Cloud Information Systems Security Engineer - Isse

Cloud Information Systems Security Engineer – Isse

Active TS/SCI Clearance with CI Polygraph and ability to maintain one.
5 years minimum of system and/or security engineering work performed in support of U.S. Government customers subject to the Risk Management Framework (NIST 800-53) or Intelligence Community Directive (ICD) 503.
(ISC)2 Certified Information System Security Professional (CISSP) OR Certified Cloud Security Professional (CCSP) certification.
Review and development of RMF Assessment and Authorization (A&A) documentation, e.g. System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POAMs).
Experience implementing NIST SP 800-53 Revision 5 security requirements and NIST SP 800-53A security assessment procedures.

Define system security requirements in coordination with security stakeholders including system engineers, program managers, security control assessors, and authorizing officials.
Provide independent cybersecurity advice and guidance to government stakeholders.
Develop or review system security designs and architectures.
Support testing of systems during development, reaccreditation and provide evaluation to program stakeholders.
Review results from system security scans and advise system engineers on best methods to remediate findings.
Support engineering analysis of alternatives, tradeoffs, and risk treatment decisions.
Develop and/or review cybersecurity documentation in support of customer Risk Management Framework (RMF) process; in accordance with NIST SP 800-37 Rev 5.
Coordinate RMF processing with program and developer staffs.
Work with interdisciplinary teams to deliver trustworthy and secure systems.

Cybersecurity work performed in support of mission-essential space/ground system acquisitions and implementations.
Ability to explain complex cybersecurity issues to a diverse audience in layman’s terms.
Experience with the cyber security of SIGINT solutions.
Experience implementing or assessing cybersecurity solutions using technologies such as: Nessus, WebInspect, Splunk, Open SCAP, Microsoft Windows Server Active Directory, RedHat Linux, Virtualization Platforms: Hyper-V, VMware, Real Time Operating Systems (RTOS) (i.e. QNX, VxWorks), VDI (Desktop), Citrix, Experience securing cloud-hosted assets in AWS/Azure/etc.
Network engineering/design of LANs, WANs, MANs, including underlying routing protocols, and implementation. (TCP/IP, BGP, OSPF)
Experience presenting verbal/written communications to Senior leadership including ISSMs, ISOs, security directors.
Experience with systems engineering lifecycle processes.
Act as an advisor to the Government ISSM on ATO extensions, body of evidence reviews.
Experience guiding systems through the approval process per NIST-800-37 RMF.
Strong initiative and communication skills.
Although not explicitly required, successful candidates typically have a B.S. or M.S. degree in a technical field.