Our client is looking for an individual to join the Cyber Security Engineering team for a Principal Cyber Security Engineer position supporting the operations and maintenance of custom solutions and Assessment & Authorization (A&A) activities in Denver, Colorado area. Occasional travel to customer sites may be required.
The ideal candidate will have a strong cyber experience across the full spectrum of cyber operations from a mission execution perspective, to include vulnerability management, compliance management, database, and enterprise information security infrastructure.
Responsibilities Include:
• Review and adjudicate Tenable/Nessus Findings
• Ensure security compliance and vulnerability scanning/remediation across multiple platforms and networks
• System configuration hardening and Audit Scanning
• Performing hands-on technical implementation of security solutions comprised of COTS & FOSS as well as custom-developed products
• Applying knowledge of current IA policies as a contributor to the architecture and design of secure solutions to customer needs and requirements
Clearance Requirement: Must be a US Citizen with an active DOD Secret clearance. Top Secret/SCI Clearance is preferred.
Required Skills:
• Demonstrated experience using Tenable Security Center, Nessus for vulnerability and compliance assessment.
• Experience with cyber security engineering projects and programs for U.S. Government clients.
• Experience/knowledge of Risk Management Framework (RMF), NIST 800-37, Continuous Monitoring IAW NIST 800-137, Patching IAW NIST 800-40, NIST 800-53 and CNSSI 1253.
• Vulnerability assessment and analysis experience utilizing Assured Compliance Assessment Solution (ACAS) and DISA STIGs.
• Hands on experience in manual hardening and system compliance.
• Understanding of security design concepts with ability to develop solutions to moderately complex IS compliance and security problems
• Must be a self-starter capable of multitasking and efficiently managing your time.
• Ability to work in a team environment and work collaboratively across traditional engineering disciplines.
• Solid communications skill with team and program leadership.
• Demonstrated experience performing vulnerability assessment/remediation.
• Security Certification in accordance with DoD 8570.01 IAT-II or IAT-III (e.g., Security+ CE or CISSP).
Desired Skills:
• Experience supporting IA Tools such as Tripwire, LogRhythm.
• Experience with HW and SW life-cycle management, & engineering change proposal process’s
• PKI certificate experience.
• Windows/Linux/Network SA experience - (VMWare, RHEL, various Windows versions)
• Experience with highly ‘matrixed’ organizations.
Preferred Education/Experience:
Typically requires bachelor’s degree in Cybersecurity, Information Assurance, Computer Science, Information Technology, or related field plus a minimum of 8 years of Cybersecurity experience. Science, Technology, Engineering or Mathematics (STEM) preferred.