See all jobs on JobTailor
Search thousands of fresh jobs every day.
- Fresh listings
- Fast filters
- No subscription required
Cybersecurity Engineer
AUSGAR Technologies Inc.Senior Cybersecurity Engineer supporting Navy program integration, conducting assessments, and remediating vulnerabilities. Involvement across system development lifecycle with an emphasis on RMF practices.
Core Competencies
Role fitUse this summary to align your resume positioning with the role.
Demonstrates expertise in Cybersecurity Engineering, including the execution of Risk Management Framework (RMF) processes, development of Security Assessment Plans (SAPs), and conducting vulnerability assessments using tools like ACAS and Nessus. Proficient in implementing security measures for various operating systems and network technologies while ensuring compliance with Department of War cybersecurity policies.
ATS Keywords
Tailor your resumeTip: use these terms in your resume and cover letter to boost ATS matches.
Tech Stack
Tools & technologiesAbout the role
Key responsibilities & impact- Serve as a Senior Cybersecurity Engineer for a Navy program office to support implementation and integration of cyber requirements throughout all stages of the system development lifecycle to include requirements gathering, system engineering, deployment and sustainment
- Review system architecture to identify cybersecurity vulnerabilities and compliance issues
- Plan and execute cybersecurity scans to include running Assured Compliance Assessment Solution (ACAS)/Tenable Scans, DISA Security Technical Implementation Guides (STIGs), evaluate STIG, DISA Security Content Automation Protocol (SCAP) and evaluate system against vendor security best practices
- Work with the system developers to remediate and mitigation vulnerabilities on the system
- Develop system architecture diagrams and data flow diagrams as required
- Develop Security Plan of Action and Milestones (POA&Ms) to include the development of mitigations statements
- Support the Cybersecurity Analyst as needed for the Risk Management Framework (RMF) process to achieve Authority to Operate (ATO) and Interim Authority to Test (IATT)
- Plan and execute system scans to meet client requirements, analyze results, develop reports to be used to determine system vulnerabilities and risk posture and provide recommendations for remediation to achieve desired security and risk posture
- Identify cybersecurity vulnerabilities and compliance issues
- Work with engineers to remediate existing vulnerabilities or to help develop mitigations that minimize impact, likelihood or risks and work with the program to incorporate findings into the system POA&M
- Provide Cybersecurity Assessment and Authorization (A&A) support and serve as a cybersecurity expert for the program throughout all stages of the acquisition, system engineering and maintenance process
- Successfully execute RMF assessment process, development of Security Assessment Plans (SAPs), conducting assessments, executing and compiling assessment results for client security assessment reports
Requirements
What you’ll need- Active Secret clearance required
- DoD 8140.03 IAT II certification required
- Bachelor's degree in relevant discipline from an accredited college/university and eight years plus in the cybersecurity field required or the equivalent combination of work experience and education
- Must have experience developing Security Assessment Plans (SAPs)
- Must have experience conducting Nessus and ACAS scans
- Experience building ACAS scanner preferred
- Must have experience conducting DISA STIG and SRGs on multiple technologies
- Experience with evaluate STIG preferred
- Experience with SCAP preferred
- Experience with implementing security lockdowns for Windows or Red Hat Linux (RHEL) operating systems, network technologies, including firewalls, routers and switches
- A good knowledge of Department of War (DoW) cybersecurity policies and procedures
- Experience using eMasster and eMASS preferred
- Experience in using Jira to create, manage and update work items, including user stories, epics, tasks and bug reports preferred
- Employ strong written and verbal communication skills to advise various levels of technology stakeholders, program initiatives and accrediting authorities on security requirements and cybersecurity trends and solutions, to include risk assessments and mitigations
- Must be able to work independently and be a self-starter.
Benefits
Comp & perks- Competitive salary
- Comprehensive benefits
- E-verify for employment eligibility