BluestoneLogic

Senior Cybersecurity Engineer

BluestoneLogic

full-time

Posted on:

Origin:  • 🇺🇸 United States

Visit company website
AI Apply
Manual Apply

Job Level

Senior

Tech Stack

CloudCyber SecurityFirewallsSplunkSwitching

About the role

  • Work closely with the government Information Systems Security Manager (ISSM) to implement the Risk Management Framework (RMF).
  • Establish and maintain security controls compliance and artifacts in Enterprise Mission Assurance Support Service (eMASS) for Authorization to Operate (ATO) accreditation.
  • Perform vulnerability and risk analyses of computer systems and applications during all phases of the system development life cycle.
  • Conduct advanced cybersecurity engineering, risk management, and DoD RMF compliance activities.
  • Monitor and analyze security events using ACAS, eMASS, CMRS, HBSS/ESS, Splunk, SIEM tools, and other cybersecurity monitoring solutions.
  • Ensure compliance with DoD cybersecurity frameworks, including NIST 800-53, NIST 800-207 (Zero Trust Architecture), and DISA STIGs.
  • Integrate security best practices within Agile and DevSecOps environments.
  • Secure both classified and unclassified DoD networks in compliance with DISN and SIPRNet security policies.
  • Generate system-level security documentation and support the development of Standard Operating Procedures.
  • Participate in security audits and develop recommendations for remediation.
  • Engage customer cybersecurity stakeholders to understand needs and define acceptance criteria for validating cybersecurity controls.
  • Plan and lead projects; mentor and guide other cybersecurity engineers.

Requirements

  • Minimum 8 years in cybersecurity, information assurance, or related IT field.
  • Active DoD Secret clearance (Top Secret preferred).
  • Certifications Required: CISSP, Security+, CEH, or equivalent in accordance with DoDM 8140.03M.
  • Bachelor's and/or Master's in Cybersecurity, Computer Science, Computer Information Systems, Systems Engineering, Mathematics, or related technical field.
  • U.S. citizen.
  • Location: Onsite at DISA Fort Meade, MD.
  • Experience in DoD cybersecurity engineering, RMF compliance, and security accreditation.
  • Experience in commercial cloud computing security.
  • Familiarity with NIST 800-53, NIST 800-207 (Zero Trust Architecture), and DISA STIGs.
  • Hands-on experience with ACAS, eMASS, CMRS, HBSS/ESS, Splunk, and SIEM tools.
  • Understanding of Agile/DevSecOps security integration.
  • Experience securing DoD classified and unclassified networks.
  • Expertise in routing, switching, firewalls, antivirus, host-based protection, SIEM, and virtualization security.
  • Strong verbal and written communication skills.