Fuse Engineering

  • Cyber Security Subject Matter Expert (IT)

    Job Locations US-VA
    Job ID
    2018-1426
    Category
    Information Technology
  • Overview

     

    *A TS/SCI security clearance with polygraph*

     

     

    Seeking a Cyber Security SME Expert with experience in system engineering, development and information security to include implementing the Risk Management Framework (RMF) and Assessment & Authorization (A&A) for the Sponsors IT systems. The candidate will be directly involved in processing all customer efforts through the various facets of the RMF and A&A process by conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an information system. The candidate will determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system). The candidate will also provide an assessment of the severity of weaknesses or deficiencies discovered in the information system and its environment of operation and recommend corrective actions to address identified vulnerabilities.

    Responsibilities

    Mandatory Skills:
    1) Demonstrated experience recommending best practices in security architecture that promotes cost-effective and efficient systems solutions consistent with program objectives and measures of performance

     

    2) Demonstrated experience developing risk assessment reports based on review of security plans and interviews with developer/customer, assess systems against Information Assurance policies and regulations

     

    3) Demonstrated experience coordinating and performing security testing, scanning, analyzing and documenting test results, documenting risk and recommending mitigating countermeasures to identified threats, vulnerabilities, and shortfalls

     

    4) Demonstrated experience testing security architectures of cloud-based systems and applications, identifying vulnerabilities, and providing security remediation

     

    5) Demonstrated experience identifying and applying the appropriate level of recommended remediation to security anomalies or integrity loopholes such as system weakness or vulnerabilities

     

    6) Demonstrated experience developing and documenting security evaluation test plans and procedures

     


    Optional Skills:
    1) Demonstrated experience working with the Sponsors Risk Management Framework (RMF), Assessment & Authorization (A&A) process

     

    2) Demonstrated experience participating or leading technical exchange meetings and application review boards and documenting actions items/results of these events

     

    3) Demonstrated experience with the Sponsors Partners information assurance policies and regulations and how they relate to the A&A process

     

    4) Demonstrated experience providing threat analysis based on identified security vulnerabilities

     

    5) Bachelor's degree in a technical field

     

    6) Certified Information Systems Security Professional (CISSP) or similar certification

     

    7) Certified Ethical Hacker (CEH)

     

    8) Computer Hacking Forensic Investigator (CHFI)

    Qualifications

    *A TS/SCI security clearance with polygraph*

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed