Cyber Security Engineer

Cyber Security Engineer

Boston, MAJoin our Talent Network

Chenega Technical Innovations is currently seeking talented individuals to add to our Talent Network.

Position: Cyber Security Engineer

Summary: The Cyber Security Engineer will provide strategic cyber security support for customer network and mission systems, including security posture, system accreditation, vulnerability profile, continuous monitoring and system scanning and patching/updates using all cyber enterprise tools.

Duties and Responsibilities:

Provide technical leadership and security operations management for the Cyber Security Team.

Responsible for ensuring the security, integrity, and availability of information assets through the application of information security/information assurance policies, principles, and practices in the delivery of IT services and the rapid and effective response to security incidents.

Define and/or review stakeholder security objectives, protection needs and concerns, security requirements, and associated validation methods.

Perform/review scans, review the results, and write necessary reports and plans.

Support the Risk Management Framework (RMF) process IAW DoDI 8500.01 and 8510.01 which manages the life-cycle cybersecurity risk to DoD Information Technology, including current tracking and submission processes for accreditation packages.

Support cohesion and collaboration between Cyber operations and DREN & NIPRNET.

Develop, implement, review and evaluate System Security Plans, Interconnection Security Agreements, Risk Assessments, Plan of Actions and Milestones (POAM), System Requirements Traceability Matrix (SRTM), Security Assessment Reports, Policies, and Contingency Plans as well as other required documentation to satisfy Certification and Accreditation (C&A)/Assessment and Authorization (A&A) requirements in accordance with government policies and procedures.

Review and analyze network events, OPORDS, and emerging cyber threats and develop solutions and strategies to ensure survivability of Army networks against attacks aimed at disrupting services, gaining unauthorized access or violating the integrity of Army Information systems.

Disseminate information to coordinate cyber efforts with IMOs tenants.

Monitor systems performance and report trends or incidents that impact security posture of supported systems and networks.

Utilize Army approved vulnerability scanning tools and reports, to identify, remediate and report vulnerabilities/trends and to support remediation analytics.

Submit network and system changes, and major version software updates through the change management process for approval prior to installation wide deployment or distribution.

Know and participate in security compliance efforts that will be assessed and validated by the Government IAW DoDI 8510.01 and National Institute of Standards and Technology (NIST) 800.53, Revision 4, and NIST 800-53A, Revision 4.

Provide collaborative courses of action (COA) for observed issues, trends or vulnerabilities.

Collaborate in threat assessment, vulnerability analysis, risk assessment and system/network risk mitigation.

Maintain professional certifications, training and professional education as required by Army baseline standards and supporting cyber computing environments (e.g. SCCM, ACAS, AESS).

Participate in reviews of software, hardware and network architecture change requests submitted through the configuration management process.

Interface with client and ensure effective communication.

Follow all NEC policies, procedures and regulations.

Maintain currency on technology and service capabilities.

Other duties as assigned

Minimum Qualifications:

Bachelor's Degree required. 6+ years of relevant experience, or a combination of experience and training may be used in lieu of a degree.

6+ years of related experience required

Proficiency in the use of cyber security tools (current Army approved version) to maintain acceptable security posture and identify/remediate vulnerabilities.

Must be well versed in the Army's Information Assurance Vulnerability Management (IAVM) program, process, and mitigation actions.

Experience with security tools (AESS, AEMS, SCCM, SCAP/STIG).

Experience with cyber security vulnerability testing related network and system test tool (e.g., ACAS, Nessus, Tanium, SCAP).

Experience with network and system security administration, including operating system security configuration and account management best practices for MS Windows.

Experience in security engineering involving various computer hardware and software operating system and application solutions in both a stand-alone and in LAN/WAN configurations is desired.

Experience implementing DoD and Federal IA Assessment and Authorization (A&A) processes, IA controls and developing and maintaining associated documentation is desired.

Experience with PowerShell and Command scripting is desired.

Possess Baseline and Full Computing Environment Certifications for IAM-II IAW DoD 8570.01-M and BBP 05-PR-M-0002.

Must have NACLC with Tier 3 investigation

Secret Clearance

Chenega Corporation and family of companies is an Equal Opportunity Employer Minorities/Women/Veterans/Disabled/Sexual Orientation/Gender Identity

Native preference under PL 93-638.

We participate in the E-Verify Employment Verification Program.

Join our Talent Network

Similar searches: Full Time, Administrative, Government and Public Services