Job Description

Cyber Security Engineer (CSE) Opportunity Leidos Intelligence Group is seeking a Cyber Security Engineer (CSE) to support an enterprise IT program. The Cyber Security Engineer will advise and assist the Sponsor and their customers with the Lifecycle Assessment and Authorization (A&A) processes under the Risk Management Framework (RMF) for new and existing information systems, performing the steps involved in the execution of the RMF. Primary responsibilities include supporting the development or modification of System Security Plans (SSPs), security requirements, and other supporting documentation for the A&A process. The Cyber Security Engineer will determine the security requirements by analyzing the project's business needs and assisting the Sponsor's evaluation of industry offerings to identify products that meet security requirements. They will work with stakeholders to create and perform quality control on the Sponsor's partner's RMF body of evidence documentation, reviewing assessment reports and assisting IT projects in identifying security risks (technical and non-technical) and developing effective mitigation strategies such as Plans of Action and Milestones (PoAMs), ensuring IT projects complete mitigation strategies as scheduled to ensure timely delivery to the customer. They will provide cyber security support and recommendations to the development and accreditation of systems, provide and support cyber security mitigation recommendations to enable Sponsor's mission, implement and support the component information systems requirements, and use the Project Management Framework and Risk Management Framework. The Cyber Security SME will act as an Information Assurance, Certification & Accreditation (C&A) and Assessment & Authorization (A&A) lead for the Sponsor's offices. They will work closely with other business offices and peers daily, be directly involved in processing all organizational efforts through the risk management cycle, and closely coordinate and track risks, accreditation status, and reporting status across project teams. Requirements for role include: Must have a TS/SCI with poly to be considered Must have a Bachelor's degree and at least 12 years of experience OR Masters and at least 10 years of experience Basic qualifications include: Demonstrated experience performing as an Information System Security Manager (ISSM), Information Systems Security Officer (ISSO), and Information System Security Engineer (ISSE). Demonstrated experience supporting systems security practices, policies, regulations, and guidelines. Demonstrated on-the-job experience with Non-Title 50 (NT-50) information systems, Enterprise and IC networks and systems. Demonstrate experience with the Risk Management Framework (RMF) life cycle. Demonstrated on-the-job experience with the Sponsor's policies, procedures, and guidance for cyber security. Demonstrated on-the-job experience or understanding of Sponsor's Project Management Framework and Risk Management Framework. Demonstrated experience navigating RMF processes in order to achieve Authorization to Proceed. Demonstrated experience with creating or developing systems documentation to support authorization and accreditation requirements. Demonstrated experience and knowledge of Information Security (INFOSEC) policies. Demonstrated experience understanding and evaluating security risks of systems and networks. Demonstrated experience with Authority and Accreditation (A&A) and C&A packages needed to obtain security approvals for software applications deployments into production state Demonstrated experience assuring software applications adhere to continuous monitoring and compliance with Security accesses and controls Demonstrated experience reviewing and authoring System Security Plans (SSP) Demonstrated experience writing and reviewing risk assessment and mitigation reports Pay Range: $126,100.00 - $227,950.00 ClearanceJobs

Job Tags

Similar Jobs