Cybersecurity Project Engineer with Security Clearance
About the role
The Cyber Security Project Engineer (CSE) supports the LSA to identify, design, and deploy security controls and subsystems to support the on-premises secure multi tenant infrastructure environment (CUSTOMER). The CSE collaborates with the Platform and Operations teams to integrate security controls into the IaaS environment. The CSE discovers and mitigates cybersecurity risks, assess the security controls implemented within and inherited by the system, understand and apply policies to address requests for information on cyber best practices, conduct risk assessments for specialized devices, and provide information system security expertise.
Responsibilities
- Work with LSA, technical team to develop template/tools for automating the deployment of security controls in the CI/CD pipeline and the continuous automated/enhanced assessments or O&M of vulnerability scan tools
- Facilitates meetings, analyze authorization documents and associated artifacts against authorization requirements to identify gaps, establish a schedule to address outstanding authorization requirements, and coordinate directly with team stakeholders.
- Review and make recommendations on program-level documentation (e.g., requirements specification, system architecture, design documents, test plans and security plans).
- Identify and recommend mitigations for potential avenues of exploitation, including system level attacks and user level attacks.
- Advises and assists with the Lifecycle Assessment and Authorization (A&A) process and development of Systems Security Plan (SSP)
- Develops and documents security evaluation test plans and procedures
- Develops SCA artifacts, including the Security Assessment Plan (SAP), Security Assessment Reports (SAR), and Remediation Actions
- Experience with developing Plans of Action and Milestones (POA&Ms), including providing risk mitigation strategies, steps, and milestones.
- Conducts hands on security testing, analyzes results, documents risks, and recommends countermeasures
- Applies working knowledge of Industry Best Practices (e.g. SANS Top 20) National/International policies and standards and how they relate to the A&A process
- Applies working knowledge of Intelligence Community Information Assurance policies and regulations and how they relate to the A&A process
- Experience with cloud security (e.g., AWS, Azure, GCP)
- Knowledge of security information and event management (SIEM) systems
- Experience with incident response and forensic analysis
- Familiarity with various security frameworks (e.g., SCDO, OWASP)
- Experience with ethical hacking techniques
- Experience with scripting languages (e.g., Python, PowerShell)
- Ability to create and maintain security documentation
Requirements
- Strong understanding of network security principles and technologies.
- Experience with security tools and technologies (e.g., firewalls, intrusion detection systems, anti-malware software).
- Knowledge of operating systems and their security configurations.
- Familiarity with security protocols and standards (e.g., NIST Framework, ISO 27001).
- Ability to identify and assess security vulnerabilities.
- Strong problem-solving and analytical skills.
- Excellent communication and interpersonal skills.
- Ability to work independently and as part of a team.
- Experience with scripting and automation.
Qualifications
- Education: Bachelor's degree in Computer Science, Information Technology, or related field.
- Experience: Minimum of 5 years of relevant experience in cybersecurity engineering.
- Clearance: TS/SCI Poly clearance required.
Skills
- Experience with cloud security (e.g., AWS, Azure, GCP).
- Knowledge of security information and event management (SIEM) systems.
- Experience with incident response and forensic analysis.
- Familiarity with various security frameworks (e.g., SCDO, OWASP).
- Experience with ethical hacking techniques.
- Experience with scripting languages (e.g., Python, PowerShell).
- Ability to create and maintain security documentation.
Benefits
At Nightwing, we offer competitive compensation packages, comprehensive benefits, and opportunities for professional growth and development. We also prioritize work-life balance and foster a collaborative and inclusive workplace culture.
Pay
$136,096 per year (estimated)
Schedule
Nightwing offers flexible scheduling options to accommodate your needs.