Demonstrated experience with network architecture and design. Demonstrated experience with DoW networking preferably with or supporting a Joint Communications Support Element (JCSE)
• Working knowledge of software defined networking (SDN)
• DoW RMF implementation (including ATO, ATC and reciprocity)
• Skilled in managing eMASS system packages
• Working knowledge of administrating servers, system and application security threats and vulnerabilities
• DISA Security Technical Implementation Guide (STIG) implementation.
• Assured Compliance Assessment Solution (ACAS) tool usage.

Preferred Qualifications:

• Bachelor's or Master's Degree in a professional engineering discipline from an ABET-accredited educational program along with a minimum of 25 years of experience in the respective technical/professional discipline being performed, 15 years of which must be in the DoW OR,
• Master's or Doctorate Degree in a related field and a minimum of 20 years of experience in the respective technical/professional discipline being performed, 12 years of which must be in the DoW

Schedule: M-F; 8AM to 5PM

Work Location: Hanscom AFB, MA

Travel: 20% CONUS and OCONUS travel is anticipated.

Relocation Assistance Available: No

Position Contingent Upon Award of Contract: No

Salary Range (only if required**): $170,000 - $185,000

The salary range information is a general guideline only. Several factors can influence the salary for a position including but not limited to, Federal Government contract labor categories and contract wage rates, geographic location, business considerations, scope and responsibilities of the position, local or other applicable market conditions, and internal equity. Other factors include the candidate's qualifications such as relevant prior work experience, specific skills and competencies, education/training, and certifications.

#LI-EW1

Benefits:

Torch Technologies is proud to offer a stable and professional work environment, a competitive salary, and an excellent, comprehensive benefit package including: ESOP participation, 401(k) match, medical, dental, vision, life insurance, short-term disability, long-term disability, flexible spending accounts, Health Saving Accounts and Health Reimbursement Accounts, EAP, education assistance, paid time off, and holidays.