Cybersecurity Systems Security Engineer III

Mantech International Corporation Colorado Springs , CO 80928

Posted 2 months ago

Secure our Nation, Ignite your Future

.

Cybersecurity System Security Engineer III

The System Security Engineer's primary function is working within Special Access Programs (SAPs)

supporting SMC and AFSPC acquisition programs. The position will provide "day-to-day" support for

Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities to meet

NIST Cybersecurity requirements for system assessment & authorization.

Performance shall include:

  • Lead a team of System Security Engineers and Certification and Accreditation Analysts responsible

for ensuring the customer's national and international security interests are protected as acquisition

systems are designed and tested

  • Chair and or Co-Chair customer and SAP community Cybersecurity working groups, participate in

SSE IPT reviews

  • Perform oversight of the development, implementation and evaluation of information systems security

program policy; special emphasis placed upon integration of existing SAP network infrastructures

  • Provides expert level consultation and technical services on all aspects of Information Security

  • Review SSE related designs and provides security compliance recommendations

  • Develop and provide Cybersecurity risk management recommendations to the customer

  • Provide SSE support for Mission and Training systems design and development

  • Assist with development and maintenance of the Program Protection Plan & Cybersecurity Strategy

  • Assist with site activation activities and design reviews, to include test & evaluation of systems

  • Represent the Government Program Manager in various SSE related working groups, advisory

groups, and advisory council meetings

  • Work directly with approval/accreditation authorities to obtain systems' Authorization to Operate

  • Review, prepare, and update AIS accreditation packages

  • Perform AIS self-inspections, provide security coordination and review of all system test plans

  • Identify AIS vulnerabilities and implement countermeasures

  • Represent the customer on various technical review and inspection teams

  • Conduct security surveys at subordinate facilities and gather pertinent security documentation for

inclusion into system accreditation packages

  • Coordinate, prepare, and track AIS inspections, reports, and responses

  • Maintain AIS security records and prepare Co-Utilization Agreements for network nodes operating in

government facilities

  • Prepare reports on the status of security safeguards applied to computer systems

  • Ensure AIS and network nodes are operated, maintained, and disposed of in accordance with security

policies and practices

  • Perform ISSO duties in support of in-house and external customers

  • Assist Department of Defense, National Agency and Contractor organizations with the development

of certification and accreditation (C&A) efforts

  • Review, track, and conduct AIS training

Experience:

  • 12-15 years total related experience, including minimum 8 years of relevant SCI or SAP experience.

  • Minimum 4 years of SAP-related experience highly desired.

Education:

  • Bachelor's degree or equivalent additional experience (4 years)

Certifications:

  • Must meet position and certification requirements outlined in DoD Directive 8570.01-M for

Information Assurance Technician Level 3 and Information Assurance Manager Level 3 within 6

months of the date of hire. CISSP Recommended. Must complete training on Joint Security Implementation Guidance (JSIG) and Risk Management Framework (RMF) Information Security Continuous Monitoring (ISCM)

Security Clearance:

  • Current Top Secret Clearance with SCI Eligibility

  • Eligibility for access to Special Access Program Information

  • Willingness to submit to a Counterintelligence polygraph

Other Requirements:

  • Must be familiar with security policy/manuals and the appropriate ICDs/JAFANs/DOD Manuals and

other guiding policy documents

  • Full understanding of Risk Management Framework (RMF) and Joint SAP Implementation Guide

(JSIG) processes for system accreditation, along with legacy (DITSCAP, DIACAP) processes

  • Must have the ability to work in a dynamic environment and effectively interact with numerous

DOD, military/civilian personnel and industry partners

  • Working knowledge of Microsoft Office (Word, PowerPoint, and Excel)

  • Possess a high degree of originality, creativity, initiative requiring minimal supervision

  • Willingness to travel within the organizational Area of Responsibility (AOR) (note - could be

extensive, and will include both air and ground transportation)

ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law.

