Jobs · Information Technology · Virginia

Cybersecurity Project Engineer

Nightwing · Sterling, VA · 11 mo ago
Information TechnologyFull-time

About the role

The Cyber Security Project Engineer (CSE) supports The LSA to identify, design, and deploy security controls and subsystems to support the on-premises secure multi-tenant infrastructure environment (customer).

Responsibilities

  • Collaborate with the platform and operations teams to integrate security controls into the IaaS environment.
  • Discover and mitigate cybersecurity risks, assess the security controls implemented within and inherited by the system, understand and apply policies to address requests for information on cyber best practices, conduct risk assessments for specialized devices, and provide information system security expertise.
  • Collaboratively works closely with platform and operations teams, sponsor, information system security officers and managers, as well as the authorizing officials (AO) to conduct comprehensive CNSSI 1253 and NIST SP 800-53a assessments of the management, operational, and technical security controls.
  • Daily tasks include, but are not limited to:
    • Work with LSA, technical team to develop template/tools for automating the deployment of security controls in the CI/CD pipeline and the continuous automated/enhanced assessments or O&M of vulnerability scan tools.
    • Facilitates meetings, analyzes authorization documents and associated artifacts against authorization requirements to identify gaps, establish a schedule to address outstanding authorization requirements, and coordinate directly with team stakeholders.
    • Review and make recommendations on program-level documentation (e.g., requirements specification, system architecture, design documents, test plans and security plans).
    • Identify and recommend mitigations for potential avenues of exploitation, including system level attacks and user level attacks.
    • Advise and assist with the Lifecycle Assessment and Authorization (A&A) process and development of Systems Security Plan (SSP).
    • Develop and document security evaluation test plans and procedures.
    • Develop SCA artifacts, including the Security Assessment Plan (SAP), Security Assessment Reports (SAR), and Remediation Actions.
    • Experience with developing Plans of Action and Milestones (POA&Ms), including providing risk mitigation strategies, steps, and milestones.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards, and how they relate to the A&A process.
    • Apply working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process.
    • Conduct hands-on security testing, analyze results, document risks, and recommend countermeasures.
    • Apply working knowledge of industry best practices (e.g., SANS Top 20), national/international policies and standards

Similar jobs

Project Engineer

Lifecycle Construction Services, LLCSan Antonio, TX· 1 mo ago
Educationapply on app.jazz.co

Project Engineer

RK IndustriesHenderson, CO· 3 wk ago
Engineeringapply on jobs.jobvite.com

Project Engineer

The Honolulu AdvertiserSunray, TX· 6 mo ago
Engineeringapply on continentalcarbon.primepay-recruit.com

Project Engineer

PlastipakVictorville, CA· 1 wk ago
Engineering$75k–$100k/yrapply on plastipak.wd1.myworkdayjobs.com

Project Engineer

ViasatTempe, AZ· 5 days ago
Engineering$142k–$224k/yrapply on careers.viasat.com

Project Engineer

Lithko ContractingNashville, TN· 2 mo ago
Engineeringapply on aplitrak.com