Jobs · Information Technology · Massachusetts

Cybersecurity Engineer, Principal

DCS Corp · Bedford, MA · 2 wk ago
Information Technology$142k–$225k/yrFull-time

Essential Job Functions

In this Advisory and Assistance Services (A&AS) role, you will provide expert-level support to Department of Defense (DoD) programs by assisting government leadership with decision-making, planning, and execution throughout the acquisition lifecycle. You will apply your technical and/or professional expertise to ensure compliance with applicable policies and regulations, contribute to mission success, and help deliver critical capabilities to the warfighter.

Lead development and review of system security documentation including System Security Management Plans, Program Protection Plans, Security Risk Analyses, OPSEC Plans, and security CONOPS in accordance with DoDI 5000.02, DoDI 8510.01, MIL-STD-1785, and the Adaptive Acquisition Framework

Support system and application Authorization & Accreditation (A&A) activities under the Risk Management Framework (RMF), ensuring completeness, quality, and compliance of all artifacts

Manage RMF implementation activities including ATO/ATC, reciprocity, and ongoing continuous monitoring

Administer and manage eMASS system packages

Provide technical leadership in network and system architecture design with an emphasis on cybersecurity, including DoD and joint networking environments

Support cross-domain solutions (CDS), Commercial Solutions for Classified (CSfC), and NSA approval processes

Assess and mitigate system, network, and application vulnerabilities, including ACAS scanning and STIG implementation

Recommend security configurations, software changes, and compensating controls to mitigate risk

Develop risk-based mitigation strategies and advise leadership on security tradeoffs impacting mission execution

Recommend and update cybersecurity policies, procedures, and contingency plans, including disaster recovery

Support waivers and deviations for mandated security controls when required to meet mission performance needs

Maintain and audit classified information databases, visit records, clearance tracking, and classified holdings

Evaluate contractor classified data submissions for compliance with System Security Classification Guides (SSCGs)

Update security classification guides and prepare acquisition security documentation

Advise government leadership on cybersecurity design, implementation, and compliance

Collaborate with government and commercial stakeholders to achieve RMF authorization approvals

Develop and deliver cybersecurity awareness and training programs

Support Foreign Military Sales (FMS) activities and interface with U.S. Government and international partners

Required Skills

  • Due to the sensitivity of the customer, U.S. citizenship is required.
  • Must have and be able to maintain a Secret level clearance.
  • BA Degree in Technical Discipline/MS preferred.
  • 20 years of directly related experience, 10 years of which must be in the DoD.
  • Understanding of cybersecurity in DoD cloud infrastructure.
  • Understanding of Agile methods, including CI/CD, DevSecOps, and DevOps.
  • Possess the ability to effectively communicate in both written and verbal forms on highly technical topics.
  • Ability to interface professionally with all levels of DOD and Foreign Civilian and Military.
  • One Of The Following Certifications: CISM, CISSO, FITSP, GCIA, GCSA, GCLD, GDSA, GICSP, CISSP - ISSAP, or CISSP - ISSEP
  • Extensive Knowledge And/or Experience In The Following Commercial solutions for classified (CSfC) and/or NSA approval process.
  • Demonstrated experience with network architecture and design.
  • Demonstrated experience with DoD networking preferably with or supporting a Joint Communications Support Element (JCSE).
  • Working knowledge of software defined networking (SDN).
  • DoD RMF implementation (including ATO, ATC and reciprocity).
  • Skilled in managing eMASS system packages.
  • Working knowledge of administrating servers, system and application security threats and vulnerabilities.
  • DISA Security Technical Implementation Guide (STIG) implementation.
  • Assured Compliance Assessment Solution (ACAS) tool usage.

Salary Range

$142,188-$225,000

Similar jobs