Senior Principal Cyber Protection

Senior Principal Cyber Protection

Requirements

• Bachelor’s Degree in Cybersecurity, Computer Science/Engineering, Software Development/Engineering, or related STEM degree field and 8 years of related experience; Master’s degree in Cybersecurity, Computer Science/Engineering, Software Development/Engineering, or related STEM degree with 6 years of related experience; PhD in Cybersecurity, Computer Science/Engineering, Software Development/Engineering, or related STEM degree and 4 years of related experience. Will consider 12 years of applied experience in lieu of degree requirement.
• Prior hands-on cyber test experience in a DoD Cyber Developmental Test or Operational Test (DT/OT) organization i.e. (i.e., 96th Cyber Test Group, 346th Test Squadron) or as an Offensive Cyber Operator (Red Team, CNO, CNE, or OCO)).
• Experience conducting network or software vulnerability assessments and penetration testing utilizing reverse engineering techniques.
• Must possess or be able to obtain DoD 8570 Certification for IAT Level II or higher within six (6) months
• U.S. Citizenship is required.
• A current/active DoD Top Secret Security Clearance
• The ability to obtain and maintain a DoD Top Secret w/ SCI clearance is required.
• The ability to obtain and maintain SAP is required.

Responsibilities

• Perform cyber testing, verification, and validation
• Validate system security requirements definition and analysis, establish system security designs, implement security designs in hardware, software, data, and procedures
• Participate in team reviews of technical requirements, designs and implementation plans prior to deployment of systems, digital communications systems, network protocols, computer architectures, and computer security penetration tools and techniques
• Provide cyber security implementation guidance to technical design teams and develop testing use cases to meet requirements and architecture model content.
• Support development of technical decision-making guidance to the Cybersecurity team to ensure timely, high quality product deliveries supporting flight test events geared to meet mission requirements
• Ensure weapon system compliance with all contractually obligated cybersecurity standards and guidance, including but not limited to CNSSI 1253, DoD 8140, DoD 8510, and AFI 17-101
• Ensure weapon system assessments are completed to meet all contractually obligated cybersecurity standards and guidance, including but not limited to RMF and cyber survivability requirements
• Provide input to program milestones and metrics, adhering to cybersecurity-relevant plans and schedules
• Solve complex problems across disciplines in an Agile environment
• Support training and mentoring of junior cyber testers

Preferred Qualifications

• Possess a Cybersecurity certification related to Red Teaming/Penetration Testing: GPEN, GXPN or OSC; or related to Cyber Testing: International Software Test Qualification Board (ISTQB) Certified Tester Foundational Level (CTFL) certification
• DoD Acquisition Professional Development Program (APDP) “Test & Evaluation” Certification, Level 1 or higher.
• Experience performing or participating in cyber test and assessment activities as defined in the DoD Cyber Test & Evaluation Guidebook and/or prior Penetration-Testing experience
• Experience using cybersecurity analysis tools, as well as a basic understanding of ethical hacking processes and techniques.
• Experience across the areas of test planning and execution for functional, operational, developmental, regression and/or penetration testing.
• Experience supporting the RMF accreditation process via cyber test activities.
• Experience working or supporting efforts following an Agile process model.
• Experience authoring and maintaining critical program documents such as Cybersecurity Test Strategies and System Test Plans
• Knowledge of Cyber Security Engineering practices, network technologies, DoD system development life cycles and methodologies, and insight into information technology infrastructure management/monitoring and applications
• Excellent communication (written and oral), negotiation, coordination, and interpersonal skills; Ability to present complex technical information to large audiences.
• Ability to calmly negotiate challenging program requirements, strategies, and conflicting constraints among a large and diverse group of program stakeholders.