Engility Corporation Washington , DC 20319
Posted 2 weeks ago
SAIC seeks a Senior Security Engineer to supporting the Department of Transportation's Cybersecurity mission by joining a dedicated team of cybersecurity professionals who collaborate, cooperate, and facilitate maintaining and enhancing the security posture of DOT information systems and infrastructure. These information systems and infrastructure support the DOT mission of managing and maintaining United States critical infrastructure (i.e. highways, bridges, roads, etc.).
Job Role Specific Requirements:
Lead a small team of individuals who support cybersecurity operational environment and RMF/IA related requirements/needs
Engage with Federal Leadership and counterparts to support cybersecurity operational environment and RMF/IA related requirements/needs
Engage with infrastructure administrators and engineers to address audit findings and Plan of Actions and Milestones to present successful remediation
Maintain comprehensive records associated with assessments, both internal and independent, compliance audits and other risk management and information assurance related activities
Work with infrastructure administrators and engineers to understand the technologies that have been put in place to meet security requirements
Work RMF/IA related ITSM (ServiceNow) assigned tickets to completion
Participate in relevant Cybersecurity and RMF/IA meetings and activities
Identify opportunities to collaborate cross-functional teams on and provide feedback to cybersecurity strategies and solutions that enhance DOT security posture
Experience with and comprehensive understanding of NIST RMF, SA&A, ATO, and IA processes and best practices.
Additionally, a general understanding of application and technology stacks, cloud-based systems, operating systems, databases, networking, firewalls, Data Loss Prevention, Endpoint Security Software, Network Intrusion Detection and Prevention Systems (IDS/IPS) and host-based IDS and IPS and general cyber security best practices and industry standards
Top Qualifications, Skills, Experience or Certifications:
9 years in Cybersecurity or related Information Technology fields, Bachelors and nine (8) years or more experience; Masters and seven (7) years or more experience
Experience working with NIST 800-37, 800-53, 800-30, FIPS 199 and 200, and associated Risk Management documentation
Experience leading a team of individuals (2 or more) in conducting Risk Management and/or Information Assurance activities.
Experience supporting and/or directly conducting Security Assessment and Authorization (SA&A) and Authority to Operate (ATO) activities.
Experience updating and/or providing feedback on Information Assurance (IA) documentation; System Security Plans (SSP), Disaster Recover (DR) plans, Contingency Plans (CP), Privacy Threshold / Impact Assessments (PTA/PIA), etc.
Proven understanding of Federal Cybersecurity related requirements (i.e. FISMA, NIST 800 series, OMB & DHS/CISA Directives, etc)
Excellent communications skills with the ability to describe risk management and information assurance concepts to unacquainted individuals
Knowledge of and/or experience with various information system technology domains; i.e. operating systems (Windows and Linux), web applications, databases, cloud infrastructure and services, cybersecurity tools, communication platforms, etc.
Note: Candidate must be a U.S. citizen or green card holder who has resided in the U.S. for at least 3 years and the ability to obtain a public trust
Engility Corporation