If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accommodation please click careers@mantech.com and provide your name and contact information.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cybersecurity Engineer

Vistronix, Inc.

Posted 3 days ago

VIEW JOBS 11/18/2019 12:00:00 AM 2020-02-16T00:00 ASRC Federal Mission Solutions (AFMS) is a premier provider of systems engineering, software engineering, system integration and project management services for real-time, mission-critical defense systems. AFMS is seeking seeking to identify qualified candidates in anticipation of an upcoming need for a Cybersecurity Engineer in Colorado Springs, CO to support the SMORS program. Responsibilities: * Perform assessment of systems and networks within the networking environment and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations such as compliance audits using STIG Viewer, SCAP, etc and active evaluations such as vulnerability assessments utilizing ACAS. * Perform assessments of non-technical RMF artifacts and identify where those artifacts deviate RMF control requirements. * Establish strict program control processes to ensure mitigation of risks and supports obtaining assessment and authorization of systems. Includes support of process, analysis, coordination, control certification test, compliance documentation, as well as investigations, software research, hardware introduction and release, emerging technology research, inspections, and periodic audits. * Assist in the implementation of the required government policy (i.e., NISPOM, NIST, DoD), making recommendations on process tailoring, participating in and documenting process activities. * Perform analyses to validate established cybersecurity controls and requirements and to recommend cybersecurity safeguards. * Support program test milestones through pre-test preparations, participating in the tests, analysis of the results, and preparation of required artifacts supporting authorization. * Prepare artifacts such as Test Results (TR), Authorization Boundary Diagrams (ABD), Network Topologies, Flow-diagrams, Hardware and Software listings, Ports, Protocols, and Services Management documentation, supporting Assessment and Authorization activities and maintain the Plan of Actions and Milestones (POA&M). * Periodically conduct a complete review of each program support and operational system's audits and monitor corrective actions until all actions are closed. * Coordinate across the program to address identified deficiencies during RMF assessment activities. Qualifications: * Active Secret clearance required to start * Current Security+ certification (DoD Approved 8570 Baseline; IAT Level II) required to start * Security engineering skills with a working knowledge of cybersecurity technology and DoD/Federal cybersecurity policy (i.e., DoDI 8500.01, NIST SP 800-53, etc.). * Thorough understanding and utilization of Enterprise Mission Assurance Support Service (eMASS) * Experience with the Xylok compliance scanning application * Familiarity in the Risk Management Framework (RMF) Cybersecurity Lifecycle to include: identifying controls and overlays, generating testable requirements, identifying resilient architecture design, configuring, running, and scripting audit tools, providing analysis of vulnerability analyses, conducting verification testing for compliance assessment. Preferred Qualifications: * Experience creating and updating Python scripts * Experience with Software Assurance (SwA) static and dynamic code analysis * Experience with Security Information and Event Management (SIEM) solutions (e.g. QRadar/LogRhythm) * Experience with Host Based Security System (HBSS) ASRC Federal and its Subsidiaries are Equal Opportunity / Affirmative Action employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law. * Active Secret clearance * Current Security+ certification (DoD Approved 8570 Baseline; IAT Level II) * Security engineering skills with a working knowledge of cybersecurity technology and DoD/Federal cybersecurity policy (i.e., DoDI 8500.01, NIST SP 800-53, etc.). * Thorough understanding and utilization of Enterprise Mission Assurance Support Service (eMASS) * Experience with the Xylok compliance scanning application * Familiarity in the Risk Management Framework (RMF) Cybersecurity Lifecycle to include: identifying controls and overlays, generating testable requirements, identifying resilient architecture design, configuring, running, and scripting audit tools, providing analysis of vulnerability analyses, conducting verification testing for compliance assessment. ASRC Federal and its Subsidiaries are Equal Opportunity / Affirmative Action employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law. Vistronix, Inc. Colorado Springs CO

Cybersecurity Systems Security Engineer III

Mantech International Corporation