FREE ACCESS
5,000–10,000 jobs/day

See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.

Cyber Assessment & Authorization Engineer, E4
ArcarithmCyber Assessment & Authorization Engineer E4 supporting Arcarithm's innovative cybersecurity solutions for leading defense clients. Perform assessments and establish security processes for critical systems across various platforms.
Tech Stack
Tools & technologiesCyber SecurityLinux
About the role
Key responsibilities & impact- Process and track DD Form 2875 user account forms and required training for privileged and non-privileged accounts, perform annual validation of accounts, and work with system administrator on creation, modification, and removal of accounts.
- Perform assessment of systems and networks within a virtual environment and identify where those systems deviate from acceptable configurations, enclave policy, or local policy.
- This is achieved through passive evaluations such as compliance audits using STIG Viewer, SCAP, etc. and active evaluations such as vulnerability assessments utilizing ACAS.
- Perform Security Technical Implementation Guide (STIG) assessments and hardening for both Windows, Red Hat Enterprise Linux (RHEL) systems, and networking equipment utilizing ConfigOS.
- Develop test plans reflecting how STIG checks are implemented and be able to show expected outcomes of those checks.
- Update Risk Management Framework (RMF) artifact documentation to ensure system hardening non-compliant is tracked and remediated.
- Establish strict program control processes to ensure mitigation of risks and supports obtaining assessment and authorization of systems.
- Includes support of process, analysis, coordination, control certification test, compliance documentation, as well as investigations, software research, hardware introduction and release, emerging technology research, inspections, and periodic audits.
- Assist in the implementation of the required government policy (i.e., NISPOM, NIST, DoD), making recommendations on process tailoring, participating in and documenting process activities.
- Perform analyses to validate established cybersecurity controls and requirements and to recommend cybersecurity safeguards.
- Support program test milestones through pre-test preparations, participating in the tests, analysis of the results, and preparation of required artifacts supporting authorization.
- Prepare artifacts such as Test Results (TR), Authorization Boundary Diagrams (ABD), Network Topologies, Flow-diagrams, Hardware and Software listings, Ports, Protocols, and Services Management documentation, supporting Assessment and Authorization activities and maintain the Plan of Actions and Milestones (POA&M).
- Periodically conduct a complete review of each program support and operational system's audits and monitor corrective actions until all actions are closed.
- Coordinate across the program to address identified deficiencies during RMF assessment activities.
Requirements
What you’ll need- Generally 3+ years of related experience and may have post-secondary degree or training in a related discipline.
- Active Top Secret clearance required to start.
- IAT Level II / IAM Level I DoD 8570 certification (Sec+ CE or equivalent).
- Security engineering skills with a working knowledge of cybersecurity technology and DoD/Federal cybersecurity policy (i.e., DoDI 8500.01, NIST SP 800-53, etc.).
- Understanding and utilization of Enterprise Mission Assurance Support Service (eMASS).
- Understanding of Risk Management Framework (RMF) Cybersecurity Lifecycle to include: Identifying controls and overlays.
- Generating testable requirements.
- Identifying resilient architecture design.
- Configuring, running, and scripting audit tools.
- Providing analysis of vulnerability analyses.
- Conducting verification testing for compliance assessment.
- Knowledge of Software Assurance (SwA) static and dynamic code analysis (e.g., Fortify/SonarQube).
Benefits
Comp & perks- comprehensive health insurance options
- generous 401K plan
- competitive salaries
- continuous career growth opportunities
- flexible schedules including remote work
- mentoring and performance incentives
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Cybersecurity Technology KnowledgeCompliance AuditsVulnerability AssessmentTest Plan DevelopmentSystem HardeningAudit Tool ConfigurationStatic and Dynamic Code AnalysisRisk MitigationNetwork Topology DocumentationAuthorization Boundary Diagrams
Soft Skills
Analytical SkillsCoordinationCommunicationProblem-SolvingAttention to Detail
Certifications
IAT Level II CertificationIAM Level I CertificationDoD 8570 Certification