Cyber Security Engineer
Convirgence · Herndon, VA · 33 mo ago
Information TechnologyFull-time
About the role
Candidate shall provide expert-level security support/guidance to engineering and technical IT related activities within the organization. In addition, candidate shall provide day-to-day support and oversight of all Information Assurance, Certification & Accreditation and Assessment & Authorization activities.
Responsibilities
- Manage the processing of all organizational efforts through the risk management cycle, closely coordinating and tracking risks, accreditation status, and reporting status across project teams.
- Generate security plans as required and be the security advocate for all system/architecture changes.
- Assemble and submit C&A packages to Principal Accreditation Authority/Designated Accreditation Authority.
- Cook up C&A actions and system testing with appropriate security personnel.
- Maintain a document repository where C&A project documentation is stored.
Requirements
- Minimum of eleven (11) years of experience in IT security and information assurance.
- Working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the certification and accreditation process.
- Experience authoring and maintaining systems security documentation including documentation of security mitigations and successful completion of DCID 6/3 or ICD503 accreditation process.
- Demonstrated experience navigating the Sponsor's security and accreditation process to include certification and accreditation of an IT system to Authority to Operate (ATO).
- Possess knowledge and experience in generating appropriate security documentation to receive proper accreditation from Directorate security personnel and correcting security shortfalls as they are identified through Agency sponsored reviews.
- Strong technical skills and analytic ability.
- Good communications skills, written and oral.
Desired Skills
- PMP Certification
- Knowledge of Customer PMF process
- Knowledge of FISMA, DCID 6/3, ICD 503 Standards
- IT development lifecycle
- Knowledge of Customer organization and processes specific to security requirements for IT systems and accreditation/certification.
- Experience in an ISSO /ISSE / ISSM role.