Cybersecurity Engineer with Security Clearance

Cybersecurity Engineer FSP Essential responsibilities and activities include but are not limited to: Perform Cybersecurity/Information Assurance for all managed systems, applications, and hardware Design, implement, and maintain Department of Defense provided Security and Vulnerability tools including Host Based Security System (HBSS), Splunk, and Microsoft Defender for Endpoints Support authorization/reauthorization efforts in alignment with the Department of Defense RMF, NIST 800-53 (e.g. develop and apply Active Directory Group Policy Objects, develop deployment packages, etc.) Analyze new security requirements, define courses of action, and design enterprise solutions, coordinating with engineering and operations teams to implement within the environment Formalize and execute a process for communicating vulnerability results in a manner understood by technical and non-technical stakeholders based on risk tolerance and impact to the environment Leverage vulnerability database sources to understand each weakness, its probability and remediation options, including vendor-supplied fixes and workarounds Design, implement, and maintain, scripts used in asset discovery and vulnerability status Conduct continuous independent discovery and vulnerability scans/security assessments of enterprise-wide assets and proactive control testing Set up and execute Nessus scans; establish automated reporting Document, prioritize, formally report asset, vulnerability state with remediation recommendations/validation. Coordinate with system owners and system administrators/technical points of contact to identify system vulnerabilities, conduct vulnerability analysis, and formulate remediation strategies Develop packages for remediation efforts, coordinate with vulnerability remediation specialists for deployment Support/monitor patch management compliance across infrastructure to align to audit requirements Identify and apply DISA Security Technical Implementation Guide (STIG) benchmarks + STIG reviews. Support preparation of Plan of Action & Milestones (POAM) development to support compliance and authorization/reauthorization activities Prepare and disseminate regular Cyber Compliance/vulnerability reporting with customer to explain. Contribute to Standard Operating Procedures, Work Instructions, User Guides and checklists Work as a team to consistently learn and share advanced skills and foster team excellence Actively collaborate with the ISSO to develop, maintain, and enhance cyber security controls Collaborate with security groups such as red teams, threat intelligence and risk management to form a holistic team dedicated to thwarting attackers and reducing attack surface Position / Candidate Requirements. DoD 8750 IAT Level II Certification (CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP) Experience operating and maintaining a Nessus environment Comply with DOD 8140.01 "Cyberspace Workforce Management" and maintain an appropriate and current IA certification to perform IA functions in accordance with Department of Defense (DoD) 8570.01-M, "Information Assurance Workforce Improvement Program" Exp developing/implementing h/w and s/w solutions for data center and virtual infrastructure technologies. Desired / Advantageous Qualifications Exp with Hyperconverged architectures such as Cisco Hyper Flex, Nutanix, etc.; Exp with Cisco Unified Computing System (UCS), Fabric Interconnects and other similar technologies; Exp with Virtualized Desktop Infrastructure, e.g., Citrix ZenDesktop, and/or VMware Horizon Large on-premise storage engineering/administration exp with NetApp, Dell/EMC, Pure Storage, etc. Exp designing and deploying Collaboration Platforms such as Microsoft SharePoint Exp designing and deploying SQL Database Infrastructure such as Microsoft SQL Server Exp engineering and implementing data center and campus area networks and security stacks. Exp engineering and implementing platforms and services in a software-defined network environment Exp with DoD IT security requirements including DISA STIG/SRGs. Understanding of Department of Defense standards and best practices