Cybersecurity Engineer Jobs

By Light Professional It Services - San Antonio, TX

posted 4 months ago

Full-time
San Antonio, TX
Professional, Scientific, and Technical Services

About the position

By Light Professional IT Services (By Light) is a leading provider of innovative Information Technology (IT) services and communications support to the Department of Defense and Federal Agencies. The company is currently seeking personnel to support the U.S Army Installation and Management Command (IMCOM) at Joint Base San Antonio Fort Sam Houston (JBSA), Texas, specifically in the area of Information Technology (IT) Risk Management Framework (RMF) support. This role involves providing IT engineering services that support the Family, Morale, Welfare and Recreation (FMWR) mission, which aims to assist Soldiers and their Families at over 80 garrisons and 1,500 MWR facilities throughout the Army. The support provided includes a comprehensive range of activities such as design, testing, migration, operations, management, evaluation, authorization, scanning, updating, and reporting requirements related to the Risk Management Framework and IMCOM IT systems. The successful candidate will be responsible for identifying, developing, creating, and maintaining essential documentation, including System Security Plans, checklists, and standard operating procedures. This position will also support technical managers, system owners, and program managers in selecting specific security controls for their systems, ensuring that performance management is incorporated to drive accountability for RMF, ultimately benefiting the customer's cybersecurity requirements. In addition, the role requires providing insights to identify trends, forecast needs, and meet assessment and authorization goals. The candidate will process systems for authorization using the RMF process in accordance with Federal Information Processing Standard (FIPS) Publication 199 and 200, as well as National Institute of Standards and Technology (NIST) Special Publications 800-53, 800-59, 800-60, 800-137, and other relevant DoD and Army regulations and guidance. The position also involves translating security policies and implementation guidance into actionable cybersecurity engineering solutions for the customer's systems, delivering senior technical expertise in support of cybersecurity and RMF requirements, and serving as a project manager or expert consultant on complex projects such as cloud computing environments and migrations.

Responsibilities

  • Identify, develop, create, and assist in sustaining documentation such as System Security Plans, checklists, and standard operating procedures.
  • Support technical managers, system owners, and program managers in identifying and selecting specific security controls for their systems.
  • Incorporate performance management to drive accountability for RMF that benefits the customer's cybersecurity requirements.
  • Provide insight to identify trends, forecast needs, and meet assessment and authorization goals.
  • Process systems for authorization using RMF process in accordance with FIPS Publication 199 and 200, NIST Special Publications 800-53, 800-59, 800-60, 800-137, and other DoD and Army regulations/guidance.
  • Translate security policies, implementation guidance, and requirements into cybersecurity engineering implementation and develop solutions for the customer's systems.
  • Provide professional technical engineering services related to the customer's IT systems.
  • Serve as a project manager and/or provide expert consultation on complex projects, being considered a top-level subject matter expert on related technologies.
  • Deliver senior technical expertise in support of cybersecurity and RMF requirements.
  • Implement and enforce doctrine such as security policies and security plans for control objectives across the customer's organization.
  • Analyze network/system/process/IT service performance data and provide ad hoc and periodic reporting to relevant stakeholders.
  • Provide proactive input to internal project teams consisting of system users and IT resources as well as functional proponents and Army communities to ensure effective use of IT solutions, tools, and processes.
  • Collaborate with technical managers, system owners, and program managers in identifying mitigation strategies, remediation actions, and highlighting recommendation approaches in Plan of Action & Milestone development.
  • Perform other cybersecurity tasks as required.

Requirements

  • Senior Level: Master's degree in computer science, engineering, or relevant degree. In lieu of a master's degree, a bachelor's degree and four (4) years of relevant experience is acceptable.
  • Intermediate Level: Bachelor's degree in computer science, engineering, or relevant degree. In lieu of a bachelor's degree, an associate degree and four (4) years of relevant experience is acceptable.
  • Certification: Required at Contract Start. IAT Level III Certified Information Systems Security Professional (CISSP).
  • Extensive knowledge of policies, directives, and regulatory guidance in the Cybersecurity field.
  • Minimum of five (5) years RMF experience in a complex network and systems environment consisting of a large diverse population of users, computers, applications, and technologies.
  • Understanding and knowledge of technologies such as event logging and analysis for a Defensive Cyber Infrastructure, cloud computing environments, and service providers (e.g., Amazon Web Services, Azure).
  • In-depth knowledge of the seven steps associated with the RMF and Federal Information Systems Modernization Act (FISMA).
  • Fully trained or experienced using RMF workflow tools (e.g., Enterprise Mission Assurance Support Service (eMASS)).

Nice-to-haves

  • Communication skills to effectively interface with senior military officials, managers, and subordinates.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service