Cybersecurity Engineer

Cybersecurity Engineer

Requirements

• Must be a US citizen
• Must have and be able to maintain a Secret level clearance
• BS/BA Degree
• 7-10 years of experience in the respective technical/professional discipline being performed, 5 of which must be in the DoD
• Strong understanding of cybersecurity principles, practices, and technologies
• Risk Management Framework (RMF), with emphasis on taking projects from Step 1 to Step 5
• Vulnerability Management, Tenable Nessus (ACAS-DoD version of Nessus)
• STIGs, capable of applying system security engineering expertise to various client/server environments, for e.g., system security design process, engineering life cycle, and vulnerability management support.

Responsibilities

• Serve as a technical point of contact and subject matter expert for ISSO-related matters.
• Complete security assessments on the AOC WS development suites, prepare the final security assessment reports, which includes technical recommendations for both STIGs and ACAS findings.
• Provide technical input, recommendations, and assistance with the implementation of cyber security approaches, methods and solutions that incorporate and maintain compliance to requirements resulting from laws, regulations, and other DoD and AF guidance.
• Assess proposed changes to information systems, their environment of operation, and mission needs that could affect system authorization.
• Provide purposeful security architecting, design, development, and configuration of information systems to the AOC WS ISSM. Provide inputs to the AOC WS ISSM for designing and developing organizational information systems and upgrading legacy systems.
• Employ best practices when implementing security requirements for information systems including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques.
• Apply knowledge of technical, analytical skills to ensure the confidentiality, integrity, and availability of all information systems assets and ensure compliance with company policies, procedures, contractual, and regulatory requirements.
• Experience with architecture, design, and management of network security technologies and best practices. Participate in network and system design to facilitate implementation of appropriate systems security policies for the AOC WS. Work with other AOC WS group members to ensure that updates to the AOC WS baseline Implementation Plans and other documentations (drawings, databases, spreadsheets, etc.) are up to date and accurate.
• Responsible for supporting LAN/WAN security solutions including creating and maintaining LAN/WAN security standards and design documentation.
• Develop and assist with new LAN/WAN security applications and hardware as assigned.
• Lead comprehensive network security assessments and risk analyses, proposing robust enhancements to the security infrastructure for AOC WS.
• Stay ahead of cyber security developments, recommend cutting-edge security solutions, and manage the integration of these technologies into existing AOC WS development suites.
• Develop and implement network security policies, ensuring alignment with legal and organizational standards, and conduct regular system audits to identify and mitigate vulnerabilities.
• Participating in network and systems design to ensure implementation of appropriate systems security policies align with AOC WS development suites.
• Apply advanced consulting skills and/or extensive technical expertise; full industry knowledge of cybersecurity engineering, cyber forensics, network security tools and technologies, cybersecurity policy, procedures, and workforce structure to design, develop, and implement recommendations for a secure enclave environment, and best practices.
• Investigate, monitor, and troubleshoot firewall-related issues including performance and connectivity problems and security logs to identify and respond to potential threats and vulnerabilities, conducting routine PAN OS checks for monitoring and analysis.
• Maintain detailed and accurate documentation of firewall configurations, changes, and network diagrams.
• Review Information Assurance Vulnerability Alerts/Bulletins (IAVA/B) related to Palo Alto products and develop and implement remediation plans.

Preferred Qualifications

• Experience with Cross Domain Solutions and USAF CDS-E
• Cloud Service Models
• Supply Chain Security
• NIAP
• DoD Policies for Procedures for Cybersecurity
• Network Security
• Endpoint
• DoD Impact Levels
• NSA Type 1 encryption
• Working with a CSSP – 16th AF